From the thread http://www.bleepingcomputer.com/forums/topic367149.html
Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.
Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.
Infected with Win32/Rootkit.Agent.NSF
Started by
dave1708
, Dec 26 2010 02:33 AM
-
This topic is locked
19 replies to this topic
Back to top
#2
sundavis
-
- Malware Response Team
- 2,708 posts
- OFFLINE
- Gender:Not Telling
- Local time:06:57 PM
Posted 26 December 2010 - 02:39 AM
Hi dave1708,
Please post the necessary logs when you're ready.
Please post the necessary logs when you're ready.
#3
dave1708
- Topic Starter
-
- Members
- 11 posts
- OFFLINE
- Local time:06:57 PM
Posted 26 December 2010 - 04:02 PM
Here's the OTL:
It's to long but I am not able to upload with hotfile as it is not visable.
OTL logfile created on: 1/2/2007 12:41:03 AM - Run
OTLPE by OldTimer - Version 3.1.43.0 Folder = X:\Programs\OTLPE
Microsoft Windows XP Service Pack 3 (Version = 5.1.2600) - Type = SYSTEM
Internet Explorer (Version = 7.0.5730.11)
Locale: 00000809 | Country: United Kingdom | Language: ENG | Date Format: dd/MM/yyyy
2.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 85.00% Memory free
2.00 Gb Paging File | 2.00 Gb Available in Paging File | 96.00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 229.77 Gb Total Space | 97.03 Gb Free Space | 42.23% Space Free | Partition Type: NTFS
Drive D: | 465.75 Gb Total Space | 101.84 Gb Free Space | 21.87% Space Free | Partition Type: NTFS
Drive X: | 434.99 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS
Computer Name: REATOGO | User Name: SYSTEM
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
Using ControlSet: ControlSet004
========== Win32 Services (SafeList) ==========
SRV - File not found [Auto] -- C:\Program Files\e-novative\WAMP\MySql\MySql Server 4.1\bin\mysqld-nt.exe -- (MySQL)
SRV - File not found [Auto] -- C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe -- (LiveUpdate Notice Ex)
SRV - File not found [Auto] -- C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe -- (CLTNetCnService)
SRV - File not found [Auto] -- C:\Program Files\e-novative\WAMP\Apache\Apache.exe -- (Apache)
SRV - [2010/12/03 04:05:32 | 001,389,400 | ---- | M] (Lavasoft) [Auto] -- C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe -- (Lavasoft Ad-Aware Service)
SRV - [2010/11/05 12:53:56 | 000,327,000 | ---- | M] (Enigma Software Group USA, LLC.) [Auto] -- C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe -- (SpyHunter 4 Service)
SRV - [2010/10/20 06:22:24 | 000,630,272 | ---- | M] (Nokia) [On_Demand] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2010/10/08 17:43:48 | 000,828,928 | ---- | M] (Security Stronghold) [Auto] -- C:\Program Files\True Sword 5\TrueSwordSchedule.exe -- (TrueSwordSchedulerService)
SRV - [2010/10/03 17:43:16 | 000,767,208 | ---- | M] (Trusteer Ltd.) [Auto] -- C:\Program Files\Trusteer\Rapport\bin\RapportMgmtService.exe -- (RapportMgmtService)
SRV - [2010/09/23 04:49:08 | 000,067,584 | ---- | M] (CobianSoft, Luis Cobian) [Auto] -- C:\Program Files\Cobian Backup 10\cbVSCService.exe -- (cbVSCService)
SRV - [2010/09/13 11:18:32 | 000,308,656 | ---- | M] (Eastman Kodak Company) [Auto] -- C:\Program Files\Kodak\AiO\Center\ekdiscovery.exe -- (Kodak AiO Network Discovery Service)
SRV - [2010/08/27 06:10:45 | 000,340,520 | ---- | M] (Kaspersky Lab) [Auto] -- C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe -- (AVP)
SRV - [2010/03/25 04:27:09 | 000,604,488 | ---- | M] (TuneUp Software) [Auto] -- C:\WINDOWS\system32\TUProgSt.exe -- (TuneUp.ProgramStatisticsSvc)
SRV - [2010/03/25 04:27:06 | 000,361,288 | ---- | M] (TuneUp Software) [On_Demand] -- C:\WINDOWS\system32\TuneUpDefragService.exe -- (TuneUp.Defrag)
SRV - [2010/03/18 07:16:28 | 000,753,504 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe -- (WPFFontCache_v0400)
SRV - [2010/03/18 07:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto] -- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010/01/28 07:47:44 | 001,737,464 | ---- | M] () [Auto] -- C:\Program Files\3 Mobile Broadband\3Connect\BecHelperService.exe -- (BecHelperService)
SRV - [2009/11/30 12:25:08 | 000,185,640 | ---- | M] () [On_Demand] -- C:\Documents and Settings\David\Application Data\Mikogo\B-Service.exe -- (B-Service)
SRV - [2009/11/16 06:25:48 | 000,029,000 | ---- | M] (TuneUp Software) [Auto] -- C:\WINDOWS\system32\uxtuneup.dll -- (UxTuneUp)
SRV - [2008/08/13 12:32:40 | 000,201,968 | ---- | M] (SupportSoft, Inc.) [Auto] -- C:\Program Files\Dell Support Center\bin\sprtsvc.exe -- (sprtsvc_dellsupportcenter) SupportSoft Sprocket Service (dellsupportcenter)
SRV - [2008/05/31 15:43:42 | 000,020,480 | ---- | M] () [Auto] -- C:\Program Files\RemoteObserverClient\roclient.exe -- (roclient)
SRV - [2008/02/26 22:24:12 | 000,020,480 | ---- | M] (Intuit) [Auto] -- C:\Program Files\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe -- (QBCFMonitorService)
SRV - [2007/11/28 14:51:10 | 000,583,048 | ---- | M] (Symantec Corporation) [Auto] -- C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe -- (LiveUpdate Notice Service)
SRV - [2007/09/14 16:28:43 | 000,068,096 | ---- | M] () [On_Demand] -- C:\Program Files\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe -- (Macromedia Licensing Service)
SRV - [2007/05/24 01:08:44 | 000,061,440 | ---- | M] (Intuit Inc.) [On_Demand] -- C:\Program Files\Common Files\Intuit\QuickBooks\FCS\Intuit.QuickBooks.FCS.exe -- (QBFCService)
SRV - [2007/03/19 06:44:44 | 000,070,656 | ---- | M] () [On_Demand] -- C:\Program Files\DellSupport\brkrsvc.exe -- (DSBrokerService)
SRV - [2006/11/03 14:19:58 | 000,013,592 | ---- | M] (Microsoft Corporation) [Disabled] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend)
SRV - [2006/09/14 02:56:06 | 000,102,400 | ---- | M] () [Auto] -- C:\Program Files\Adobe\Photoshop Elements 5.0\PhotoshopElementsFileAgent.exe -- (AdobeActiveFileMonitor5.0)
SRV - [2006/09/02 18:36:33 | 002,528,960 | ---- | M] (Symantec Corporation) [On_Demand] -- C:\Program Files\Symantec\LiveUpdate\LuComServer_3_1.EXE -- (LiveUpdate)
SRV - [2006/09/02 18:36:33 | 000,198,336 | ---- | M] (Symantec Corporation) [Auto] -- C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe -- (Automatic LiveUpdate Scheduler)
SRV - [2005/07/06 05:14:12 | 000,471,040 | ---- | M] (Lexmark International, Inc.) [On_Demand] -- C:\WINDOWS\System32\lxcecoms.exe -- (lxce_device)
SRV - [2004/10/21 22:24:18 | 000,073,728 | ---- | M] (Macrovision Corporation) [On_Demand] -- C:\Program Files\Roxio\Roxio MyDVD Basic v9\InstallShield\Driver\1050\Intel 32\IDriverT.exe -- (IDriverT)
SRV - [2004/08/04 05:00:00 | 002,637,824 | RHS- | M] () [Auto] -- C:\WINDOWS\system32\bjqeulfx.dll -- (tsjccvfq)
SRV - [2004/07/03 07:56:24 | 000,036,864 | ---- | M] () [Auto] -- C:\WINDOWS\system32\acs.exe -- (ACS)
========== Driver Services (SafeList) ==========
DRV - File not found [Kernel | On_Demand] -- -- (WDICA)
DRV - File not found [Kernel | Auto] -- C:\WINDOWS\System32\Drivers\SSPORT.sys -- (SSPORT)
DRV - File not found [Kernel | System] -- C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\SAS_SelfExtract\SASKUTIL.SYS -- (SASKUTIL)
DRV - File not found [Kernel | System] -- C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\SAS_SelfExtract\SASDIFSV.SYS -- (SASDIFSV)
DRV - File not found [Kernel | On_Demand] -- -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand] -- -- (PDRELI)
DRV - File not found [Kernel | On_Demand] -- -- (PDFRAME)
DRV - File not found [Kernel | On_Demand] -- -- (PDCOMP)
DRV - File not found [Kernel | System] -- -- (PCIDump)
DRV - File not found [Kernel | On_Demand] -- C:\DOCUME~1\David\LOCALS~1\Temp\00001219.nmc\nse\bin\ndiskio.sys -- (NDISKIO)
DRV - File not found [Kernel | System] -- -- (lbrtfdc)
DRV - File not found [Kernel | System] -- -- (Changer)
DRV - File not found [Kernel | On_Demand] -- C:\ComboFix\catchme.sys -- (catchme)
DRV - [2010/12/03 04:05:34 | 000,064,288 | ---- | M] (Lavasoft AB) [File_System | Boot] -- C:\WINDOWS\system32\drivers\Lbd.sys -- (Lbd)
DRV - [2010/10/03 17:54:04 | 000,034,792 | ---- | M] (Trusteer Ltd.) [Kernel | System] -- C:\Documents and Settings\All Users\Application Data\Trusteer\Rapport\store\exts\RapportCerberus\19917\RapportCerberus_19917.sys -- (RapportCerberus_19917)
DRV - [2010/10/03 17:43:44 | 000,169,320 | ---- | M] (Trusteer Ltd.) [Kernel | System] -- C:\Program Files\Trusteer\Rapport\bin\RapportPG.sys -- (RapportPG)
DRV - [2010/10/03 17:43:44 | 000,059,240 | ---- | M] (Trusteer Ltd.) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\RapportKELL.sys -- (RapportKELL)
DRV - [2010/09/10 14:04:16 | 000,020,480 | ---- | M] (Security Stronghold) [Kernel | Auto] -- C:\Program Files\Active Shield 5\ActiveShield.sys -- (DriverAS)
DRV - [2010/08/19 02:32:06 | 000,371,248 | ---- | M] (Symantec Corporation) [Kernel | System] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys -- (eeCtrl)
DRV - [2010/03/25 18:59:22 | 000,243,928 | ---- | M] (Intel Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\e1e5132.sys -- (e1express) Intel®
DRV - [2010/02/26 08:32:58 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\usbser_lowerfltj.sys -- (UsbserFilt)
DRV - [2010/02/26 08:32:46 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\usbser_lowerflt.sys -- (upperdev)
DRV - [2010/02/26 08:32:44 | 000,022,528 | ---- | M] (Nokia) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\ccdcmbo.sys -- (nmwcdc)
DRV - [2010/02/26 08:32:44 | 000,018,176 | ---- | M] (Nokia) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\ccdcmb.sys -- (nmwcd)
DRV - [2010/02/10 03:54:45 | 000,691,696 | ---- | M] (Duplex Secure Ltd.) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\sptd.sys -- (sptd)
DRV - [2010/01/28 07:35:24 | 000,010,240 | ---- | M] () [Kernel | Auto] -- C:\WINDOWS\system32\drivers\mdvrmng.sys -- (mdvrmng)
DRV - [2010/01/28 07:34:32 | 000,102,528 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\ewusbmdm.sys -- (hwdatacard)
DRV - [2010/01/28 07:34:32 | 000,100,736 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\ewusbdev.sys -- (hwusbdev)
DRV - [2009/12/27 17:26:32 | 000,315,408 | ---- | M] (Kaspersky Lab) [File_System | System] -- C:\WINDOWS\system32\drivers\klif.sys -- (KLIF)
DRV - [2009/10/22 07:54:18 | 000,037,392 | ---- | M] (Kaspersky Lab) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\57373902.sys -- (57373902)
DRV - [2009/10/14 16:18:34 | 000,036,880 | ---- | M] (Kaspersky Lab) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\klbg.sys -- (klbg)
DRV - [2009/10/09 17:31:10 | 000,315,408 | ---- | M] (Kaspersky Lab) [File_System | System] -- C:\WINDOWS\system32\drivers\5737390.sys -- (setup_9.0.0.722_09.12.2010_12-20drv)
DRV - [2009/10/02 14:39:44 | 000,019,472 | ---- | M] (Kaspersky Lab) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\klmouflt.sys -- (klmouflt)
DRV - [2009/09/25 11:59:42 | 000,128,016 | ---- | M] (Kaspersky Lab) [Kernel | System] -- C:\WINDOWS\system32\drivers\57373901.sys -- (57373901)
DRV - [2009/09/14 09:42:46 | 000,032,272 | ---- | M] (Kaspersky Lab) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\klim5.sys -- (klim5)
DRV - [2009/09/01 10:29:50 | 000,128,016 | ---- | M] (Kaspersky Lab) [Kernel | System] -- C:\WINDOWS\system32\drivers\kl1.sys -- (kl1)
DRV - [2008/08/26 05:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2008/04/13 13:45:12 | 000,060,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\USBAUDIO.sys -- (usbaudio) USB Audio Driver (WDM)
DRV - [2008/04/13 13:36:39 | 000,043,008 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | Disabled] -- C:\WINDOWS\system32\DRIVERS\amdagp.sys -- (amdagp)
DRV - [2008/04/13 13:36:39 | 000,040,960 | ---- | M] (Silicon Integrated Systems Corporation) [Kernel | Disabled] -- C:\WINDOWS\system32\DRIVERS\sisagp.sys -- (sisagp)
DRV - [2008/04/13 11:36:05 | 000,144,384 | ---- | M] (Windows ® Server 2003 DDK provider) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\hdaudbus.sys -- (HDAudBus)
DRV - [2008/01/20 13:36:56 | 000,035,840 | ---- | M] (Sax software company) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\SAXNDIS.sys -- (SaxNDIS) Ax3soft Packet Driver (SaxNDIS)
DRV - [2007/09/16 19:07:00 | 006,853,088 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv)
DRV - [2007/06/22 11:59:24 | 000,479,232 | ---- | M] (eMPIA Technology, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\emBDA.sys -- (USB28xxBGA)
DRV - [2007/06/22 11:59:06 | 000,038,656 | ---- | M] (eMPIA Technology, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\emOEM.sys -- (USB28xxOEM)
DRV - [2007/06/13 14:41:44 | 004,403,712 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2007/02/25 06:10:48 | 000,005,376 | --S- | M] (Gteko Ltd.) [Kernel | Auto] -- C:\WINDOWS\system32\drivers\dsunidrv.sys -- (dsunidrv)
DRV - [2007/02/12 14:36:54 | 000,277,784 | ---- | M] (Intel Corporation) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\iastor.sys -- (iaStor)
DRV - [2006/10/05 11:07:28 | 000,004,736 | ---- | M] (Gteko Ltd.) [Kernel | On_Demand] -- C:\Program Files\DellSupport\GTAction\triggers\DSproct.sys -- (DSproct)
DRV - [2006/08/18 07:18:08 | 000,009,400 | ---- | M] (Roxio) [File_System | Auto] -- C:\WINDOWS\system32\DLA\DLADResM.SYS -- (DLADResM)
DRV - [2006/08/18 07:17:46 | 000,035,096 | ---- | M] (Roxio) [File_System | Auto] -- C:\WINDOWS\system32\DLA\DLABMFSM.SYS -- (DLABMFSM)
DRV - [2006/08/18 07:17:44 | 000,097,848 | ---- | M] (Roxio) [File_System | Auto] -- C:\WINDOWS\system32\DLA\DLAUDF_M.SYS -- (DLAUDF_M)
DRV - [2006/08/18 07:17:44 | 000,094,648 | ---- | M] (Roxio) [File_System | Auto] -- C:\WINDOWS\system32\DLA\DLAUDFAM.SYS -- (DLAUDFAM)
DRV - [2006/08/18 07:17:42 | 000,026,008 | ---- | M] (Roxio) [File_System | Auto] -- C:\WINDOWS\system32\DLA\DLAOPIOM.SYS -- (DLAOPIOM)
DRV - [2006/08/18 07:17:40 | 000,032,472 | ---- | M] (Roxio) [File_System | Auto] -- C:\WINDOWS\system32\DLA\DLABOIOM.SYS -- (DLABOIOM)
DRV - [2006/08/18 07:17:38 | 000,104,472 | ---- | M] (Roxio) [File_System | Auto] -- C:\WINDOWS\system32\DLA\DLAIFS_M.SYS -- (DLAIFS_M)
DRV - [2006/08/18 07:17:38 | 000,014,520 | ---- | M] (Roxio) [File_System | Auto] -- C:\WINDOWS\system32\DLA\DLAPoolM.SYS -- (DLAPoolM)
DRV - [2006/08/11 05:05:58 | 000,051,768 | ---- | M] (Roxio) [File_System | Auto] -- C:\WINDOWS\system32\drivers\DRVNDDM.SYS -- (DRVNDDM)
DRV - [2006/08/11 04:35:18 | 000,012,920 | ---- | M] (Roxio) [File_System | System] -- C:\WINDOWS\system32\drivers\DLACDBHM.SYS -- (DLACDBHM)
DRV - [2006/08/11 04:35:16 | 000,028,184 | ---- | M] (Roxio) [File_System | System] -- C:\WINDOWS\system32\drivers\DLARTL_M.SYS -- (DLARTL_M)
DRV - [2006/07/21 05:21:26 | 000,099,176 | ---- | M] (Sonic Solutions) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\DRVMCDB.SYS -- (DRVMCDB)
DRV - [2006/06/12 13:06:28 | 000,041,984 | ---- | M] (Samsung Electronics Co., Ltd.) [Kernel | Auto] -- C:\WINDOWS\system32\drivers\DGIVECP.SYS -- (DgiVecp)
DRV - [2005/02/17 08:46:06 | 000,283,904 | ---- | M] () [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\ar5523.sys -- (AR5523)
DRV - [2005/01/17 05:54:56 | 000,086,528 | ---- | M] (VideoHome Tech.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\thpbdau2.sys -- (VideoHomeBDAU2)
DRV - [2004/09/11 04:52:26 | 000,043,264 | ---- | M] (Windows ® 2000 DDK provider) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\athfmwdl.sys -- (ATHFMWDL)
DRV - [2004/08/04 05:00:00 | 000,223,616 | ---- | M] (Microsoft Corporation) [Kernel | System] -- C:\WINDOWS\system32\drivers\tcpip6.sys -- (Tcpip6)
DRV - [2004/08/04 05:00:00 | 000,179,584 | ---- | M] (Mylex Corporation) [Kernel | Disabled] -- C:\WINDOWS\system32\DRIVERS\dac2w2k.sys -- (dac2w2k)
DRV - [2004/08/04 05:00:00 | 000,088,448 | ---- | M] (Microsoft Corporation) [Kernel | Auto] -- C:\WINDOWS\system32\drivers\nwlnkipx.sys -- (NwlnkIpx)
DRV - [2004/08/04 05:00:00 | 000,063,232 | ---- | M] (Microsoft Corporation) [Kernel | Auto] -- C:\WINDOWS\system32\drivers\nwlnknb.sys -- (NwlnkNb)
DRV - [2004/08/04 05:00:00 | 000,055,936 | ---- | M] (Microsoft Corporation) [Kernel | Auto] -- C:\WINDOWS\system32\drivers\nwlnkspx.sys -- (NwlnkSpx)
DRV - [2004/08/04 05:00:00 | 000,049,024 | ---- | M] (QLogic Corporation) [Kernel | Disabled] -- C:\WINDOWS\system32\DRIVERS\ql1280.sys -- (ql1280)
DRV - [2004/08/04 05:00:00 | 000,045,312 | ---- | M] (QLogic Corporation) [Kernel | Disabled] -- C:\WINDOWS\system32\DRIVERS\ql12160.sys -- (ql12160)
DRV - [2004/08/04 05:00:00 | 000,040,320 | ---- | M] (QLogic Corporation) [Kernel | Disabled] -- C:\WINDOWS\system32\DRIVERS\ql1080.sys -- (ql1080)
DRV - [2004/08/04 05:00:00 | 000,040,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\nmnt.sys -- (nm)
DRV - [2004/08/04 05:00:00 | 000,036,736 | ---- | M] (Promise Technology, Inc.) [Kernel | Disabled] -- C:\WINDOWS\system32\DRIVERS\ultra.sys -- (ultra)
DRV - [2004/08/04 05:00:00 | 000,032,640 | ---- | M] (LSI Logic) [Kernel | Disabled] -- C:\WINDOWS\system32\DRIVERS\symc8xx.sys -- (symc8xx)
DRV - [2004/08/04 05:00:00 | 000,030,688 | ---- | M] (LSI Logic) [Kernel | Disabled] -- C:\WINDOWS\system32\DRIVERS\sym_u3.sys -- (sym_u3)
DRV - [2004/08/04 05:00:00 | 000,028,384 | ---- | M] (LSI Logic) [Kernel | Disabled] -- C:\WINDOWS\system32\DRIVERS\sym_hi.sys -- (sym_hi)
DRV - [2004/08/04 05:00:00 | 000,026,496 | ---- | M] (Advanced System Products, Inc.) [Kernel | Disabled] -- C:\WINDOWS\system32\DRIVERS\asc.sys -- (asc)
DRV - [2004/08/04 05:00:00 | 000,019,072 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled] -- C:\WINDOWS\system32\DRIVERS\sparrow.sys -- (Sparrow)
DRV - [2004/08/04 05:00:00 | 000,017,280 | ---- | M] (American Megatrends Inc.) [Kernel | Disabled] -- C:\WINDOWS\system32\DRIVERS\mraid35x.sys -- (mraid35x)
DRV - [2004/08/04 05:00:00 | 000,016,256 | ---- | M] (Symbios Logic Inc.) [Kernel | Disabled] -- C:\WINDOWS\system32\DRIVERS\symc810.sys -- (symc810)
DRV - [2004/08/04 05:00:00 | 000,015,360 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\mpe.sys -- (MPE)
DRV - [2004/08/04 05:00:00 | 000,014,848 | ---- | M] (Advanced System Products, Inc.) [Kernel | Disabled] -- C:\WINDOWS\system32\DRIVERS\asc3550.sys -- (asc3550)
DRV - [2004/08/04 05:00:00 | 000,006,656 | ---- | M] (CMD Technology, Inc.) [Kernel | Disabled] -- C:\WINDOWS\system32\DRIVERS\cmdide.sys -- (CmdIde)
DRV - [2004/08/04 05:00:00 | 000,005,248 | ---- | M] (Acer Laboratories Inc.) [Kernel | Disabled] -- C:\WINDOWS\system32\DRIVERS\aliide.sys -- (AliIde)
DRV - [2004/02/11 09:34:50 | 000,021,808 | ---- | M] (An Chen Computer Co., Ltd.) [Kernel | On_Demand] -- C:\WINDOWS\System32\Drivers\Aldebaran.sys -- (Aldebaran)
DRV - [2004/02/11 09:34:46 | 000,016,855 | ---- | M] (An Chen Computer Co., Ltd.) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\Achernar.sys -- (Achernar)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\Software\Microsoft\Internet Explorer\Search,Default_Page_URL = www.google.co.uk/ig/dell?hl=en&client=dell-usuk&channel=uk&ibd=1070911
IE - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.co.uk/hws/sb/dell-usuk/en/side.html?channel=uk
IE - HKLM\Software\Microsoft\Internet Explorer\Search,Start Page = www.google.co.uk/ig/dell?hl=en&client=dell-usuk&channel=uk&ibd=1070911
IE - HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.co.uk/ig/dell?hl=en&client=dell-usuk&channel=uk&ibd=1070911
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\Administrator_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\David_ON_C\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.co.uk/ig/dell?hl=en&client=dell-usuk&channel=uk&ibd=1070911
IE - HKU\David_ON_C\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.co.uk/hws/sb/dell-usuk/en/side.html?channel=uk
IE - HKU\David_ON_C\Software\Microsoft\Internet Explorer\Main,Start Page = http://k2b-bulk.ebay.co.uk/ws/eBayISAPI.dll?SMSummary
IE - HKU\David_ON_C\..\URLSearchHook: {472734EA-242A-422b-ADF8-83D1E48CC825} - Reg Error: Key error. File not found
IE - HKU\David_ON_C\..\URLSearchHook: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
IE - HKU\David_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\Guest_ON_C\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.co.uk/ig/dell?hl=en&client=dell-usuk&channel=uk&ibd=1070911
IE - HKU\Guest_ON_C\Software\Microsoft\Internet Explorer\Main,First Home Page = http://www1.euro.dell.com/content/default.aspx?c=uk&l=en&s=gen
IE - HKU\Guest_ON_C\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.co.uk/hws/sb/dell-usuk/en/side.html?channel=uk
IE - HKU\Guest_ON_C\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.co.uk/ig/dell?hl=en&client=dell-usuk&channel=uk&ibd=1070911
IE - HKU\Guest_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - prefs.js..extensions.enabledItems: linkfilter@kaspersky.ru:9.0.0.736
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - HKLM\software\mozilla\Firefox\Extensions\\{6E19037A-12E3-4295-8915-ED48BC341614}: C:\Program Files\RelevantKnowledge
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.12\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010/12/08 05:49:45 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.12\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010/12/01 05:35:31 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Thunderbird\Extensions\\{eea12ec4-729d-4703-bc37-106ce9879ce2}: C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\THBExt [2010/01/16 04:49:24 | 000,000,000 | ---D | M]
[2010/12/08 07:10:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Extensions
[2010/12/23 16:49:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\r87hsvxe.default\extensions
[2010/12/23 10:38:41 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\r87hsvxe.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2006/12/31 19:39:06 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2010/09/26 09:21:45 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
[2006/12/31 19:39:07 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
[2009/12/27 17:01:00 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions\linkfilter@kaspersky.ru
[2006/12/31 19:38:45 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
[2010/10/27 00:24:34 | 000,001,538 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\amazon-en-GB.xml
[2010/10/27 00:24:34 | 000,000,947 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\chambers-en-GB.xml
[2010/10/27 00:24:34 | 000,000,769 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\eBay-en-GB.xml
[2010/10/27 00:24:34 | 000,001,135 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\yahoo-en-GB.xml
O1 HOSTS File: ([2010/12/17 07:24:05 | 000,000,098 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (&Yahoo! Toolbar Helper) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (eBay Toolbar Helper) - {22D8E815-4A5E-4DFB-845E-AAB64207F5BD} - C:\Program Files\eBay\eBay Toolbar2\eBayTb.dll (eBay Inc.)
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O2 - BHO: (IEVkbdBHO Class) - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\ievkbd.dll (Kaspersky Lab)
O2 - BHO: (CBrowserHelperObject Object) - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\Dell\BAE\BAE.dll (Dell Inc.)
O2 - BHO: (FDMIECookiesBHO Class) - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files\Free Download Manager\iefdm2.dll ()
O2 - BHO: (FilterBHO Class) - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\klwtbbho.dll (Kaspersky Lab)
O3 - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll ()
O3 - HKLM\..\Toolbar: (eBay Toolbar) - {92085AD4-F48A-450D-BD93-B28CC7DF67CE} - C:\Program Files\eBay\eBay Toolbar2\eBayTb.dll (eBay Inc.)
O3 - HKLM\..\Toolbar: (Yahoo! Toolbar) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
O3 - HKU\David_ON_C\..\Toolbar\WebBrowser: (no name) - {043C5167-00BB-4324-AF7E-62013FAEDACF} - No CLSID value found.
O3 - HKU\Guest_ON_C\..\Toolbar\WebBrowser: (no name) - {043C5167-00BB-4324-AF7E-62013FAEDACF} - No CLSID value found.
O3 - HKU\Guest_ON_C\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O3 - HKU\Guest_ON_C\..\Toolbar\WebBrowser: (no name) - {CC05A3E3-64C3-4AF2-BFC1-AF0D66B69065} - No CLSID value found.
O4 - HKLM..\Run: [AVP] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe (Kaspersky Lab)
O4 - HKLM..\Run: [dellsupportcenter] C:\Program Files\Dell Support Center\bin\sprtcmd.exe (SupportSoft, Inc.)
O4 - HKLM..\Run: [DivXUpdate] C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
O4 - HKLM..\Run: [dscactivate] C:\Program Files\Dell Support Center\gs_agent\custom\dsca.exe ( )
O4 - HKLM..\Run: [eBayToolbar] C:\Program Files\eBay\eBay Toolbar2\eBayTBDaemon.exe (eBay Inc.)
O4 - HKLM..\Run: [EKIJ5000StatusMonitor] C:\WINDOWS\system32\spool\drivers\w32x86\3\EKIJ5000MUI.exe (Eastman Kodak Company)
O4 - HKLM..\Run: [EzPrint] C:\Program Files\Lexmark 4300 Series\ezprint.exe (Lexmark International Inc.)
O4 - HKLM..\Run: [ISUSPM Startup] C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe (Macrovision Corporation)
O4 - HKLM..\Run: [ISUSScheduler] C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe (Macrovision Corporation)
O4 - HKLM..\Run: [LXCECATS] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\LXCEtime.DLL ()
O4 - HKLM..\Run: [lxcemon.exe] C:\Program Files\Lexmark 4300 Series\lxcemon.exe (Lexmark International, Inc.)
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware (reboot)] C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [NBKeyScan] C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe (Nero AG)
O4 - HKLM..\Run: [NokiaMServer] C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer.exe (Nokia)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [Presto! DVR Monitor] C:\Program Files\NewSoft\Presto! DVR\Monitor.exe (NewSoft)
O4 - HKLM..\Run: [Presto! PVR Monitor] C:\Program Files\NewSoft\Presto! PVR\Monitor.exe (NewSoft)
O4 - HKLM..\Run: [PrnStatusMX] C:\Program Files\Hewlett-Packard\PrnStatusMX\PrnStatusMX.exe (Marvell Semiconductor, Inc.)
O4 - HKLM..\Run: [SpyHunter Security Suite] C:\Program Files\Enigma Software Group\SpyHunter\SpyHunter4.exe (Enigma Software Group USA, LLC.)
O4 - HKLM..\Run: [Symantec PIF AlertEng] C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe (Symantec Corporation)
O4 - HKU\Administrator_ON_C..\Run: [DellSupport] C:\Program Files\DellSupport\DSAgnt.exe (Gteko Ltd.)
O4 - HKU\Administrator_ON_C..\Run: [IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe (Nero AG)
O4 - HKU\David_ON_C..\Run: [DellSupport] C:\Program Files\DellSupport\DSAgnt.exe (Gteko Ltd.)
O4 - HKU\David_ON_C..\Run: [IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe (Nero AG)
O4 - HKU\David_ON_C..\Run: [PC Suite Tray] C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe (Nokia)
O4 - HKU\David_ON_C..\Run: [rkill] C:\Documents and Settings\David\Desktop\rkill.exe ()
O4 - HKU\David_ON_C..\Run: [Software Informer] C:\Program Files\Software Informer\softinfo.exe (Informer Technologies, Inc.)
O4 - HKU\David_ON_C..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe (Safer Networking Limited)
O4 - HKU\David_ON_C..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\23ec432b-1cb1-4d03-a0ba-382d7e45ca2b.com (SUPERAntiSpyware.com)
O4 - HKU\Guest_ON_C..\Run: [DellSupport] C:\Program Files\DellSupport\DSAgnt.exe (Gteko Ltd.)
O4 - HKU\Guest_ON_C..\Run: [IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe (Nero AG)
O4 - HKU\Guest_ON_C..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe File not found
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Lightsurf.lnk = C:\Program Files\LightSurf\Common\IconMgr.exe (LightSurf Technologies, Inc.)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\Administrator_ON_C\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\Administrator_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\Administrator_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\Administrator_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\David_ON_C\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\David_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\Guest_ON_C\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\Guest_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\LocalService_ON_C\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\LocalService_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\NetworkService_ON_C\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\NetworkService_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\systemprofile_ON_C\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8 - Extra context menu item: eBay Search - C:\Program Files\eBay\eBay Toolbar2\eBayTb.dll (eBay Inc.)
O9 - Extra Button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra Button: Run WinHTTrack - {36ECAF82-3300-8F84-092E-AFF36D6C7040} - C:\Program Files\WinHTTrack\WinHTTrackIEBar.dll ()
O9 - Extra 'Tools' menuitem : Launch WinHTTrack - {36ECAF82-3300-8F84-092E-AFF36D6C7040} - C:\Program Files\WinHTTrack\WinHTTrackIEBar.dll ()
O9 - Extra Button: &Virtual keyboard - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\klwtbbho.dll (Kaspersky Lab)
O9 - Extra Button: Bonjour - {7F9DB11C-E358-4ca6-A83D-ACC663939424} - C:\Program Files\Bonjour\ExplorerPlugin.dll (Apple Inc.)
O9 - Extra Button: URLs c&heck - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\klwtbbho.dll (Kaspersky Lab)
O9 - Extra 'Tools' menuitem : Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O9 - Extra Button: Sothink SWF Catcher - {E19ADC6E-3909-43E4-9A89-B7B676377EE3} - C:\Program Files\Common Files\SourceTec\SWF Catcher\InternetExplorer.htm ()
O9 - Extra 'Tools' menuitem : Sothink SWF Catcher - {E19ADC6E-3909-43E4-9A89-B7B676377EE3} - C:\Program Files\Common Files\SourceTec\SWF Catcher\InternetExplorer.htm ()
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\WINDOWS\system32\nwprovau.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - File not found
O16 - DPF: {01A88BB1-1174-41EC-ACCB-963509EAE56B} http://support.euro.dell.com/systemprofiler/SysPro.CAB (SysProWmi Class)
O16 - DPF: {0E5F0222-96B9-11D3-8997-00104BD12D94} http://www.pcpitstop.com/betapit/PCPitStop.CAB (PCPitstop Utility)
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} http://security.symantec.com/sscv6/SharedContent/vc/bin/AvSniff.cab (Symantec AntiVirus scanner)
O16 - DPF: {4C39376E-FA9D-4349-BACC-D305C1750EF3} http://tools.ebayimg.com/eps/wl/activex/eBay_Enhanced_Picture_Control_v1-0-24-0.cab (EPUImageControl Class)
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab (Symantec RuFSI Utility Class)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1205320089281 (MUWebControl Class)
O16 - DPF: {6F6FDB9E-5072-498C-BCB0-2B7F00C49EE7} http://support.euro.dell.com/systemprofiler/DellSystemLite.CAB (DellSystemLite.Scanner)
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab (OnlineScanner Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {8FEFF364-6A5F-4966-A917-A3AC28411659} http://download.sopcast.com/download/SOPCORE.CAB (SopCore Control)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab (Reg Error: Key error.)
O16 - DPF: {A9F8D9EC-3D0A-4A60-BD82-FBD64BAD370D} http://h20264.www2.hp.com/ediags/dd/install/HPDriverDiagnosticsxp2k.cab (DDRevision Class)
O16 - DPF: {C1FDEE68-98D5-4F42-A4DD-D0BECF5077EB} http://tools.ebayimg.com/eps/wl/activex/eBay_Enhanced_Picture_Control_v1-0-27-0.cab (EPUImageControl Class)
O16 - DPF: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {CF84DAC5-A4F5-419E-A0BA-C01FFD71112F} http://content.systemrequirementslab.com.s3.amazonaws.com/global/bin/srldetect_intel_4.3.1.0.cab (SysInfo Class)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O16 - DPF: {E8F628B5-259A-4734-97EE-BA914D7BE941} http://plugin.driveragent.com/files/driveragent.cab (Driver Agent ActiveX Control)
O16 - DPF: Deployer http://www.pcthreat.com/autoinstall/shsafeinstall.cab (Reg Error: Key error.)
O18 - Protocol\Handler\intu-help-qb1 {9B0F96C7-2E4B-433e-ABF3-043BA1B54AE3} - C:\Program Files\Intuit\QuickBooks 2008\HelpAsyncPluggableProtocol.dll (TODO: <Company name>)
O18 - Protocol\Handler\vsharechrome {3F3A4B8A-86FC-43A4-BB00-6D7EBE9D4484} - Reg Error: Key error. File not found
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O20 - AppInit_DLLs: (C:\PROGRA~1\KASPER~1\KASPER~1\kloehk.dll) - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\kloehk.dll (Kaspersky Lab)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UIHost - (C:\Documents and Settings\All Users\Application Data\TuneUp Software\TuneUp Utilities\WinStyler\tu_logonui.exe) - C:\Documents and Settings\All Users\Application Data\TuneUp Software\TuneUp Utilities\WinStyler\tu_logonui.exe (Microsoft Corporation)
O20 - Winlogon\Notify\!SASWinLogon: DllName - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL (SUPERAntiSpyware.com)
O20 - Winlogon\Notify\klogon: DllName - C:\WINDOWS\system32\klogon.dll - C:\WINDOWS\system32\klogon.dll (Kaspersky Lab)
O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Bliss.bmp
O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Bliss.bmp
O28 - HKLM ShellExecuteHooks: {091EB208-39DD-417D-A5DD-7E2C2D8FB9CB} - C:\Program Files\Windows Defender\MpShHook.dll (Microsoft Corporation)
O28 - HKLM ShellExecuteHooks: {56F9679E-7826-4C84-81F3-532071A8BCC5} - C:\Program Files\Windows Desktop Search\MsnlNamespaceMgr.dll (Microsoft Corporation)
O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL (SuperAdBlocker.com)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010/12/23 10:29:39 | 000,000,000 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2010/07/02 06:53:26 | 000,000,000 | ---D | M] - D:\Autoplay CD's -- [ NTFS ]
O32 - AutoRun File - [2009/12/29 02:26:19 | 000,000,000 | ---D | M] - D:\Autoplay CD's Old -- [ NTFS ]
O32 - AutoRun File - [2006/03/24 06:06:41 | 000,000,053 | R--- | M] () - X:\AUTORUN.INF -- [ CDFS ]
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
========== Files/Folders - Created Within 30 Days ==========
[2010/12/24 00:44:58 | 016,561,952 | ---- | C] (Sun Microsystems, Inc.) -- C:\Documents and Settings\Administrator\Desktop\jre-6u23-windows-i586.exe
[2010/12/23 10:50:37 | 000,000,000 | RHSD | C] -- C:\cmdcons
[2010/12/23 10:47:01 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe
[2010/12/23 10:47:01 | 000,161,792 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe
[2010/12/23 10:47:01 | 000,136,704 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe
[2010/12/23 10:47:01 | 000,031,232 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe
[2010/12/23 10:46:45 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2010/12/23 10:42:38 | 000,000,000 | ---D | C] -- C:\Qoobox
[2010/12/23 10:21:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch
[2010/12/23 07:41:59 | 000,000,000 | ---D | C] -- C:\tmp
[2010/12/17 07:24:05 | 000,553,984 | R--- | C] (OldTimer Tools) -- C:\OTLPE.exe
[2010/12/17 07:22:39 | 000,000,000 | ---D | C] -- C:\_OTL
[2010/12/13 11:46:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Local Settings\Application Data\Safe mirror
[2010/12/13 11:45:28 | 000,000,000 | ---D | C] -- C:\Program Files\Cobian Backup 10
[2010/12/13 11:44:50 | 015,492,608 | ---- | C] (Luis Cobian, CobianSoft) -- C:\Documents and Settings\David\Desktop\cbSetup.exe
[2010/12/12 11:17:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\SUPERAntiSpyware.com
[2010/12/12 09:11:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\vShare
[2010/12/10 12:18:42 | 000,000,000 | ---D | C] -- C:\Program Files\ESET
[2010/12/10 11:51:42 | 011,843,016 | ---- | C] (Microsoft Corporation) -- C:\Documents and Settings\David\goal-kb890830-v3.13.exe
[2010/12/10 09:28:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft Corporation
[2010/12/10 09:19:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Desktop
[2010/12/10 07:49:13 | 000,000,000 | ---D | C] -- C:\Program Files\Active Shield 5
[2010/12/10 07:28:38 | 000,356,352 | ---- | C] (eSellerate Inc.) -- C:\WINDOWS\eSellerateEngine.dll
[2010/12/10 07:28:37 | 000,081,920 | ---- | C] (eSellerate Inc.) -- C:\WINDOWS\eSellerateControl350.dll
[2010/12/10 07:28:37 | 000,000,000 | ---D | C] -- C:\Program Files\True Sword 5
[2010/12/10 07:19:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\Yahoo!
[2010/12/10 07:10:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Desktop\SysProt
[2010/12/10 07:09:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\WinRAR
[2010/12/10 05:44:17 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2010/12/10 05:44:13 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2010/12/10 05:44:13 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2010/12/10 05:34:19 | 000,315,408 | ---- | C] (Kaspersky Lab) -- C:\WINDOWS\System32\drivers\5737390.sys
[2010/12/10 05:34:19 | 000,128,016 | ---- | C] (Kaspersky Lab) -- C:\WINDOWS\System32\drivers\57373901.sys
[2010/12/10 05:34:19 | 000,037,392 | ---- | C] (Kaspersky Lab) -- C:\WINDOWS\System32\drivers\57373902.sys
[2010/12/10 05:34:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Desktop\Virus Removal Tool
[2010/12/10 05:29:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\Windows Search
[2010/12/10 05:27:02 | 000,000,000 | ---D | C] -- C:\Program Files\SUPERAntiSpyware
[2010/12/10 04:44:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\SUPERAntiSpyware.com
[2010/12/09 07:41:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\Sun
[2010/12/09 07:39:20 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarere
[2010/12/09 07:35:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\Eastman_Kodak_Company
[2010/12/09 07:35:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\Eastman Kodak Company
[2010/12/09 03:31:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\InfraRecorder
[2010/12/09 03:05:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\Macromedia
[2010/12/09 03:03:52 | 007,622,112 | ---- | C] (Malwarebytes Corporation ) -- C:\Documents and Settings\Administrator\Desktop\mbam-setup-1.50.0.0.exe
[2010/12/09 02:59:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\vShare
[2010/12/09 02:59:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\Identities
[2010/12/09 02:59:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\Ahead
[2010/12/09 02:59:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\Windows Desktop Search
[2010/12/09 02:59:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\SupportSoft
[2010/12/09 02:59:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\Nero
[2010/12/09 02:59:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\eBay
[2010/12/09 02:58:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\Trusteer
[2010/12/09 01:30:57 | 000,064,288 | ---- | C] (Lavasoft AB) -- C:\WINDOWS\System32\drivers\Lbd.sys
[2010/12/09 01:30:54 | 000,098,392 | ---- | C] (Sunbelt Software) -- C:\WINDOWS\System32\drivers\SBREDrv.sys
[2010/12/09 01:26:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Local Settings\Application Data\Sunbelt Software
[2010/12/09 01:19:57 | 000,000,000 | ---D | C] -- C:\Program Files\Lavasoft
[2010/12/09 01:00:29 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\David\IECompatCache
[2010/12/09 00:58:57 | 000,000,000 | ---D | C] -- C:\!KillBox
[2010/12/09 00:58:53 | 000,092,672 | ---- | C] (Option^Explicit Software vbtechcd@gmail.com) -- C:\Documents and Settings\David\Desktop\KillBox.exe
[2010/12/08 11:28:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Desktop\New Folder
[2010/12/08 11:22:11 | 000,000,000 | ---D | C] -- C:\sh4ldr
[2010/12/08 11:22:11 | 000,000,000 | ---D | C] -- C:\Program Files\Enigma Software Group
[2010/12/08 11:20:07 | 000,663,960 | ---- | C] (Enigma Software Group USA, LLC.) -- C:\Documents and Settings\David\Desktop\SpyHunter-Installer.exe
[2010/12/08 10:45:12 | 000,000,000 | ---D | C] -- C:\TDSSKiller_Quarantine
[2010/12/08 10:43:50 | 001,344,600 | ---- | C] (Kaspersky Lab ZAO) -- C:\Documents and Settings\David\Desktop\TDSSKiller.exe
[2010/12/08 08:38:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Guest\Application Data\Macromedia
[2010/12/08 08:38:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Guest\Application Data\vShare
[2010/12/08 08:38:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Guest\Application Data\Adobe
[2010/12/08 08:38:21 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Guest\PrivacIE
[2010/12/08 08:38:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Guest\Local Settings\Application Data\Conduit
[2010/12/08 08:38:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Guest\Application Data\Yahoo!
[2010/12/08 08:38:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Guest\Local Settings\Application Data\softonic-de3
[2010/12/08 08:37:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Guest\Application Data\Google
[2010/12/08 08:37:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Guest\Local Settings\Application Data\ConduitEngine
[2010/12/08 08:37:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Guest\Local Settings\Application Data\Ahead
[2010/12/08 08:37:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Guest\Local Settings\Application Data\Identities
[2010/12/08 08:37:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Guest\Application Data\Windows Desktop Search
[2010/12/08 08:37:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Guest\Local Settings\Application Data\Mozilla
[2010/12/08 08:37:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Guest\Application Data\Mozilla
[2010/12/08 08:37:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Guest\Application Data\Nero
[2010/12/08 08:36:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Guest\Application Data\eBay
[2010/12/08 08:01:08 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Defender
[2010/12/08 07:16:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\Malwarebytes
[2010/12/08 07:14:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\Macromedia
[2010/12/08 07:11:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\My Documents\Downloads
[2010/12/08 07:10:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\Mozilla
[2010/12/08 07:10:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\Mozilla
[2010/12/08 05:12:22 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Guest\IETldCache
[2010/12/08 05:12:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Guest\Application Data\PC Suite
[2010/12/08 05:12:15 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Guest\Application Data\Microsoft
[2010/12/08 05:12:15 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Guest\SendTo
[2010/12/08 05:12:15 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Guest\Recent
[2010/12/08 05:12:15 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Guest\Application Data
[2010/12/08 05:12:15 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Guest\Start Menu
[2010/12/08 05:12:15 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Guest\My Documents\My Videos
[2010/12/08 05:12:15 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Guest\My Documents\My Pictures
[2010/12/08 05:12:15 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Guest\My Documents\My Music
[2010/12/08 05:12:15 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Guest\My Documents
[2010/12/08 05:12:15 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Guest\Favorites
[2010/12/08 05:12:15 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Guest\Cookies
[2010/12/08 05:12:15 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Guest\Templates
[2010/12/08 05:12:15 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Guest\PrintHood
[2010/12/08 05:12:15 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Guest\NetHood
[2010/12/08 05:12:15 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Guest\Local Settings
[2010/12/08 05:12:15 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Guest\Application Data\GTek
[2010/12/08 05:12:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Guest\Application Data\Trusteer
[2010/12/08 05:12:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Guest\Local Settings\Application Data\Temp
[2010/12/08 05:12:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Guest\Local Settings\Application Data\Roxio
[2010/12/08 05:12:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Guest\Application Data\Roxio
[2010/12/08 05:12:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Guest\Local Settings\Application Data\PowerDVD DX
[2010/12/08 05:12:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Guest\My Documents\My Google Gadgets
[2010/12/08 05:12:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Guest\Local Settings\Application Data\Microsoft
[2010/12/08 05:12:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Guest\Application Data\InstallShield
[2010/12/08 05:12:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Guest\Application Data\Identities
[2010/12/08 05:12:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Guest\Local Settings\Application Data\Google
[2010/12/08 05:12:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Guest\Desktop
[2010/12/08 05:12:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Guest\Local Settings\Application Data\ApplicationHistory
[2010/12/08 05:12:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Guest\Local Settings\Application Data\Adobe
[2010/12/08 05:12:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Guest\Local Settings\Application Data\{3248F0A6-6813-11D6-A77B-00B0D0150060}
[2010/12/08 05:06:43 | 000,000,000 | ---D | C] -- C:\Program Files\Spybot - Search & Destroy
[2010/12/08 04:51:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\PC Tools
[2010/12/08 04:51:40 | 006,872,936 | ---- | C] (PC Tools Research Pty. Ltd. ) -- C:\Documents and Settings\David\Desktop\sdtrial-regnow.exe
[2010/12/08 04:25:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\SlimBrowser
[2010/12/08 04:16:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\TuneUp Software
[2010/12/08 04:16:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\Adobe
[2010/12/08 04:15:16 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Administrator\PrivacIE
[2010/12/08 04:13:35 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Administrator\IETldCache
[2010/12/08 04:08:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Local Settings\Application Data\NPE
[2010/12/08 03:50:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\PriceGong
[2010/12/08 02:47:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\Malwarebytes
[2010/12/08 02:45:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Malware
[2010/11/30 03:17:55 | 000,018,816 | ---- | C] (Nokia) -- C:\WINDOWS\System32\drivers\pccsmcfd.sys
[2010/11/30 03:17:36 | 000,000,000 | ---D | C] -- C:\Program Files\PC Connectivity Solution
[2010/11/23 15:04:03 | 000,000,000 | ---D | C] -- C:\Program Files\vShare
[2010/11/20 16:12:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\PCDr
[2010/11/19 16:09:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Local Settings\Application Data\Conduit
[2010/11/17 07:46:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\dvd
[2010/11/15 06:26:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Manuals
[2010/11/13 09:46:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\WeBid
[2010/11/11 10:20:00 | 000,000,000 | ---D | C] -- C:\Program Files\ElcomSoft
[2010/11/11 10:17:11 | 000,000,000 | ---D | C] -- C:\Program Files\Intelore
[2010/11/11 03:20:57 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\David\Recent
[2010/11/07 05:48:20 | 000,000,000 | ---D | C] -- C:\Program Files\Pic2Ico
[2010/11/02 11:47:12 | 000,082,376 | ---- | C] (Microsoft Corporation) -- C:\Documents and Settings\David\mrtstub.exe
[2010/11/01 05:59:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Presto! PVR
[2010/10/30 09:03:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\TVUAx
[2010/10/30 06:01:56 | 000,000,000 | ---D | C] -- C:\Program Files\SopCast
[2010/10/28 10:24:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Hugin 2010.2.0
[2010/10/23 11:38:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Local Settings\Application Data\NewSoft
[2010/10/23 11:32:21 | 000,021,808 | ---- | C] (An Chen Computer Co., Ltd.) -- C:\WINDOWS\System32\drivers\Aldebaran.sys
[2010/10/23 11:32:21 | 000,016,855 | ---- | C] (An Chen Computer Co., Ltd.) -- C:\WINDOWS\System32\drivers\Achernar.sys
[2010/10/23 11:30:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ipp20
[2010/10/23 11:30:01 | 002,428,928 | ---- | C] (Intel Corporation.) -- C:\WINDOWS\System32\ippia611.dll
[2010/10/23 11:30:01 | 001,359,872 | ---- | C] (Intel Corporation.) -- C:\WINDOWS\System32\ippsa611.dll
[2010/10/23 11:30:01 | 000,462,848 | ---- | C] (Intel Corporation.) -- C:\WINDOWS\System32\ippcva611.dll
[2010/10/23 11:30:01 | 000,225,280 | ---- | C] (Intel Corporation.) -- C:\WINDOWS\System32\ippi11.dll
[2010/10/23 11:30:01 | 000,184,320 | ---- | C] (Intel Corporation.) -- C:\WINDOWS\System32\ippsra611.dll
[2010/10/23 11:30:01 | 000,176,128 | ---- | C] (Intel Corporation.) -- C:\WINDOWS\System32\ipps11.dll
[2010/10/23 11:30:01 | 000,151,552 | ---- | C] (Intel Corporation.) -- C:\WINDOWS\System32\ippja611.dll
[2010/10/23 11:30:01 | 000,094,208 | ---- | C] (Intel Corporation.) -- C:\WINDOWS\System32\ippcv11.dll
[2010/10/23 11:30:01 | 000,077,824 | ---- | C] (Intel Corporation.) -- C:\WINDOWS\System32\ippsr11.dll
[2010/10/23 11:30:01 | 000,065,536 | ---- | C] (Intel Corporation.) -- C:\WINDOWS\System32\ippj11.dll
[2010/10/23 11:24:49 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\NewSoft
[2010/10/23 11:24:24 | 000,000,000 | ---D | C] -- C:\Program Files\NewSoft
[2010/10/23 11:19:21 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\vfwwdm32.dll
[2010/10/23 11:19:21 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\vidcap.ax
[2010/10/23 11:19:19 | 000,091,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\kswdmcap.ax
[2010/10/23 11:19:19 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\kstvtune.ax
[2010/10/23 11:19:19 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\ksxbar.ax
[2010/10/23 11:19:01 | 000,086,528 | ---- | C] (VideoHome Tech.) -- C:\WINDOWS\System32\drivers\thpbdau2.sys
[2010/10/23 11:18:59 | 000,000,000 | ---D | C] -- C:\Program Files\VideoHome
[2010/10/22 06:48:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\IObit
[2010/10/22 06:48:19 | 000,000,000 | ---D | C] -- C:\Program Files\IObit
[2010/10/08 03:18:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Local Settings\Application Data\Indigo Rose Corporation
[2010/10/07 04:54:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Desktop\Programs By Rick
[2010/10/07 04:54:04 | 000,000,000 | ---D | C] -- C:\AffilaitePageMakerByKirkham
[2010/10/06 13:41:33 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\PCSuite
[2010/10/05 06:39:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Local Settings\Application Data\Microsoft Corporation
[2010/10/05 06:38:13 | 000,421,888 | ---- | C] (Eastman Kodak Company) -- C:\WINDOWS\System32\EKIJ5000MON.dll
[2010/10/05 06:38:13 | 000,131,072 | ---- | C] (Eastman Kodak Company) -- C:\WINDOWS\System32\EKIJCOINST09.dll
[2010/10/03 17:43:44 | 000,059,240 | ---- | C] (Trusteer Ltd.) -- C:\WINDOWS\System32\drivers\RapportKELL.sys
[2010/09/30 23:49:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Jewel Covers
[2010/09/30 10:29:00 | 000,000,000 | ---D | C] -- C:\www
[2010/09/30 09:54:09 | 000,000,000 | ---D | C] -- C:\phpFiles
[2010/09/30 09:41:50 | 000,000,000 | ---D | C] -- C:\Program Files\EasyPHP5.2.10
[2010/09/30 09:40:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\PHP
[2010/09/26 09:21:42 | 000,472,808 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\deployJava1.dll
[2010/09/24 12:02:03 | 000,008,192 | ---- | C] (Nokia) -- C:\WINDOWS\System32\drivers\usbser_lowerfltj.sys
[2010/09/24 12:02:02 | 000,008,192 | ---- | C] (Nokia) -- C:\WINDOWS\System32\drivers\usbser_lowerflt.sys
[2010/09/24 12:02:00 | 000,022,528 | ---- | C] (Nokia) -- C:\WINDOWS\System32\drivers\ccdcmbo.sys
[2010/09/24 12:01:59 | 001,461,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wdfcoinstaller01009.dll
[2010/09/24 12:01:59 | 000,662,016 | ---- | C] (Nokia) -- C:\WINDOWS\System32\nmwcdcocls.dll
[2010/09/24 12:01:59 | 000,018,176 | ---- | C] (Nokia) -- C:\WINDOWS\System32\drivers\ccdcmb.sys
[2010/09/23 05:45:02 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\RtlGina
[2010/09/23 05:45:02 | 000,000,000 | ---D | C] -- C:\Program Files\REALTEK
[2010/09/22 12:43:54 | 000,000,000 | ---D | C] -- C:\Program Files\SystemRequirementsLab
[2010/09/21 18:29:57 | 000,527,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_7.dll
[2010/09/21 18:29:57 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAPOFX1_5.dll
[2010/09/21 18:29:56 | 002,106,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_43.dll
[2010/09/21 18:29:56 | 000,239,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_7.dll
[2010/09/21 18:29:55 | 001,868,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dcsx_43.dll
[2010/09/21 18:29:55 | 000,470,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_43.dll
[2010/09/21 18:29:55 | 000,248,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx11_43.dll
[2010/09/21 18:29:54 | 001,998,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_43.dll
[2010/09/21 18:29:53 | 000,528,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_6.dll
[2010/09/21 18:29:53 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_6.dll
[2010/09/21 18:29:53 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAPOFX1_4.dll
[2010/09/21 18:29:52 | 000,515,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_5.dll
[2010/09/21 18:29:52 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\X3DAudio1_7.dll
[2010/09/21 18:29:51 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_5.dll
[2010/09/21 18:29:50 | 001,974,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_42.dll
[2010/09/21 18:29:49 | 005,501,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dcsx_42.dll
[2010/09/21 18:29:49 | 000,235,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx11_42.dll
[2010/09/21 18:29:48 | 001,892,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_42.dll
[2010/09/21 18:29:48 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_42.dll
[2010/09/21 18:29:47 | 004,178,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_41.dll
[2010/09/21 18:29:47 | 001,846,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_41.dll
[2010/09/21 18:29:47 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_41.dll
[2010/09/21 18:29:46 | 000,517,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_4.dll
[2010/09/21 18:29:46 | 000,235,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_4.dll
[2010/09/21 18:29:46 | 000,069,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAPOFX1_3.dll
[2010/09/21 18:29:45 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\X3DAudio1_6.dll
[2010/09/21 18:29:44 | 004,379,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_40.dll
[2010/09/21 18:29:44 | 002,036,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_40.dll
[2010/09/21 18:29:44 | 000,452,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_40.dll
[2010/09/21 18:29:43 | 000,514,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_3.dll
[2010/09/21 18:29:43 | 000,235,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_3.dll
[2010/09/21 18:29:43 | 000,070,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAPOFX1_2.dll
[2010/09/21 18:29:42 | 000,509,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_2.dll
[2010/09/21 18:29:42 | 000,068,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAPOFX1_1.dll
[2010/09/21 18:29:42 | 000,023,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\X3DAudio1_5.dll
[2010/09/21 18:29:41 | 001,493,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_39.dll
[2010/09/21 18:29:41 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_39.dll
[2010/09/21 18:29:41 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_2.dll
[2010/09/21 18:29:40 | 003,851,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_39.dll
[2010/09/21 18:29:39 | 000,507,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_1.dll
[2010/09/21 18:29:39 | 000,065,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAPOFX1_0.dll
[2010/09/21 18:29:38 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_1.dll
[2010/09/21 18:29:38 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\X3DAudio1_4.dll
[2010/09/21 18:29:37 | 003,850,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_38.dll
[2010/09/21 18:29:37 | 001,491,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_38.dll
[2010/09/21 18:29:37 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_38.dll
[2010/09/21 18:29:36 | 000,479,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_0.dll
[2010/09/21 18:29:36 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_0.dll
[2010/09/21 18:29:35 | 001,420,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_37.dll
[2010/09/21 18:29:35 | 000,462,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_37.dll
[2010/09/21 18:29:35 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\X3DAudio1_3.dll
[2010/09/21 18:29:34 | 003,786,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_37.dll
[2010/09/21 18:29:33 | 000,267,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_10.dll
[2010/09/21 18:29:32 | 003,734,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_36.dll
[2010/09/21 18:29:32 | 001,374,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_36.dll
[2010/09/21 18:29:32 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_36.dll
[2010/09/21 18:29:31 | 000,267,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_9.dll
[2010/09/21 18:29:30 | 003,727,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_35.dll
[2010/09/21 18:29:30 | 001,358,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_35.dll
[2010/09/21 18:29:30 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_35.dll
[2010/09/21 18:29:29 | 001,124,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_34.dll
[2010/09/21 18:29:29 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_34.dll
[2010/09/21 18:29:29 | 000,266,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_8.dll
[2010/09/21 18:29:29 | 000,017,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\X3DAudio1_2.dll
[2010/09/21 18:29:28 | 003,497,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_34.dll
[2010/09/21 18:29:28 | 000,081,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xinput1_3.dll
[2010/09/21 18:29:26 | 000,261,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_7.dll
[2010/09/21 18:29:25 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_33.dll
[2010/09/21 18:29:24 | 001,123,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_33.dll
[2010/09/21 18:29:23 | 003,495,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_33.dll
[2010/09/21 18:29:22 | 000,255,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_6.dll
[2010/09/21 18:29:21 | 000,251,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_5.dll
[2010/09/21 18:29:21 | 000,237,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_4.dll
[2010/09/21 18:29:20 | 002,414,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_31.dll
[2010/09/21 18:29:20 | 000,015,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\x3daudio1_1.dll
[2010/09/21 18:29:19 | 000,236,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_3.dll
[2010/09/21 18:29:19 | 000,062,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xinput1_2.dll
[2010/09/21 18:29:18 | 000,230,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_2.dll
[2010/09/21 18:29:17 | 000,229,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_1.dll
[2010/09/21 18:29:17 | 000,062,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xinput1_1.dll
[2010/09/21 18:29:12 | 000,230,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_0.dll
[2010/09/21 18:29:12 | 000,014,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\x3daudio1_0.dll
[2010/09/21 18:29:11 | 002,332,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_29.dll
[2010/09/21 18:29:11 | 000,061,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xinput9_1_0.dll
[2010/09/21 18:29:10 | 002,297,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_26.dll
[2010/09/21 18:29:09 | 002,337,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_25.dll
[2010/09/21 18:29:06 | 002,222,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_24.dll
[2010/09/21 18:21:10 | 000,000,000 | ---D | C] -- C:\WINDOWS\Logs
[2010/09/21 18:17:44 | 000,000,000 | ---D | C] -- C:\truePlay2.0B1
[2010/09/21 18:13:41 | 002,682,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\vcredist_x86.exe
[2010/09/21 18:12:47 | 002,319,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_27.dll
[2010/09/21 18:12:47 | 000,000,000 | ---D | C] -- C:\trueSpace761Std
[2010/09/19 05:19:20 | 000,278,528 | ---- | C] (Real Networks, Inc) -- C:\WINDOWS\System32\pncrt.dll
[2010/09/19 05:19:20 | 000,185,920 | ---- | C] (RealNetworks, Inc.) -- C:\WINDOWS\System32\rmoc3260.dll
[2010/09/19 05:19:20 | 000,006,656 | ---- | C] (RealNetworks, Inc.) -- C:\WINDOWS\System32\pndx5016.dll
[2010/09/19 05:19:20 | 000,005,632 | ---- | C] (RealNetworks, Inc.) -- C:\WINDOWS\System32\pndx5032.dll
[2010/09/19 05:19:19 | 000,000,000 | ---D | C] -- C:\Program Files\Real Alternative
[2010/09/19 04:45:29 | 000,000,000 | ---D | C] -- C:\Downloads
[2010/09/19 04:41:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\Free Download Manager
[2010/09/19 04:41:30 | 000,000,000 | ---D | C] -- C:\Program Files\Free Download Manager
[2010/09/15 12:49:06 | 001,044,480 | R--- | C] (eHelp Corporation.) -- C:\WINDOWS\System32\roboex32.dll
[2010/09/15 12:49:06 | 000,049,152 | R--- | C] (Blue Sky Software Corporation.) -- C:\WINDOWS\System32\inetwh32.dll
[2010/09/13 16:05:23 | 005,165,571 | ---- | C] (MPC-HC Team ) -- C:\Documents and Settings\David\My Documents\MPC-HomeCinema.1.4.2499.0.x86.exe
[2010/09/13 15:55:26 | 000,017,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsg.dll
[2010/09/12 14:40:27 | 000,015,781 | ---- | C] (Meetinghouse Data Communications) -- C:\WINDOWS\System32\drivers\mdc8021x.sys
[2010/09/12 14:40:20 | 000,090,112 | ---- | C] (Atheros Communications, Inc.) -- C:\WINDOWS\System32\oemres.dll
[2010/09/12 14:40:20 | 000,043,264 | ---- | C] (Windows ® 2000 DDK provider) -- C:\WINDOWS\System32\drivers\athfmwdl.sys
[2010/09/12 14:40:19 | 000,847,872 | ---- | C] (Meetinghouse Data Communications) -- C:\WINDOWS\System32\AegisE4.dll
[2010/09/12 14:40:19 | 000,843,776 | ---- | C] (Meetinghouse Data Communications) -- C:\WINDOWS\System32\AegisE5.dll
[2010/09/12 14:40:19 | 000,770,048 | ---- | C] (Meetinghouse Data Communications) -- C:\WINDOWS\System32\AegisE2.dll
[2010/09/12 14:40:19 | 000,409,600 | ---- | C] (Atheros) -- C:\WINDOWS\System32\athcfg11.dll
[2010/09/12 09:58:25 | 000,000,000 | ---D | C] -- C:\Program Files\108Mbps Wireless Network USB Dongle
[2010/09/12 09:56:16 | 005,229,582 | ---- | C] ( ) -- C:\Documents and Settings\David\My Documents\DRV - XWL-11GUAR.exe
[2010/09/10 12:36:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\NSS
[2010/09/10 12:36:31 | 000,000,000 | ---D | C] -- C:\Program Files\Norton Security Scan
[2010/09/10 12:36:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\NSS\0207030.022
[2010/09/10 12:36:28 | 000,000,000 | ---D | C] -- C:\Program Files\NortonInstaller
[2010/09/10 09:32:49 | 000,850,200 | ---- | C] (DivX, Inc. ) -- C:\Documents and Settings\David\My Documents\DivXInstaller.exe
[2010/09/10 09:11:18 | 000,000,000 | ---D | C] -- C:\Intel
[2010/09/10 09:07:45 | 000,356,352 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NVUNINST.EXE
[2010/09/10 09:07:27 | 000,303,104 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrstr.dll
[2010/09/10 09:07:27 | 000,303,104 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrssl.dll
[2010/09/10 09:07:27 | 000,299,008 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrssk.dll
[2010/09/10 09:07:27 | 000,294,912 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrssv.dll
[2010/09/10 09:07:27 | 000,290,816 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsth.dll
[2010/09/10 09:07:27 | 000,167,936 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrszht.dll
[2010/09/10 09:07:27 | 000,163,840 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrszhc.dll
[2010/09/10 09:07:25 | 000,258,048 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrstr.dll
[2010/09/10 09:07:25 | 000,258,048 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrssl.dll
[2010/09/10 09:07:25 | 000,258,048 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrssk.dll
[2010/09/10 09:07:25 | 000,253,952 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsth.dll
[2010/09/10 09:07:25 | 000,253,952 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrssv.dll
[2010/09/10 09:07:25 | 000,225,280 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrszhc.dll
[2010/09/10 09:07:25 | 000,126,976 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrszht.dll
[2010/09/10 09:01:58 | 067,071,024 | ---- | C] (Xceed Software Inc. 1-450-442-2626 info@xceedsoft.com www.xceedsoft.com) -- C:\Documents and Settings\David\My Documents\R170352.EXE
[2010/09/05 01:17:58 | 000,000,000 | ---D | C] -- C:\Config.Msi
[2010/07/18 06:25:08 | 000,000,000 | ---D | C] -- C:\Program Files\Easy eCover Creator
[2010/07/15 05:23:38 | 000,654,456 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\ncs2dmix.dll
[2010/07/15 05:23:38 | 000,506,488 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\accesor.dll
[2010/07/14 04:16:44 | 000,182,784 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\Ncs2Setp.dll
[2010/07/14 03:39:00 | 000,134,264 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\ncs2instutility.dll
[2010/07/14 03:20:10 | 001,813,112 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\ncscolib.dll
[2010/07/02 08:00:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\Nseries
[2010/07/02 07:57:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Local Settings\Application Data\IsolatedStorage
[2010/07/02 07:45:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Local Settings\Application Data\Nokia
[2010/07/02 07:44:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\PC Suite
[2010/07/02 07:44:35 | 000,016,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsgXP_2k3.dll
[2010/07/02 07:21:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\Nokia
[2010/07/02 06:55:08 | 000,000,000 | ---D | C] -- C:\Program Files\MSXML 6.0
[2010/07/02 06:51:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\Globalization
[2010/07/02 06:50:39 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Nokia
[2010/07/02 06:40:54 | 000,092,672 | ---- | C] (Nokia) -- C:\WINDOWS\System32\nmwcdcls.dll
[2010/07/02 06:40:52 | 000,000,000 | ---D | C] -- C:\Program Files\Nokia
[2010/06/21 08:43:16 | 000,030,880 | ---- | C] (Intel Corporation ) -- C:\WINDOWS\System32\drivers\iqvw32.sys
[2010/06/11 07:37:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\Windows Search
[2010/06/11 05:08:08 | 000,000,000 | ---D | C] -- C:\Program Files\DIFX
[2010/06/11 05:07:17 | 000,479,232 | ---- | C] (eMPIA Technology, Inc.) -- C:\WINDOWS\System32\drivers\emBDA.sys
[2010/06/11 05:07:17 | 000,106,496 | ---- | C] (eMPIA Technology, Inc.) -- C:\WINDOWS\System32\emPRP.ax
[2010/06/11 05:07:17 | 000,061,440 | ---- | C] (eMPIA Technology, Inc.) -- C:\WINDOWS\emMON.exe
[2010/06/11 05:07:17 | 000,038,656 | ---- | C] (eMPIA Technology, Inc.) -- C:\WINDOWS\System32\drivers\emOEM.sys
[2010/06/11 04:38:55 | 000,000,000 | ---D | C] -- C:\Program Files\SmartCam
[2010/06/11 04:32:18 | 000,060,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\USBAUDIO.sys
[2010/06/11 04:30:48 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\vfwwdm32.dll
[2010/06/11 04:30:48 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksxbar.ax
[2010/06/11 04:30:47 | 000,091,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kswdmcap.ax
[2010/06/11 04:30:46 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kstvtune.ax
[2010/06/11 04:30:44 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dshowext.ax
[2010/06/10 00:48:38 | 000,239,768 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\PRONtObj.dll
[2010/06/09 11:20:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\09-06-2010
[2010/05/28 12:47:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Local Settings\Application Data\PCHealth
[2010/05/27 04:55:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Local Settings\Application Data\Eastman_Kodak_Company
[2010/05/27 04:09:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\Macromedia
[2010/05/27 04:06:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Local Settings\Application Data\Eastman Kodak Company
[2010/05/27 04:05:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\Eastman Kodak Company
[2010/05/27 04:03:45 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\kodak
[2010/05/27 04:03:11 | 000,000,000 | ---D | C] -- C:\Program Files\Kodak
[2010/05/27 04:02:33 | 000,000,000 | ---D | C] -- C:\Program Files\Bonjour
[2010/05/27 04:00:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\Temp
[2010/05/27 03:15:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\Birdstep Technology
[2010/05/27 03:14:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Application Data\Birdstep Technology
[2010/05/27 03:13:22 | 000,113,280 | ---- | C] (Huawei Technologies Co., Ltd.) -- C:\WINDOWS\System32\drivers\ewusbnet.sys
[2010/05/27 03:13:22 | 000,102,528 | ---- | C] (Huawei Technologies Co., Ltd.) -- C:\WINDOWS\System32\drivers\ewusbmdm.sys
[2010/05/27 03:13:22 | 000,100,736 | ---- | C] (Huawei Technologies Co., Ltd.) -- C:\WINDOWS\System32\drivers\ewusbdev.sys
[2010/05/27 03:13:22 | 000,024,448 | ---- | C] (Huawei Tech. Co., Ltd.) -- C:\WINDOWS\System32\drivers\ewdcsc.sys
[2010/05/27 03:13:07 | 000,000,000 | ---D | C] -- C:\Program Files\Huawei Modems
[2010/05/27 03:12:02 | 000,000,000 | ---D | C] -- C:\Program Files\3 Mobile Broadband
[2010/05/24 09:55:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Local Settings\Application Data\RadioSure
[2010/04/27 01:52:04 | 000,117,456 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\drivers\ianswxp.sys
[2010/04/26 17:04:42 | 000,353,592 | ---- | C] (DivX, Inc.) -- C:\WINDOWS\System32\DivXControlPanelApplet.cpl
[2010/04/13 11:21:05 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\LocalService\IETldCache
[2010/04/13 11:20:10 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\David\PrivacIE
[2010/04/11 14:15:21 | 000,000,000 | ---D | C] -- C:\Program Files\IrfanView
[2010/04/09 10:00:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\Windows Desktop Search
[2010/04/09 09:57:13 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\David\IETldCache
[2010/04/08 05:19:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Tracing
[2010/04/08 05:16:36 | 003,426,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_32.dll
[2010/04/08 05:16:24 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft SQL Server Compact Edition
[2010/04/08 05:14:12 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft
[2010/04/08 05:13:47 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Live SkyDrive
[2010/04/08 05:13:19 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Live
[2010/04/08 04:37:12 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Windows Live
[2010/04/08 04:35:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\Adobe
[2010/04/08 04:34:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\ie8updates
[2010/04/08 04:31:14 | 000,832,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wininet.dll
[2010/04/08 04:31:14 | 000,765,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\vgx.dll
[2010/04/08 04:31:14 | 000,233,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\webcheck.dll
[2010/04/08 04:31:13 | 001,168,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\urlmon.dll
[2010/04/08 04:31:13 | 000,671,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstime.dll
[2010/04/08 04:31:13 | 000,430,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\vbscript.dll
[2010/04/08 04:31:13 | 000,193,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msrating.dll
[2010/04/08 04:31:13 | 000,105,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\url.dll
[2010/04/08 04:31:13 | 000,102,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\occache.dll
[2010/04/08 04:31:13 | 000,066,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdc.ocx
[2010/04/08 04:31:13 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pngfilt.dll
[2010/04/08 04:31:12 | 006,067,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieframe.dll
[2010/04/08 04:31:12 | 003,599,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mshtml.dll
[2010/04/08 04:31:12 | 002,452,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieapfltr.dat
[2010/04/08 04:31:12 | 001,830,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetcpl.cpl
[2010/04/08 04:31:12 | 001,383,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mshtml.tlb
[2010/04/08 04:31:12 | 000,991,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieframe.dll.mui
[2010/04/08 04:31:12 | 000,634,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iexplore.exe
[2010/04/08 04:31:12 | 000,512,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jscript.dll
[2010/04/08 04:31:12 | 000,477,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mshtmled.dll
[2010/04/08 04:31:12 | 000,459,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeeds.dll
[2010/04/08 04:31:12 | 000,385,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iedkcs32.dll
[2010/04/08 04:31:12 | 000,380,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieapfltr.dll
[2010/04/08 04:31:12 | 000,347,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dxtmsft.dll
[2010/04/08 04:31:12 | 000,268,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iertutil.dll
[2010/04/08 04:31:12 | 000,230,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieaksie.dll
[2010/04/08 04:31:12 | 000,214,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dxtrans.dll
[2010/04/08 04:31:12 | 000,192,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iepeers.dll
[2010/04/08 04:31:12 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieakui.dll
[2010/04/08 04:31:12 | 000,156,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msls31.dll
[2010/04/08 04:31:12 | 000,153,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieakeng.dll
[2010/04/08 04:31:12 | 000,124,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\advpack.dll
[2010/04/08 04:31:12 | 000,092,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inseng.dll
[2010/04/08 04:31:12 | 000,078,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieencode.dll
[2010/04/08 04:31:12 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admparse.dll
[2010/04/08 04:31:12 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ie4uinit.exe
[2010/04/08 04:31:12 | 000,063,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icardie.dll
[2010/04/08 04:31:12 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hmmapi.dll
[2010/04/08 04:31:12 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iesetup.dll
[2010/04/08 04:31:12 | 000,052,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeedsbs.dll
[2010/04/08 04:31:12 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mshtmler.dll
[2010/04/08 04:31:12 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mshta.exe
[2010/04/08 04:31:12 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iernonce.dll
[2010/04/08 04:31:12 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\licmgr10.dll
[2010/04/08 04:31:12 | 000,036,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imgutil.dll
[2010/04/08 04:31:12 | 000,027,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jsproxy.dll
[2010/04/08 04:31:12 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\corpol.dll
[2010/04/08 04:24:17 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Desktop Search
[2010/04/08 04:24:16 | 000,000,000 | -H-D | C] -- C:\WINDOWS\System32\GroupPolicy
[2010/04/08 03:49:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Driver
[2010/03/31 06:15:21 | 000,000,000 | ---D | C] -- C:\Program Files\AudiobookCutterFE
[2010/03/30 18:16:34 | 000,099,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\PresentationHostProxy.dll
[2010/03/30 18:10:40 | 000,295,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\PresentationHost.exe
[2010/03/25 04:27:09 | 000,604,488 | ---- | C] (TuneUp Software) -- C:\WINDOWS\System32\TUProgSt.exe
[2010/03/25 04:27:07 | 000,029,000 | ---- | C] (TuneUp Software) -- C:\WINDOWS\System32\uxtuneup.dll
[2010/03/25 04:27:06 | 000,361,288 | ---- | C] (TuneUp Software) -- C:\WINDOWS\System32\TuneUpDefragService.exe
[2010/03/19 04:10:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Temp
[2010/03/18 07:16:28 | 000,771,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msvcr100_clr0400.dll
[2010/03/18 07:16:28 | 000,486,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\evr.dll
[2010/03/18 07:16:28 | 000,070,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dxva2.dll
[2010/03/11 07:58:20 | 000,000,000 | ---D | C] -- C:\Program Files\KompoZer
[2010/03/11 07:44:05 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Wireless
[2010/03/10 14:29:32 | 000,094,208 | ---- | C] (DivX, Inc.) -- C:\WINDOWS\System32\dpl100.dll
[2010/03/04 09:32:08 | 000,000,000 | ---D | C] -- C:\Program Files\Tong
[2010/03/04 09:04:16 | 000,000,000 | ---D | C] -- C:\Program Files\Secret Maryo Chronicles
[2010/03/04 08:56:07 | 000,000,000 | ---D | C] -- C:\Program Files\Cambrian Labs
[2010/03/04 08:48:33 | 000,000,000 | ---D | C] -- C:\Program Files\Duo
[2010/03/04 08:47:10 | 000,000,000 | ---D | C] -- C:\Program Files\Bubble Train
[2010/03/04 08:42:46 | 000,000,000 | ---D | C] -- C:\Program Files\2H4U
[2010/03/03 10:25:44 | 000,000,000 | -HSD | C] -- C:\WINDOWS\CSC
[2010/02/24 07:47:58 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\browserchoice.exe
[2010/02/19 14:27:36 | 000,720,384 | ---- | C] (DivX, Inc.) -- C:\WINDOWS\System32\DivX.dll
[2010/02/19 14:27:16 | 000,856,064 | ---- | C] (DivX, Inc.) -- C:\WINDOWS\System32\divx_xx0c.dll
[2010/02/19 14:27:16 | 000,856,064 | ---- | C] (DivX, Inc.) -- C:\WINDOWS\System32\divx_xx07.dll
[2010/02/19 14:27:16 | 000,847,872 | ---- | C] (DivX, Inc.) -- C:\WINDOWS\System32\divx_xx0a.dll
[2010/02/19 14:27:16 | 000,843,776 | ---- | C] (DivX, Inc.) -- C:\WINDOWS\System32\divx_xx16.dll
[2010/02/19 14:27:16 | 000,839,680 | ---- | C] (DivX, Inc.) -- C:\WINDOWS\System32\divx_xx11.dll
[2010/02/10 03:55:04 | 000,000,000 | ---D | C] -- C:\Program Files\DAEMON Tools Toolbar
[2010/02/10 03:54:45 | 000,691,696 | ---- | C] (Duplex Secure Ltd.) -- C:\WINDOWS\System32\drivers\sptd.sys
[2010/02/10 03:54:34 | 000,000,000 | ---D | C] -- C:\Program Files\DAEMON Tools Lite
[2010/02/10 03:54:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\DAEMON Tools Lite
[2010/02/08 14:41:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\My Documents\AutoPlay Media Studio 7.0
[2010/02/05 04:46:49 | 000,000,000 | ---D | C] -- C:\Program Files\LightScribe Template Labeler
[2010/02/05 03:36:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Nero
[2010/02/05 03:27:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\Nero
[2010/02/05 03:10:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Local Settings\Application Data\Ahead
[2010/02/05 02:47:55 | 000,000,000 | ---D | C] -- C:\Program Files\Nero
[2010/02/05 02:47:55 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Nero
[2010/02/05 02:46:01 | 002,388,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_30.dll
[2010/02/05 02:46:00 | 002,323,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_28.dll
[2010/01/31 12:05:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Local Settings\Application Data\Temp
[2010/01/30 04:15:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\DivX
[2010/01/27 06:41:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Desktop\OpenOffice.org 3.1 (en-US de hu it fr) Installation Files
[2010/01/26 05:36:37 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Business Objects
[2010/01/26 05:36:34 | 000,000,000 | ---D | C] -- C:\Andica
[2010/01/26 05:31:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Local Settings\Application Data\Downloaded Installations
[2010/01/17 12:05:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Google
[2010/01/17 12:02:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Downloads
[2010/01/17 11:53:07 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DivX Shared
[2010/01/17 11:52:58 | 000,000,000 | ---D | C] -- C:\Program Files\DivX
[2010/01/13 16:30:57 | 000,000,000 | ---D | C] -- C:\Program Files\LightScribe Diagnostic Utility
[2010/01/13 16:30:04 | 006,168,272 | ---- | C] (LightScribe ) -- C:\Documents and Settings\David\My Documents\LsDiagnosticUtility_1.18.10.2.exe
[2010/01/13 16:12:26 | 001,155,072 | ---- | C] (Lexmark International, Inc.) -- C:\WINDOWS\System32\lxceserv.dll
[2010/01/13 16:12:26 | 001,134,592 | ---- | C] (Lexmark International, Inc.) -- C:\WINDOWS\System32\lxceusb1.dll
[2010/01/13 16:12:26 | 000,630,784 | ---- | C] (Lexmark International, Inc.) -- C:\WINDOWS\System32\lxcepmui.dll
[2010/01/13 16:12:26 | 000,143,360 | ---- | C] (Lexmark International, Inc.) -- C:\WINDOWS\System32\lxceprox.dll
[2010/01/13 16:12:26 | 000,114,688 | ---- | C] (Lexmark International, Inc.) -- C:\WINDOWS\System32\lxcepplc.dll
[2010/01/13 16:12:25 | 000,753,664 | ---- | C] (Lexmark International, Inc.) -- C:\WINDOWS\System32\lxcehbn3.dll
[2010/01/13 16:12:25 | 000,667,648 | ---- | C] (Lexmark International, Inc.) -- C:\WINDOWS\System32\lxcecomc.dll
[2010/01/13 16:12:25 | 000,475,136 | ---- | C] (Lexmark International, Inc.) -- C:\WINDOWS\System32\lxcelmpm.dll
[2010/01/13 16:12:25 | 000,471,040 | ---- | C] (Lexmark International, Inc.) -- C:\WINDOWS\System32\lxcecoms.exe
[2010/01/13 16:12:25 | 000,405,504 | ---- | C] (Lexmark International, Inc.) -- C:\WINDOWS\System32\lxcecomm.dll
[2010/01/13 16:12:25 | 000,389,120 | ---- | C] (Lexmark International, Inc.) -- C:\WINDOWS\System32\lxceutil.dll
[2010/01/13 16:12:25 | 000,364,544 | ---- | C] (Lexmark International, Inc.) -- C:\WINDOWS\System32\lxcecfg.exe
[2010/01/13 16:12:25 | 000,356,352 | ---- | C] (Lexmark International, Inc.) -- C:\WINDOWS\System32\lxceih.exe
[2010/01/13 16:12:24 | 000,172,032 | ---- | C] (Lexmark International, Inc.) -- C:\WINDOWS\System32\lxceinsb.dll
[2010/01/13 16:12:24 | 000,139,264 | ---- | C] (Lexmark International, Inc.) -- C:\WINDOWS\System32\lxcejswr.dll
[2010/01/13 16:12:24 | 000,131,072 | ---- | C] (Lexmark International, Inc.) -- C:\WINDOWS\System32\lxceins.dll
[2010/01/13 16:12:24 | 000,098,304 | ---- | C] (Lexmark International, Inc.) -- C:\WINDOWS\System32\lxceinsr.dll
[2010/01/13 16:12:23 | 000,983,091 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\lxcegf.dll
[2010/01/13 16:12:23 | 000,086,016 | ---- | C] (Lexmark International, Inc.) -- C:\WINDOWS\System32\lxcecub.dll
[2010/01/13 16:12:23 | 000,073,728 | ---- | C] (Lexmark International, Inc.) -- C:\WINDOWS\System32\lxcecu.dll
[2010/01/13 16:12:23 | 000,036,864 | ---- | C] (Lexmark International, Inc.) -- C:\WINDOWS\System32\lxcecur.dll
[2010/01/13 16:11:35 | 039,736,848 | ---- | C] (Lexmark International, Inc. ) -- C:\Documents and Settings\David\My Documents\cjb4300EN.exe
[2010/01/13 16:00:28 | 000,065,536 | ---- | C] (Lexmark International) -- C:\WINDOWS\System32\lxcecfg.dll
[2010/01/06 07:03:15 | 000,000,000 | ---D | C] -- C:\Program Files\LingoPad
[2010/01/06 07:03:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\Lingo4u
[2010/01/03 08:30:43 | 000,000,000 | ---D | C] -- C:\Program Files\Veetle
[2010/01/02 04:45:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\dvdcss
[2009/12/27 16:59:22 | 000,000,000 | ---D | C] -- C:\Program Files\Kaspersky Lab
[2009/12/27 16:59:02 | 000,315,408 | ---- | C] (Kaspersky Lab) -- C:\WINDOWS\System32\drivers\klif.sys
[2009/12/19 09:40:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\WLAN IDE Card
[2009/12/19 09:06:12 | 000,000,000 | ---D | C] -- C:\WINDOWS\OPTIONS
[2009/12/19 09:06:12 | 000,000,000 | ---D | C] -- C:\Program Files\802.11 Wireless LAN
[2009/11/27 04:57:10 | 004,112,856 | ---- | C] (Two Pilots) -- C:\WINDOWS\PDFCreatorPilot.dll
[2009/11/27 04:57:08 | 000,000,000 | ---D | C] -- C:\Program Files\Simpo PDF Merge & Split
[2009/11/27 04:29:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\PDFs Output
[2009/11/27 04:27:59 | 000,000,000 | ---D | C] -- C:\Program Files\Simpo PDF Creator
[2009/11/21 14:14:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Dev-PHP Projects
[2009/11/21 12:02:00 | 000,000,000 | ---D | C] -- C:\Program Files\Dev-PHP2
[2009/11/21 12:02:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\DevPHP
[2009/11/18 05:02:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Mikogo
[2009/11/18 05:02:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\Mikogo
[2009/11/17 06:59:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\KompoZer-0.8b1
[2009/11/17 06:40:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Local Settings\Application Data\kompozer.net
[2009/11/17 06:40:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\kompozer.net
[2009/11/06 19:07:08 | 000,049,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\netfxperf.dll
[2009/11/04 12:37:22 | 000,335,872 | ---- | C] (NCT Company Ltd.) -- C:\WINDOWS\System32\NCTAudioVisualization2.dll
[2009/11/04 12:37:22 | 000,196,608 | ---- | C] (NCT Company Ltd.) -- C:\WINDOWS\System32\NCTWMAFile2.dll
[2009/11/04 12:37:21 | 000,835,584 | ---- | C] (NCT) -- C:\WINDOWS\System32\NCTAudioCDGrabber2.dll
[2009/11/04 12:37:21 | 000,270,336 | ---- | C] (NCT Company Ltd.) -- C:\WINDOWS\System32\NCTAudioDisplay2.dll
[2009/11/04 12:37:20 | 004,057,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wmfdist.exe
[2009/11/04 12:37:18 | 000,000,000 | ---D | C] -- C:\Program Files\FreeCDRipper
[2009/11/03 07:49:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\Office Genuine Advantage
[2009/11/01 16:57:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\.dvdcss
[2009/10/30 14:00:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Application Data\TuneUp Software
[2009/10/30 13:29:55 | 000,030,536 | ---- | C] (TuneUp Software) -- C:\WINDOWS\System32\TURegOpt.exe
[2009/10/30 13:29:11 | 000,000,000 | ---D | C] -- C:\Program Files\TuneUp Utilities 2010
[2009/10/30 12:48:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\AutoPlay Media Studio 7.0
[2009/10/30 12:47:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\IndigoRose
[2009/10/30 12:45:22 | 000,000,000 | ---D | C] -- C:\Program Files\AutoPlay Media Studio 7.0
[2009/10/30 12:43:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\Downloaded Installations
[2009/10/29 07:31:19 | 000,000,000 | ---D | C] -- C:\Program Files\Virtually Real
[2009/10/20 15:34:56 | 000,219,664 | ---- | C] (Kaspersky Lab) -- C:\WINDOWS\System32\klogon.dll
[2009/10/19 03:56:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\fontconfig
[2009/10/19 03:55:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\.smplayer
[2009/10/19 03:54:18 | 000,000,000 | ---D | C] -- C:\Program Files\SMPlayer
[2009/10/19 03:43:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\blinkx
[2009/10/19 03:43:00 | 000,000,000 | ---D | C] -- C:\Program Files\Blinkx
[2009/10/19 03:42:46 | 000,000,000 | ---D | C] -- C:\Program Files\Free Offers from Freeze.com
[2009/10/16 10:20:31 | 000,000,000 | ---D | C] -- C:\found.000
[2009/10/14 16:18:34 | 000,036,880 | ---- | C] (Kaspersky Lab) -- C:\WINDOWS\System32\drivers\klbg.sys
[2009/10/07 03:59:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\AppData
[2009/10/07 03:59:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\Iconomize
[2009/10/07 03:54:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\Desktopicon
[2009/10/07 03:54:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\FFOutput
[2009/10/07 03:53:38 | 000,000,000 | ---D | C] -- C:\Program Files\FreeTime
[2009/10/07 03:52:13 | 000,201,216 | ---- | C] (NCT Company Ltd.) -- C:\WINDOWS\System32\NCTVideoPlayer.dll
[2009/10/07 03:52:13 | 000,188,416 | ---- | C] (NCT Company Ltd.) -- C:\WINDOWS\System32\NCTVideoFile.dll
[2009/10/07 03:52:12 | 000,764,416 | ---- | C] (NCT Company Ltd.) -- C:\WINDOWS\System32\NCTRMFile.dll
[2009/10/07 03:52:12 | 000,495,104 | ---- | C] (NCT Company Ltd.) -- C:\WINDOWS\System32\NCTVideoCoreM.dll
[2009/10/07 03:52:12 | 000,382,464 | ---- | C] (NCT Company Ltd.) -- C:\WINDOWS\System32\NCTAVIFile.dll
[2009/10/07 03:52:12 | 000,249,856 | ---- | C] (Online Media Technologies Company Ltd.) -- C:\WINDOWS\System32\NCTQuickTimeFile.dll
[2009/10/07 03:52:12 | 000,215,552 | ---- | C] (NCT Company Ltd.) -- C:\WINDOWS\System32\NCTWMVFile.dll
[2009/10/07 03:52:11 | 002,846,720 | ---- | C] (Online Media Technologies Ltd.) -- C:\WINDOWS\System32\NCTAudioCompress3.dll
[2009/10/07 03:52:11 | 000,780,288 | ---- | C] (NCT Company Ltd.) -- C:\WINDOWS\System32\NCTVideoCompress.dll
[2009/10/07 03:52:11 | 000,090,112 | ---- | C] (Online Media Technologies Ltd.) -- C:\WINDOWS\System32\NCTAudioFormatSettings3.dll
[2009/10/07 03:52:10 | 000,778,240 | ---- | C] (Online Media Technologies Ltd.) -- C:\WINDOWS\System32\NCTAudioCompress2.dll
[2009/10/07 03:52:04 | 000,856,064 | ---- | C] (Essien Research & Development) -- C:\WINDOWS\System32\mpgfiltr.ax
[2009/10/07 03:52:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\RMBin
[2009/10/07 03:52:03 | 000,421,888 | ---- | C] (Gabest) -- C:\WINDOWS\System32\RealMediaSplitter.ax
[2009/10/07 03:52:03 | 000,208,896 | ---- | C] (Viscom Software www.viscomsoft.com) -- C:\WINDOWS\System32\VideoEdit.ocx
[2009/10/07 03:52:03 | 000,147,456 | ---- | C] (Viscom Software www.viscomsoft.com) -- C:\WINDOWS\System32\viscomqtenc.dll
[2009/10/07 03:52:03 | 000,139,264 | ---- | C] (Viscom Software www.viscomsoft.com) -- C:\WINDOWS\System32\viscomqtde.dll
[2009/10/07 03:52:03 | 000,081,920 | ---- | C] (Viscom Software) -- C:\WINDOWS\System32\viscomwave.dll
[2009/10/07 03:52:02 | 000,000,000 | ---D | C] -- C:\Program Files\Extra Video Creator
[2009/10/05 15:34:42 | 003,733,706 | ---- | C] (Romain Bourdon (Roms) ) -- C:\Documents and Settings\David\Desktop\WampServer2-APACHE2063.exe
[2009/10/05 15:26:41 | 000,000,000 | ---D | C] -- C:\wamp
[2009/10/05 02:04:42 | 000,000,000 | R--D | C] -- C:\Program Files\Skype
[2009/10/05 02:00:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Desktop\Adobe CS3
[2009/10/05 01:51:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\Software Informer
[2009/10/05 01:51:06 | 000,000,000 | ---D | C] -- C:\Program Files\Software Informer
[2009/10/05 01:50:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Local Settings\Application Data\Autoplay Menu Designer
[2009/10/05 01:50:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Autoplay Menu Designer
[2009/10/05 01:50:22 | 000,000,000 | ---D | C] -- C:\Program Files\Visual Designing
[2009/10/05 01:50:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\Autoplay Menu Designer
[2009/10/03 00:20:28 | 000,222,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MpSigStub.exe
[2009/10/02 14:39:44 | 000,019,472 | ---- | C] (Kaspersky Lab) -- C:\WINDOWS\System32\drivers\klmouflt.sys
[2009/10/01 07:32:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Documents
[2009/09/24 09:07:20 | 000,389,120 | ---- | C] (SafeApp Software, LLC) -- C:\WINDOWS\System32\RegistryHelperLM.ocx
[2009/09/23 18:30:08 | 000,156,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mscorier.dll
[2009/09/23 04:38:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\HpUpdate
[2009/09/23 04:38:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\Hewlett-Packard
[2009/09/15 03:55:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\DisplayTune
[2009/09/15 03:54:59 | 000,487,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\msvcp70.dll
[2009/09/15 03:54:59 | 000,344,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\msvcr70.dll
[2009/09/15 03:54:58 | 001,392,671 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\msvbvm60.dll
[2009/09/14 09:42:46 | 000,032,272 | ---- | C] (Kaspersky Lab) -- C:\WINDOWS\System32\drivers\klim5.sys
[2009/09/12 03:32:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\VLC
[2009/09/12 03:32:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\New Folder (4)
[2009/09/11 10:22:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\zh-TW
[2009/09/11 10:22:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\zh-HK
[2009/09/11 10:22:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\tr-TR
[2009/09/11 10:22:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\sv-SE
[2009/09/11 10:22:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\pt-BR
[2009/09/11 10:22:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\nl-NL
[2009/09/11 10:22:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\nb-NO
[2009/09/11 10:22:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ko-KR
[2009/09/11 10:22:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\it-IT
[2009/09/11 10:22:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\he-IL
[2009/09/11 10:22:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\fr-FR
[2009/09/11 10:22:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\fi-FI
[2009/09/11 10:22:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\es-ES
[2009/09/11 10:22:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\el-GR
[2009/09/11 10:22:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\de-DE
[2009/09/11 10:22:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\da-DK
[2009/09/11 10:22:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ar-SA
[2009/09/01 10:29:50 | 000,128,016 | ---- | C] (Kaspersky Lab) -- C:\WINDOWS\System32\drivers\kl1.sys
[2009/08/15 06:34:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Local Settings\Application Data\TVU Networks
[2009/08/15 06:34:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\LocalLow
[2009/08/13 00:50:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\DVD Flick
[2009/08/13 00:49:30 | 000,040,960 | ---- | C] (vbAccelerator) -- C:\WINDOWS\System32\ssubtmr6.dll
[2009/08/13 00:49:29 | 000,036,864 | ---- | C] (Robdogg Inc.) -- C:\WINDOWS\System32\trayicon_handler.ocx
[2009/08/13 00:49:29 | 000,028,672 | ---- | C] (-) -- C:\WINDOWS\System32\mousewheel.ocx
[2009/08/13 00:49:20 | 000,000,000 | ---D | C] -- C:\Program Files\DVD Flick
[2009/08/11 07:15:08 | 000,244,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msflxgrd.ocx
[2009/08/04 13:52:22 | 001,193,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\FM20.DLL
[2009/08/03 09:07:42 | 000,322,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\OGAAddin.dll
[2009/07/24 04:33:36 | 000,000,000 | ---D | C] -- C:\Program Files\TalkTalk
[2009/07/24 04:33:17 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Wise Installation Wizard
[2009/07/23 07:38:42 | 000,000,000 | ---D | C] -- C:\Program Files\TuneUp Utilities 2009
[2009/07/23 07:33:48 | 017,777,408 | ---- | C] (TuneUp Software) -- C:\Documents and Settings\David\My Documents\TU2009TrialEN-US.exe
[2009/07/23 05:04:20 | 000,000,000 | ---D | C] -- C:\Program Files\Hugin
[2009/07/16 11:29:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\Marvell
[2009/07/14 06:51:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\vlc
[2009/07/14 06:07:12 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SourceTec
[2009/07/14 06:06:29 | 000,000,000 | ---D | C] -- C:\Program Files\SourceTec
[2009/07/13 07:22:14 | 000,086,016 | ---- | C] (Printing Communications Assoc., Inc. (PCAUSA)) -- C:\WINDOWS\System32\ZDN50.dll
[2009/07/13 07:22:14 | 000,015,872 | ---- | C] (Printing Communications Assoc., Inc. (PCAUSA)) -- C:\WINDOWS\System32\ZDNDIS5.sys
[2009/07/13 07:22:14 | 000,000,000 | ---D | C] -- C:\Program Files\ZyDAS Technology Corporation
[2009/07/12 10:24:05 | 000,000,000 | ---D | C] -- C:\Program Files\alot
[2009/07/10 06:15:46 | 000,306,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\WLXPGSS.SCR
[2009/06/11 06:02:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Start Menu
[2009/06/11 00:35:42 | 000,496,128 | ---- | C] ( datenhaus GmbH) -- C:\WINDOWS\System32\dhRichClient3.dll
[2009/05/22 13:22:05 | 000,106,496 | ---- | C] (Zenographics, Inc.) -- C:\WINDOWS\System32\ZSPOOL.DLL
[2009/05/22 13:22:05 | 000,053,248 | ---- | C] (Zenographics, Inc.) -- C:\WINDOWS\System32\ZTAG.DLL
[2009/05/22 13:22:04 | 000,512,000 | ---- | C] (Marvell Semiconductor, Inc.) -- C:\WINDOWS\System32\HPIPMX.dll
[2009/05/22 13:22:04 | 000,237,568 | ---- | C] (Marvell Semiconductor, Inc.) -- C:\WINDOWS\System32\HPIPMXRes.dll
[2009/05/22 13:22:04 | 000,114,688 | ---- | C] (Marvell Semiconductor, Inc.) -- C:\WINDOWS\System32\HPMCoSetup.dll
[2009/05/22 13:22:04 | 000,061,440 | ---- | C] (Zenographics, Inc.) -- C:\WINDOWS\System32\ZIMF.DLL
[2009/05/22 13:22:03 | 000,163,840 | ---- | C] (Marvell Semiconductor, Inc.) -- C:\WINDOWS\System32\CP1215LI.DLL
[2009/05/22 13:22:03 | 000,143,360 | ---- | C] (Marvell Semiconductor, Inc.) -- C:\WINDOWS\System32\CP1215LM.DLL
[2009/05/22 13:22:03 | 000,057,344 | ---- | C] (Marvell Semiconductor, Inc.) -- C:\WINDOWS\System32\CP1215EWS.dll
[2009/05/22 13:17:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DRVSTORE
[2009/05/22 13:16:32 | 000,000,000 | ---D | C] -- C:\Program Files\Hewlett-Packard
[2009/05/22 13:16:11 | 000,000,000 | ---D | C] -- C:\Program Files\HP
[2009/05/22 13:15:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\Hewlett-Packard
[2009/05/22 13:15:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\HP
[2009/05/21 12:04:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Samsung
[2009/05/18 07:02:03 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Silverlight
[2009/05/14 06:49:28 | 000,000,000 | ---D | C] -- C:\Program Files\LightSurf
[2009/05/11 12:48:17 | 000,000,000 | ---D | C] -- C:\Google
[2009/04/23 03:05:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Wondershare DVD to Flash Converter
[2009/04/22 09:30:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Kitchen
[2009/04/22 03:14:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\ZPS11
[2009/04/22 03:13:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\Zoner
[2009/04/22 03:12:48 | 000,000,000 | ---D | C] -- C:\Program Files\Zoner
[2009/04/20 07:02:24 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ptpusb.dll
[2009/04/20 07:02:23 | 000,159,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ptpusd.dll
[2009/04/20 05:37:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Converter
[2009/04/20 05:33:31 | 000,000,000 | ---D | C] -- C:\Program Files\Quick Conversion
[2009/04/19 16:23:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Astrid
[2009/04/19 15:12:19 | 000,000,000 | ---D | C] -- C:\WINDOWS\BarTr23
[2009/04/19 15:10:20 | 000,150,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MSCmCIT.dll
[2009/04/19 15:10:20 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\CmDlgIT.dll
[2009/04/19 15:10:19 | 000,063,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MSCc2IT.dll
[2009/04/19 15:10:18 | 000,028,672 | ---- | C] (Microsoft Corporation ) -- C:\WINDOWS\System32\Cmct3IT.dll
[2009/04/19 15:10:17 | 000,368,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\vbar332.dll
[2009/04/19 15:10:17 | 000,000,000 | ---D | C] -- C:\Program Files\Translationplus
[2009/04/17 06:22:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\Skype
[2009/04/15 03:01:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Application Data\Trusteer
[2009/04/03 08:12:54 | 000,000,000 | ---D | C] -- C:\Program Files\3D Covers Extreme
[2009/03/19 08:43:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\ImgBurn
[2009/03/19 08:15:27 | 000,000,000 | ---D | C] -- C:\Program Files\ImgBurn
[2009/03/12 04:59:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Application Data\BOM
[2009/03/11 05:59:57 | 000,000,000 | ---D | C] -- C:\Program Files\AWicons Pro
[2009/03/09 01:08:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Application Data\Trusteer
[2009/03/06 10:52:02 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\XPSViewer
[2009/03/06 10:51:57 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild
[2009/03/06 10:51:49 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies
[2009/03/06 10:51:14 | 001,676,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xpssvcs.dll
[2009/03/06 10:51:14 | 000,117,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\prntvpt.dll
[2009/03/06 10:50:57 | 000,000,000 | ---D | C] -- C:\WINDOWS\SxsCaPendDel
[2009/03/04 12:38:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\Trusteer
[2009/03/04 12:38:12 | 000,000,000 | ---D | C] -- C:\Program Files\Trusteer
[2009/02/26 14:25:44 | 000,442,368 | ---- | C] (blinkx) -- C:\WINDOWS\System32\ssblinkx.scr
[2009/02/26 12:11:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Scotsman
[2009/02/24 14:13:14 | 000,208,896 | ---- | C] (Samsung Electronics Co., Ltd.) -- C:\WINDOWS\System32\SSRemove.Exe
[2009/02/23 07:07:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\BOM
[2009/02/23 07:05:54 | 000,109,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Mswinsck.ocx
[2009/02/23 07:05:52 | 000,000,000 | ---D | C] -- C:\Program Files\Bid-O-Matic
[2009/02/23 06:56:04 | 000,000,000 | ---D | C] -- C:\emacs
[2009/02/15 13:46:03 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\David\%USERPROFILE%
[2009/02/06 06:51:11 | 000,114,688 | ---- | C] (Zoran Microelectronics Ltd.) -- C:\WINDOWS\System32\JpegCode.dll
[2009/02/06 06:51:11 | 000,016,896 | ---- | C] (FotoNation Ltd.) -- C:\WINDOWS\System32\CoachDlg.dll
[2009/02/06 06:51:10 | 000,008,192 | ---- | C] (FotoNation) -- C:\WINDOWS\System32\CoachWrp.dll
[2009/02/06 06:51:10 | 000,005,632 | ---- | C] (Accapella Ltd.) -- C:\WINDOWS\System32\CoachSti.dll
[2009/02/06 06:51:10 | 000,000,000 | ---D | C] -- C:\Program Files\Digital Camera
[2009/02/06 06:50:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\New Folder (3)
[2009/01/30 12:14:43 | 000,000,000 | ---D | C] -- C:\My Documents
[2009/01/27 04:54:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Self Assessment
[2009/01/22 09:23:14 | 000,028,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mdimon.dll
[2009/01/22 09:22:18 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER
[2009/01/22 09:20:46 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft.NET
[2009/01/13 14:10:59 | 000,000,000 | ---D | C] -- C:\Program Files\MSECache
[2009/01/13 13:48:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\OpenOffice.org
[2009/01/13 13:47:02 | 000,000,000 | ---D | C] -- C:\WINDOWS\ShellNew
[2009/01/13 13:44:58 | 000,000,000 | ---D | C] -- C:\Program Files\OpenOffice.org 3
[2009/01/12 11:41:16 | 000,000,000 | ---D | C] -- C:\~ROXTMP
[2009/01/07 12:20:18 | 000,265,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdbg2.dll
[2008/12/18 12:42:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\DSBOutput
[2008/12/18 12:41:39 | 000,000,000 | ---D | C] -- C:\Program Files\Wondershare
[2008/12/16 06:07:42 | 000,475,136 | ---- | C] (DMSoft Technologies) -- C:\WINDOWS\System32\SkinCrafter.dll
[2008/12/16 06:07:42 | 000,000,000 | ---D | C] -- C:\Program Files\Extra CD DVD Burner
[2008/12/12 05:18:16 | 000,087,336 | ---- | C] (Apple Inc.) -- C:\WINDOWS\System32\dns-sd.exe
[2008/12/12 05:11:46 | 000,065,536 | ---- | C] (Apple Inc.) -- C:\WINDOWS\System32\jdns_sd.dll
[2008/12/12 05:11:46 | 000,061,440 | ---- | C] (Apple Inc.) -- C:\WINDOWS\System32\dnssd.dll
[2008/12/12 04:35:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\InfraRecorder
[2008/12/10 06:58:45 | 000,000,000 | ---D | C] -- C:\Program Files\InfraRecorder
[2008/12/07 13:54:37 | 000,000,000 | ---D | C] -- C:\Program Files\Total Network Monitor
[2008/11/27 12:47:58 | 000,000,000 | ---D | C] -- C:\Program Files\CamStudio
[2008/11/27 12:33:26 | 000,000,000 | ---D | C] -- C:\Program Files\VideoLAN
[2008/11/17 05:00:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\Yahoo!
[2008/11/06 18:27:34 | 001,081,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mscomctl.ocx
[2008/11/06 18:27:08 | 000,067,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\SYSINFO.OCX
[2008/11/06 18:26:32 | 000,212,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\richtx32.ocx
[2008/11/06 18:26:06 | 000,647,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mscomct2.ocx
[2008/11/06 18:26:04 | 000,132,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msinet.ocx
[2008/10/30 07:57:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\New Folder (2)
[2008/10/30 07:12:54 | 000,000,000 | ---D | C] -- C:\Program Files\PC Inspector File Recovery
[2008/10/30 06:15:22 | 000,000,000 | ---D | C] -- C:\Program Files\Yahoo!
[2008/10/30 06:00:33 | 000,000,000 | ---D | C] -- C:\Program Files\WinUtilities
[2008/10/29 14:19:33 | 000,765,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msvcp71d.dll
[2008/10/29 14:19:33 | 000,544,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msvcr71d.dll
[2008/10/29 14:19:33 | 000,035,840 | ---- | C] (Sax software company) -- C:\WINDOWS\System32\drivers\SAXNDIS.sys
[2008/10/29 14:19:28 | 000,000,000 | ---D | C] -- C:\Program Files\Ax3soft
[2008/10/23 08:21:35 | 000,000,000 | ---D | C] -- C:\Program Files\BinaryMark
[2008/10/16 06:10:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\.gnome2_private
[2008/10/16 06:10:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\.gnome2
[2008/10/16 06:10:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\.gconfd
[2008/10/16 06:10:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\.gconf
[2008/10/16 06:10:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\.gnucash
[2008/10/16 06:09:15 | 000,000,000 | ---D | C] -- C:\Program Files\gnucash
[2008/09/24 07:36:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Bookkeeping
[2008/09/19 08:30:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Forbes
[2008/09/19 08:16:22 | 000,000,000 | ---D | C] -- C:\WINDOWS\pss
[2008/09/19 08:01:40 | 000,000,000 | ---D | C] -- C:\forbes
[2008/09/18 05:37:14 | 000,000,000 | --SD | C] -- C:\Documents and Settings\David\My Documents\CDInterface Studio Projects
[2008/09/18 05:32:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\dafini.co.uk
[2008/09/17 15:51:36 | 000,000,000 | ---D | C] -- C:\Program Files\Tint
[2008/09/05 18:29:58 | 000,934,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\WgaTray.exe
[2008/08/24 17:29:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\mojosoft
[2008/08/24 17:29:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\BusinessCardsMX templates
[2008/08/24 17:29:06 | 000,000,000 | ---D | C] -- C:\Program Files\MOJOSOFT
[2008/07/30 14:50:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Moyea
[2008/07/30 14:50:00 | 000,434,176 | ---- | C] (Gabest) -- C:\WINDOWS\System32\rtl2.dat
[2008/07/30 14:49:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\Moyea
[2008/07/30 14:49:56 | 000,000,000 | ---D | C] -- C:\Program Files\Moyea
[2008/07/30 14:49:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\New Folder
[2008/07/29 16:10:04 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\TsWpfWrp.exe
[2008/07/29 14:59:58 | 000,781,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\PresentationNative_v0300.dll
[2008/07/29 14:59:58 | 000,611,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\uiautomationcore.dll
[2008/07/29 14:59:58 | 000,105,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\PresentationCFFRasterizerNative_v0300.dll
[2008/07/29 14:24:50 | 000,622,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icardagt.exe
[2008/07/29 14:24:50 | 000,097,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\infocardapi.dll
[2008/07/29 14:24:50 | 000,037,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\infocardcpl.cpl
[2008/07/29 14:24:50 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icardres.dll
[2008/07/29 00:49:58 | 000,586,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icardres.dll.mui
[2008/07/25 06:16:58 | 000,083,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mscories.dll
[2008/07/17 10:52:20 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\scripting
[2008/07/17 10:52:19 | 000,000,000 | ---D | C] -- C:\WINDOWS\l2schemas
[2008/07/17 10:52:19 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en
[2008/07/17 10:52:19 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\bits
[2008/07/17 10:50:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\ServicePackFiles
[2008/07/17 10:45:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\$NtServicePackUninstall$
[2008/07/17 10:17:15 | 000,276,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wmphoto.dll
[2008/07/17 10:17:13 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wlanapi.dll
[2008/07/17 10:17:12 | 000,712,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\windowscodecs.dll
[2008/07/17 10:17:12 | 000,347,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\windowscodecsext.dll
[2008/07/17 10:17:11 | 000,025,471 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\watv10nt.sys
[2008/07/17 10:17:11 | 000,022,271 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\watv06nt.sys
[2008/07/17 10:17:11 | 000,011,935 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\wadv11nt.sys
[2008/07/17 10:17:11 | 000,011,871 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\wadv09nt.sys
[2008/07/17 10:17:11 | 000,011,807 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\wadv07nt.sys
[2008/07/17 10:17:11 | 000,011,295 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\wadv08nt.sys
[2008/07/17 10:17:10 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\vidcap.ax
[2008/07/17 10:17:09 | 000,011,325 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\vchnt5.dll
[2008/07/17 10:17:06 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsgqec.dll
[2008/07/17 10:17:02 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spupdwxp.exe
[2008/07/17 10:17:01 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spdwnwxp.exe
[2008/07/17 10:17:00 | 000,404,990 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slntamr.sys
[2008/07/17 10:17:00 | 000,286,792 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slextspk.dll
[2008/07/17 10:17:00 | 000,188,508 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slgen.dll
[2008/07/17 10:17:00 | 000,129,535 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slnt7554.sys
[2008/07/17 10:17:00 | 000,095,424 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slnthal.sys
[2008/07/17 10:17:00 | 000,073,832 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slcoinst.dll
[2008/07/17 10:17:00 | 000,073,796 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slserv.exe
[2008/07/17 10:17:00 | 000,032,866 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slrundll.exe
[2008/07/17 10:17:00 | 000,032,866 | ---- | C] (Smart Link) -- C:\WINDOWS\slrundll.exe
[2008/07/17 10:17:00 | 000,013,240 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slwdmsup.sys
[2008/07/17 10:16:59 | 000,003,901 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\siint5.dll
[2008/07/17 10:16:58 | 000,397,056 | ---- | C] (S3 Graphics, Inc.) -- C:\WINDOWS\System32\s3gnb.dll
[2008/07/17 10:16:58 | 000,166,912 | ---- | C] (S3 Graphics, Inc.) -- C:\WINDOWS\System32\drivers\s3gnbm.sys
[2008/07/17 10:16:58 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\setupn.exe
[2008/07/17 10:16:57 | 000,290,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rhttpaa.dll
[2008/07/17 10:16:57 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qutil.dll
[2008/07/17 10:16:57 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rasqec.dll
[2008/07/17 10:16:57 | 000,030,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\rndismpx.sys
[2008/07/17 10:16:57 | 000,013,776 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\recagent.sys
[2008/07/17 10:16:56 | 000,412,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\photometadatahandler.dll
[2008/07/17 10:16:56 | 000,150,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qagent.dll
[2008/07/17 10:16:56 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qcliprov.dll
[2008/07/17 10:16:55 | 000,144,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\onex.dll
[2008/07/17 10:16:54 | 000,180,360 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\ntmtlfax.sys
[2008/07/17 10:16:52 | 001,737,856 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\mtxparhd.dll
[2008/07/17 10:16:52 | 001,309,184 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\mtlstrm.sys
[2008/07/17 10:16:52 | 000,452,736 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\drivers\mtxparhm.sys
[2008/07/17 10:16:52 | 000,193,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\napmontr.dll
[2008/07/17 10:16:52 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\napstat.exe
[2008/07/17 10:16:52 | 000,126,686 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\mtlmnt5.sys
[2008/07/17 10:16:52 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msxml6r.dll
[2008/07/17 10:16:52 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\napipsec.dll
[2008/07/17 10:16:52 | 000,012,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\mutohpen.sys
[2008/07/17 10:16:51 | 000,155,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mssha.dll
[2008/07/17 10:16:51 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msshavmsg.dll
[2008/07/17 10:16:46 | 000,397,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcex.dll
[2008/07/17 10:16:46 | 000,184,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\microsoft.managementconsole.dll
[2008/07/17 10:16:46 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcfxcommon.dll
[2008/07/17 10:16:46 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcperf.exe
[2008/07/17 10:16:45 | 000,086,016 | ---- | C] (Conexant) -- C:\WINDOWS\System32\mdmxsdk.dll
[2008/07/17 10:16:41 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\l2gpstore.dll
[2008/07/17 10:16:41 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdpash.dll
[2008/07/17 10:16:41 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdnepr.dll
[2008/07/17 10:16:41 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdiultn.dll
[2008/07/17 10:16:41 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdbhc.dll
[2008/07/17 10:16:36 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\smtpapi.dll
[2008/07/17 10:16:36 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rwnh.dll
[2008/07/17 10:16:35 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\irbus.sys
[2008/07/17 10:16:35 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comsdupd.exe
[2008/07/17 10:16:33 | 000,032,285 | ---- | C] (Conexant Systems, Inc.) -- C:\WINDOWS\System32\hsfcisp2.dll
[2008/07/17 10:16:31 | 000,180,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eapphost.dll
[2008/07/17 10:16:31 | 000,094,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eappgnui.dll
[2008/07/17 10:16:31 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eapqec.dll
[2008/07/17 10:16:31 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eappprxy.dll
[2008/07/17 10:16:31 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\faxpatch.exe
[2008/07/17 10:16:30 | 000,184,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eapp3hst.dll
[2008/07/17 10:16:30 | 000,126,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eappcfg.dll
[2008/07/17 10:16:30 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eapolqec.dll
[2008/07/17 10:16:29 | 000,650,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3ui.dll
[2008/07/17 10:16:29 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3cfg.dll
[2008/07/17 10:16:29 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3msm.dll
[2008/07/17 10:16:29 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dhcpqec.dll
[2008/07/17 10:16:29 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3gpclnt.dll
[2008/07/17 10:16:29 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dimsroam.dll
[2008/07/17 10:16:29 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3api.dll
[2008/07/17 10:16:29 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3dlg.dll
[2008/07/17 10:16:25 | 000,015,423 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\ch7xxnt5.dll
[2008/07/17 10:16:24 | 000,516,768 | ---- | C] (ATI Technologies Inc. ) -- C:\WINDOWS\System32\ativvaxx.dll
[2008/07/17 10:16:24 | 000,233,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\azroles.dll
[2008/07/17 10:16:24 | 000,104,960 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinrvxx.sys
[2008/07/17 10:16:24 | 000,073,216 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atintuxx.sys
[2008/07/17 10:16:24 | 000,063,488 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinxsxx.sys
[2008/07/17 10:16:24 | 000,057,856 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinbtxx.sys
[2008/07/17 10:16:24 | 000,052,224 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinraxx.sys
[2008/07/17 10:16:24 | 000,032,768 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ativtmxx.dll
[2008/07/17 10:16:24 | 000,031,744 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinxbxx.sys
[2008/07/17 10:16:24 | 000,028,672 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinsnxx.sys
[2008/07/17 10:16:24 | 000,025,471 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\atv04nt5.dll
[2008/07/17 10:16:24 | 000,023,040 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ativmvxx.ax
[2008/07/17 10:16:24 | 000,021,183 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\atv01nt5.dll
[2008/07/17 10:16:24 | 000,017,279 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\atv10nt5.dll
[2008/07/17 10:16:24 | 000,014,336 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinpdxx.sys
[2008/07/17 10:16:24 | 000,014,143 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\atv06nt5.dll
[2008/07/17 10:16:24 | 000,013,824 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinttxx.sys
[2008/07/17 10:16:24 | 000,013,824 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinmdxx.sys
[2008/07/17 10:16:24 | 000,011,359 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\atv02nt5.dll
[2008/07/17 10:16:24 | 000,009,728 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ativdaxx.ax
[2008/07/17 10:16:24 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx4.dll
[2008/07/17 10:16:23 | 001,888,992 | ---- | C] (ATI Technologies Inc. ) -- C:\WINDOWS\System32\ati3duag.dll
[2008/07/17 10:16:23 | 000,870,784 | ---- | C] (ATI Technologies Inc. ) -- C:\WINDOWS\System32\ati3d1ag.dll
[2008/07/17 10:16:23 | 000,701,440 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati2mtag.sys
[2008/07/17 10:16:23 | 000,377,984 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ati2dvaa.dll
[2008/07/17 10:16:23 | 000,327,040 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati2mtaa.sys
[2008/07/17 10:16:23 | 000,229,376 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ati2cqag.dll
[2008/07/17 10:16:23 | 000,201,728 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ati2dvag.dll
[2008/07/17 10:16:23 | 000,063,663 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1rvxx.sys
[2008/07/17 10:16:23 | 000,036,463 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1tuxx.sys
[2008/07/17 10:16:23 | 000,034,735 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1xsxx.sys
[2008/07/17 10:16:23 | 000,030,671 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1raxx.sys
[2008/07/17 10:16:23 | 000,029,455 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1xbxx.sys
[2008/07/17 10:16:23 | 000,026,367 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1snxx.sys
[2008/07/17 10:16:23 | 000,021,343 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1ttxx.sys
[2008/07/17 10:16:23 | 000,012,047 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1pdxx.sys
[2008/07/17 10:16:22 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\aaclient.dll
[2008/07/17 10:16:22 | 000,056,623 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1btxx.sys
[2008/07/17 10:16:22 | 000,011,615 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1mdxx.sys
[2008/07/17 10:16:22 | 000,004,255 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv01nt5.dll
[2008/07/17 10:16:22 | 000,003,967 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv02nt5.dll
[2008/07/17 10:16:22 | 000,003,775 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv11nt5.dll
[2008/07/17 10:16:22 | 000,003,711 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv09nt5.dll
[2008/07/17 10:16:22 | 000,003,647 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv07nt5.dll
[2008/07/17 10:16:22 | 000,003,615 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv05nt5.dll
[2008/07/17 10:16:22 | 000,003,135 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv08nt5.dll
[2008/07/11 05:41:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Web Sites
[2008/06/28 03:23:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Lightscribe
[2008/06/06 09:54:26 | 000,095,600 | ---- | C] (Ahead Software AG
im Stoeckmaedle 18
76307 Karlsbad, Germany
Fax: ++49-7248-911-888
e-mail: info@nero.com) -- C:\WINDOWS\System32\NeroCo.dll
[2008/06/06 09:54:16 | 000,972,072 | ---- | C] (Nero AG) -- C:\WINDOWS\UNRecode.exe
[2008/06/04 15:02:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Downloaded Program Updates
[2008/06/02 05:53:25 | 000,000,000 | ---D | C] -- C:\My Web Sites
[2008/06/02 05:49:13 | 000,000,000 | ---D | C] -- C:\Program Files\WinHTTrack
[2008/05/31 15:43:42 | 000,000,000 | ---D | C] -- C:\Program Files\RemoteObserverClient
[2008/05/31 15:29:55 | 000,000,000 | ---D | C] -- C:\Program Files\RemoteObserver
[2008/05/31 15:29:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\RemoteObserver
[2008/05/28 13:29:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Local Settings\Application Data\Mozilla
[2008/05/28 13:29:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\Mozilla
[2008/05/28 13:29:46 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2008/05/26 16:21:26 | 001,418,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mssrch.dll
[2008/05/26 16:21:08 | 001,582,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tquery.dll
[2008/05/26 16:19:36 | 000,273,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\oeph.dll
[2008/05/26 16:19:28 | 000,131,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\UncPH.dll
[2008/05/26 16:19:28 | 000,108,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\UncNE.dll
[2008/05/26 16:19:26 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\UncRes.dll
[2008/05/26 16:19:22 | 000,143,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\UncDMS.dll
[2008/05/26 16:19:20 | 000,097,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\UncCplExt.dll
[2008/05/26 16:19:16 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\oephRes.dll
[2008/05/26 16:18:56 | 000,203,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mssphtb.dll
[2008/05/26 16:18:44 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mssphtb.dll.mui
[2008/05/26 16:18:42 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msstrc.dll
[2008/05/26 16:18:34 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msshsq.dll
[2008/05/26 16:18:34 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xmlfilter.dll
[2008/05/26 16:18:32 | 000,038,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rtffilt.dll
[2008/05/26 16:18:26 | 000,350,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mssph.dll
[2008/05/26 16:18:08 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\propdefs.dll
[2008/05/26 16:17:58 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mssrch.dll.mui
[2008/05/26 16:17:54 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mssph.dll.mui
[2008/05/26 16:17:44 | 000,034,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msscb.dll
[2008/05/26 16:17:38 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msshooks.dll
[2008/05/26 16:17:36 | 000,221,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tquery.dll.mui
[2008/05/26 16:17:30 | 000,301,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\srchadmin.dll
[2008/05/26 16:17:28 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mssprxy.dll
[2008/05/26 16:17:26 | 000,087,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mssitlb.dll
[2008/05/26 16:17:26 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msscntrs.dll
[2008/05/26 16:17:12 | 000,135,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\srchadmin.dll.mui
[2008/05/24 12:37:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Local Settings\Application Data\PSU
[2008/05/07 03:54:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Updater
[2008/05/02 04:24:36 | 000,000,000 | ---D | C] -- C:\Program Files\TweakRAM
[2008/05/02 04:22:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\TweakRAM
[2008/04/28 04:03:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Ebook Shop 1
[2008/04/26 10:08:48 | 000,000,000 | ---D | C] -- C:\Program Files\e-novative
[2008/04/26 10:01:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\QuasarConfig
[2008/04/26 10:01:23 | 000,000,000 | ---D | C] -- C:\Program Files\Quasar
[2008/04/26 09:49:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Quasar
[2008/04/26 08:36:03 | 000,000,000 | ---D | C] -- C:\Program Files\Wise Registry Cleaner 3 Pro
[2008/04/26 08:34:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Wise Registry Cleaner
[2008/04/17 08:11:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Ebay
[2008/04/09 01:56:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\Intuit
[2008/04/08 08:59:10 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SWF Studio
[2008/04/08 08:55:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Local Settings\Application Data\Intuit
[2008/04/08 08:54:47 | 003,518,464 | ---- | C] (Amyuni Technologies
http://www.amyuni.com) -- C:\WINDOWS\System32\cdintf300.dll
[2008/04/08 08:54:47 | 001,843,200 | ---- | C] (Apache Software Foundation) -- C:\WINDOWS\System32\acXMLParser.dll
[2008/04/08 08:52:24 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Intuit
[2008/04/08 08:52:23 | 000,000,000 | ---D | C] -- C:\Program Files\Intuit
[2008/04/08 07:19:24 | 298,557,760 | ---- | C] (Intuit, Inc. ) -- C:\Documents and Settings\David\Desktop\QuickBooksSimpleStartDirect2008.exe
[2008/04/08 07:19:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\Download Manager
[2008/04/08 07:19:20 | 000,000,000 | ---D | C] -- C:\Program Files\Akamai
[2008/03/27 10:27:48 | 000,037,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\wdfldr.sys
[2008/03/27 09:02:46 | 000,000,000 | ---D | C] -- C:\Program Files\gs
[2008/03/26 07:21:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Projects
[2008/03/25 12:45:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Screenshots
[2008/03/25 08:00:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Web Sites Old
[2008/03/12 10:13:24 | 000,274,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mucltui.dll
[2008/03/12 10:13:24 | 000,016,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mucltui.dll.mui
[2008/03/12 06:41:46 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft CAPICOM 2.1.0.2
[2008/03/06 12:08:26 | 002,359,296 | ---- | C] (OpenOffice.org) -- C:\Documents and Settings\David\Desktop\soffice.exe
[2008/02/26 08:21:22 | 000,832,896 | ---- | C] (Indigo Rose Corporation) -- C:\WINDOWS\System32\ButtonThumbnailExtractor.dll
[2008/02/22 14:03:04 | 000,000,000 | ---D | C] -- C:\Program Files\Samsung Network Printer Utilities
[2008/02/21 11:04:13 | 000,057,344 | ---- | C] (Samsung Electronics) -- C:\WINDOWS\System32\ssdevm.dll
[2008/02/21 11:04:13 | 000,049,152 | ---- | C] (Samsung Electronics) -- C:\WINDOWS\System32\ssusbpn.dll
[2008/02/21 11:04:13 | 000,021,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msxml2a.dll
[2008/02/21 11:04:12 | 000,000,000 | ---D | C] -- C:\WINDOWS\Samsung
[2008/02/21 10:53:45 | 000,022,663 | ---- | C] (Samsung Electronics.) -- C:\WINDOWS\System32\SUGG1LMK.DLL
[2008/02/21 10:53:40 | 000,151,552 | ---- | C] (Samsung Electronics Co., Ltd.) -- C:\WINDOWS\System32\SUGG1CI.exe
[2008/02/21 10:53:39 | 000,057,344 | ---- | C] (SEC) -- C:\WINDOWS\System32\SUGG1CI.dll
[2008/02/21 10:53:37 | 000,041,984 | ---- | C] (Samsung Electronics Co., Ltd.) -- C:\WINDOWS\System32\drivers\DGIVECP.SYS
[2008/02/06 17:37:45 | 000,000,000 | ---D | C] -- C:\WINDOWS\Minidump
[2008/02/06 17:23:23 | 000,000,000 | ---D | C] -- C:\Program Files\Steganos Internet Security 2007
[2008/01/25 13:27:15 | 000,126,448 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxinsi64.exe
[2008/01/25 13:27:15 | 000,123,888 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxcpyi64.exe
[2008/01/25 13:27:15 | 000,072,176 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxhpinst.exe
[2008/01/25 13:27:15 | 000,068,592 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxinsa64.exe
[2008/01/25 13:27:15 | 000,068,080 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxcpya64.exe
[2008/01/17 08:04:26 | 000,000,000 | ---D | C] -- C:\Program Files\CDox
[2008/01/17 07:49:51 | 000,000,000 | ---D | C] -- C:\Program Files\MediaFood
[2008/01/17 07:48:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Free Inlay Printing
[2008/01/17 07:47:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Welcome MFDT UG_files
[2008/01/17 07:43:21 | 001,234,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MSJT4JLT.DLL
[2008/01/17 07:43:21 | 001,046,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msjet35.dll
[2008/01/17 07:43:21 | 000,415,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msrepl35.dll
[2008/01/17 07:43:21 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MFC42LOC.DLL
[2008/01/17 07:43:21 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MFC42DEU.DLL
[2008/01/17 07:42:57 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\PrintFit Shared
[2008/01/17 07:42:57 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\PrintFit
[2008/01/17 07:42:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\PrintFit
[2008/01/17 07:24:30 | 000,667,136 | ---- | C] (OLYMPUS Software Europe GmbH) -- C:\WINDOWS\System32\oik32.ocx
[2008/01/17 07:24:30 | 000,155,648 | ---- | C] (Lars Schenk / Gorch-Fock-Str. 39 / 23669 Timmendorfer Strand / Germany / barcode@sharedirect.com) -- C:\WINDOWS\System32\barcode.ocx
[2008/01/17 07:24:30 | 000,061,952 | ---- | C] (OLYMPUS Software Europe GmbH) -- C:\WINDOWS\System32\twiz32.ocx
[2008/01/17 07:24:29 | 000,125,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\VB6DE.DLL
[2008/01/17 07:24:29 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\CMDLGDE.DLL
[2008/01/17 07:24:29 | 000,000,000 | ---D | C] -- C:\Program Files\printFIT
[2007/12/17 06:43:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Jenny
[2007/12/13 07:31:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Local Settings\Application Data\Macromedia
[2007/12/13 07:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\Downloaded Installations
[2007/12/09 12:35:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\eBay
[2007/12/09 12:34:57 | 000,000,000 | ---D | C] -- C:\Program Files\eBay
[2007/12/06 00:45:26 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\supportsoft
[2007/12/06 00:45:26 | 000,000,000 | ---D | C] -- C:\Program Files\Dell Support Center
[2007/11/30 07:03:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\.thumbnails
[2007/11/30 07:01:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\.gimp-2.2
[2007/11/30 07:00:59 | 000,000,000 | ---D | C] -- C:\Program Files\GIMPshop
[2007/11/23 06:51:54 | 000,000,000 | R--D | C] -- C:\Documents and Settings\LocalService\Favorites
[2007/11/23 06:51:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\Google
[2007/11/23 06:51:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Application Data\Google
[2007/11/13 10:09:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\PCHealth
[2007/11/08 08:23:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\OpenOffice.org2
[2007/11/08 08:21:54 | 000,000,000 | ---D | C] -- C:\Program Files\OpenOffice.org 2.3
[2007/11/07 05:55:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Business Files
[2007/11/06 09:52:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Local Settings\Application Data\WMTools Downloaded Files
[2007/11/02 13:33:06 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\LightScribe
[2007/11/02 07:47:29 | 000,000,000 | ---D | C] -- C:\Program Files\SureThing
[2007/11/02 07:47:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\MVUNINST
[2007/11/01 11:40:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Local Settings\Application Data\MicroVision Applications
[2007/10/29 10:22:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Bank Of Scotland
[2007/10/29 04:11:58 | 000,053,248 | ---- | C] (Marvell Semiconductor, Inc.) -- C:\WINDOWS\System32\HPEWSMX.dll
[2007/10/04 07:47:57 | 000,000,000 | ---D | C] -- C:\Program Files\Blender Foundation
[2007/10/04 07:44:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\blender-2.45-windows
[2007/09/21 04:58:40 | 000,000,000 | --SD | C] -- C:\Documents and Settings\David\My Documents\CDInterface Studio Projects Old
[2007/09/21 04:58:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Local Settings\Application Data\CDInterface Studio
[2007/09/21 04:58:05 | 000,000,000 | ---D | C] -- C:\Program Files\CDInterface Studio
[2007/09/21 03:54:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Important Files
[2007/09/20 10:00:44 | 000,000,000 | ---D | C] -- C:\MDT
[2007/09/20 09:56:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\CyberLink
[2007/09/20 08:53:28 | 000,000,000 | ---D | C] -- C:\Program Files\Lx_cats
[2007/09/20 08:52:46 | 000,087,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wiafbdrv.dll
[2007/09/20 08:52:33 | 000,000,000 | ---D | C] -- C:\Program Files\Lexmark 4300 Series
[2007/09/20 08:52:28 | 000,000,000 | ---D | C] -- C:\Temp
[2007/09/20 08:48:40 | 000,000,000 | ---D | C] -- C:\Lexmark
[2007/09/20 01:25:00 | 000,000,000 | ---D | C] -- C:\CloneDVDTemp
[2007/09/18 08:36:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\ie7updates
[2007/09/17 23:44:48 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Connect 2
[2007/09/17 23:43:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\UMDF
[2007/09/17 23:43:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\LogFiles
[2007/09/17 22:50:11 | 000,299,520 | ---- | C] (InstallShield Corporation, Inc.) -- C:\WINDOWS\uninst.exe
[2007/09/17 22:49:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\WINDOWS
[2007/09/17 22:11:06 | 000,000,000 | ---D | C] -- C:\Program Files\PantsOff
[2007/09/17 21:20:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Local Settings\Application Data\Help
[2007/09/17 21:20:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\Help
[2007/09/17 21:12:09 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Dell
[2007/09/17 21:09:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\appmgmt
[2007/09/17 19:43:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\WBEM
[2007/09/17 19:43:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en-US
[2007/09/17 19:42:43 | 000,000,000 | -H-D | C] -- C:\WINDOWS\ie7
[2007/09/17 19:42:28 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$
[2007/09/17 19:42:15 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$
[2007/09/17 19:41:14 | 000,000,000 | ---D | C] -- C:\WINDOWS\network diagnostic
[2007/09/17 19:21:37 | 000,000,000 | ---D | C] -- C:\Program Files\Elaborate Bytes
[2007/09/17 19:21:00 | 000,000,000 | ---D | C] -- C:\Program Files\SlySoft
[2007/09/17 19:19:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Slysoft DVD Tools
[2007/09/17 18:44:50 | 000,000,000 | ---D | C] -- C:\Program Files\Ontrack
[2007/09/17 16:19:31 | 000,000,000 | ---D | C] -- C:\Program Files\EASEUS
[2007/09/17 15:52:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\File Repair
[2007/09/16 20:45:52 | 000,185,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Thawbrkr.dll
[2007/09/16 20:45:51 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\c_iscii.dll
[2007/09/16 20:45:49 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdusa.dll
[2007/09/16 20:45:43 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ftlx041e.dll
[2007/09/16 19:25:19 | 000,000,000 | ---D | C] -- C:\Program Files\Trackballs
[2007/09/16 18:54:18 | 000,000,000 | -H-D | C] -- C:\WINDOWS\PIF
[2007/09/16 18:13:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Ranish Partition Manager
It's to long but I am not able to upload with hotfile as it is not visable.
OTL logfile created on: 1/2/2007 12:41:03 AM - Run
OTLPE by OldTimer - Version 3.1.43.0 Folder = X:\Programs\OTLPE
Microsoft Windows XP Service Pack 3 (Version = 5.1.2600) - Type = SYSTEM
Internet Explorer (Version = 7.0.5730.11)
Locale: 00000809 | Country: United Kingdom | Language: ENG | Date Format: dd/MM/yyyy
2.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 85.00% Memory free
2.00 Gb Paging File | 2.00 Gb Available in Paging File | 96.00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 229.77 Gb Total Space | 97.03 Gb Free Space | 42.23% Space Free | Partition Type: NTFS
Drive D: | 465.75 Gb Total Space | 101.84 Gb Free Space | 21.87% Space Free | Partition Type: NTFS
Drive X: | 434.99 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS
Computer Name: REATOGO | User Name: SYSTEM
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
Using ControlSet: ControlSet004
========== Win32 Services (SafeList) ==========
SRV - File not found [Auto] -- C:\Program Files\e-novative\WAMP\MySql\MySql Server 4.1\bin\mysqld-nt.exe -- (MySQL)
SRV - File not found [Auto] -- C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe -- (LiveUpdate Notice Ex)
SRV - File not found [Auto] -- C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe -- (CLTNetCnService)
SRV - File not found [Auto] -- C:\Program Files\e-novative\WAMP\Apache\Apache.exe -- (Apache)
SRV - [2010/12/03 04:05:32 | 001,389,400 | ---- | M] (Lavasoft) [Auto] -- C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe -- (Lavasoft Ad-Aware Service)
SRV - [2010/11/05 12:53:56 | 000,327,000 | ---- | M] (Enigma Software Group USA, LLC.) [Auto] -- C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe -- (SpyHunter 4 Service)
SRV - [2010/10/20 06:22:24 | 000,630,272 | ---- | M] (Nokia) [On_Demand] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2010/10/08 17:43:48 | 000,828,928 | ---- | M] (Security Stronghold) [Auto] -- C:\Program Files\True Sword 5\TrueSwordSchedule.exe -- (TrueSwordSchedulerService)
SRV - [2010/10/03 17:43:16 | 000,767,208 | ---- | M] (Trusteer Ltd.) [Auto] -- C:\Program Files\Trusteer\Rapport\bin\RapportMgmtService.exe -- (RapportMgmtService)
SRV - [2010/09/23 04:49:08 | 000,067,584 | ---- | M] (CobianSoft, Luis Cobian) [Auto] -- C:\Program Files\Cobian Backup 10\cbVSCService.exe -- (cbVSCService)
SRV - [2010/09/13 11:18:32 | 000,308,656 | ---- | M] (Eastman Kodak Company) [Auto] -- C:\Program Files\Kodak\AiO\Center\ekdiscovery.exe -- (Kodak AiO Network Discovery Service)
SRV - [2010/08/27 06:10:45 | 000,340,520 | ---- | M] (Kaspersky Lab) [Auto] -- C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe -- (AVP)
SRV - [2010/03/25 04:27:09 | 000,604,488 | ---- | M] (TuneUp Software) [Auto] -- C:\WINDOWS\system32\TUProgSt.exe -- (TuneUp.ProgramStatisticsSvc)
SRV - [2010/03/25 04:27:06 | 000,361,288 | ---- | M] (TuneUp Software) [On_Demand] -- C:\WINDOWS\system32\TuneUpDefragService.exe -- (TuneUp.Defrag)
SRV - [2010/03/18 07:16:28 | 000,753,504 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe -- (WPFFontCache_v0400)
SRV - [2010/03/18 07:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto] -- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010/01/28 07:47:44 | 001,737,464 | ---- | M] () [Auto] -- C:\Program Files\3 Mobile Broadband\3Connect\BecHelperService.exe -- (BecHelperService)
SRV - [2009/11/30 12:25:08 | 000,185,640 | ---- | M] () [On_Demand] -- C:\Documents and Settings\David\Application Data\Mikogo\B-Service.exe -- (B-Service)
SRV - [2009/11/16 06:25:48 | 000,029,000 | ---- | M] (TuneUp Software) [Auto] -- C:\WINDOWS\system32\uxtuneup.dll -- (UxTuneUp)
SRV - [2008/08/13 12:32:40 | 000,201,968 | ---- | M] (SupportSoft, Inc.) [Auto] -- C:\Program Files\Dell Support Center\bin\sprtsvc.exe -- (sprtsvc_dellsupportcenter) SupportSoft Sprocket Service (dellsupportcenter)
SRV - [2008/05/31 15:43:42 | 000,020,480 | ---- | M] () [Auto] -- C:\Program Files\RemoteObserverClient\roclient.exe -- (roclient)
SRV - [2008/02/26 22:24:12 | 000,020,480 | ---- | M] (Intuit) [Auto] -- C:\Program Files\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe -- (QBCFMonitorService)
SRV - [2007/11/28 14:51:10 | 000,583,048 | ---- | M] (Symantec Corporation) [Auto] -- C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe -- (LiveUpdate Notice Service)
SRV - [2007/09/14 16:28:43 | 000,068,096 | ---- | M] () [On_Demand] -- C:\Program Files\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe -- (Macromedia Licensing Service)
SRV - [2007/05/24 01:08:44 | 000,061,440 | ---- | M] (Intuit Inc.) [On_Demand] -- C:\Program Files\Common Files\Intuit\QuickBooks\FCS\Intuit.QuickBooks.FCS.exe -- (QBFCService)
SRV - [2007/03/19 06:44:44 | 000,070,656 | ---- | M] () [On_Demand] -- C:\Program Files\DellSupport\brkrsvc.exe -- (DSBrokerService)
SRV - [2006/11/03 14:19:58 | 000,013,592 | ---- | M] (Microsoft Corporation) [Disabled] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend)
SRV - [2006/09/14 02:56:06 | 000,102,400 | ---- | M] () [Auto] -- C:\Program Files\Adobe\Photoshop Elements 5.0\PhotoshopElementsFileAgent.exe -- (AdobeActiveFileMonitor5.0)
SRV - [2006/09/02 18:36:33 | 002,528,960 | ---- | M] (Symantec Corporation) [On_Demand] -- C:\Program Files\Symantec\LiveUpdate\LuComServer_3_1.EXE -- (LiveUpdate)
SRV - [2006/09/02 18:36:33 | 000,198,336 | ---- | M] (Symantec Corporation) [Auto] -- C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe -- (Automatic LiveUpdate Scheduler)
SRV - [2005/07/06 05:14:12 | 000,471,040 | ---- | M] (Lexmark International, Inc.) [On_Demand] -- C:\WINDOWS\System32\lxcecoms.exe -- (lxce_device)
SRV - [2004/10/21 22:24:18 | 000,073,728 | ---- | M] (Macrovision Corporation) [On_Demand] -- C:\Program Files\Roxio\Roxio MyDVD Basic v9\InstallShield\Driver\1050\Intel 32\IDriverT.exe -- (IDriverT)
SRV - [2004/08/04 05:00:00 | 002,637,824 | RHS- | M] () [Auto] -- C:\WINDOWS\system32\bjqeulfx.dll -- (tsjccvfq)
SRV - [2004/07/03 07:56:24 | 000,036,864 | ---- | M] () [Auto] -- C:\WINDOWS\system32\acs.exe -- (ACS)
========== Driver Services (SafeList) ==========
DRV - File not found [Kernel | On_Demand] -- -- (WDICA)
DRV - File not found [Kernel | Auto] -- C:\WINDOWS\System32\Drivers\SSPORT.sys -- (SSPORT)
DRV - File not found [Kernel | System] -- C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\SAS_SelfExtract\SASKUTIL.SYS -- (SASKUTIL)
DRV - File not found [Kernel | System] -- C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\SAS_SelfExtract\SASDIFSV.SYS -- (SASDIFSV)
DRV - File not found [Kernel | On_Demand] -- -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand] -- -- (PDRELI)
DRV - File not found [Kernel | On_Demand] -- -- (PDFRAME)
DRV - File not found [Kernel | On_Demand] -- -- (PDCOMP)
DRV - File not found [Kernel | System] -- -- (PCIDump)
DRV - File not found [Kernel | On_Demand] -- C:\DOCUME~1\David\LOCALS~1\Temp\00001219.nmc\nse\bin\ndiskio.sys -- (NDISKIO)
DRV - File not found [Kernel | System] -- -- (lbrtfdc)
DRV - File not found [Kernel | System] -- -- (Changer)
DRV - File not found [Kernel | On_Demand] -- C:\ComboFix\catchme.sys -- (catchme)
DRV - [2010/12/03 04:05:34 | 000,064,288 | ---- | M] (Lavasoft AB) [File_System | Boot] -- C:\WINDOWS\system32\drivers\Lbd.sys -- (Lbd)
DRV - [2010/10/03 17:54:04 | 000,034,792 | ---- | M] (Trusteer Ltd.) [Kernel | System] -- C:\Documents and Settings\All Users\Application Data\Trusteer\Rapport\store\exts\RapportCerberus\19917\RapportCerberus_19917.sys -- (RapportCerberus_19917)
DRV - [2010/10/03 17:43:44 | 000,169,320 | ---- | M] (Trusteer Ltd.) [Kernel | System] -- C:\Program Files\Trusteer\Rapport\bin\RapportPG.sys -- (RapportPG)
DRV - [2010/10/03 17:43:44 | 000,059,240 | ---- | M] (Trusteer Ltd.) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\RapportKELL.sys -- (RapportKELL)
DRV - [2010/09/10 14:04:16 | 000,020,480 | ---- | M] (Security Stronghold) [Kernel | Auto] -- C:\Program Files\Active Shield 5\ActiveShield.sys -- (DriverAS)
DRV - [2010/08/19 02:32:06 | 000,371,248 | ---- | M] (Symantec Corporation) [Kernel | System] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys -- (eeCtrl)
DRV - [2010/03/25 18:59:22 | 000,243,928 | ---- | M] (Intel Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\e1e5132.sys -- (e1express) Intel®
DRV - [2010/02/26 08:32:58 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\usbser_lowerfltj.sys -- (UsbserFilt)
DRV - [2010/02/26 08:32:46 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\usbser_lowerflt.sys -- (upperdev)
DRV - [2010/02/26 08:32:44 | 000,022,528 | ---- | M] (Nokia) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\ccdcmbo.sys -- (nmwcdc)
DRV - [2010/02/26 08:32:44 | 000,018,176 | ---- | M] (Nokia) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\ccdcmb.sys -- (nmwcd)
DRV - [2010/02/10 03:54:45 | 000,691,696 | ---- | M] (Duplex Secure Ltd.) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\sptd.sys -- (sptd)
DRV - [2010/01/28 07:35:24 | 000,010,240 | ---- | M] () [Kernel | Auto] -- C:\WINDOWS\system32\drivers\mdvrmng.sys -- (mdvrmng)
DRV - [2010/01/28 07:34:32 | 000,102,528 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\ewusbmdm.sys -- (hwdatacard)
DRV - [2010/01/28 07:34:32 | 000,100,736 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\ewusbdev.sys -- (hwusbdev)
DRV - [2009/12/27 17:26:32 | 000,315,408 | ---- | M] (Kaspersky Lab) [File_System | System] -- C:\WINDOWS\system32\drivers\klif.sys -- (KLIF)
DRV - [2009/10/22 07:54:18 | 000,037,392 | ---- | M] (Kaspersky Lab) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\57373902.sys -- (57373902)
DRV - [2009/10/14 16:18:34 | 000,036,880 | ---- | M] (Kaspersky Lab) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\klbg.sys -- (klbg)
DRV - [2009/10/09 17:31:10 | 000,315,408 | ---- | M] (Kaspersky Lab) [File_System | System] -- C:\WINDOWS\system32\drivers\5737390.sys -- (setup_9.0.0.722_09.12.2010_12-20drv)
DRV - [2009/10/02 14:39:44 | 000,019,472 | ---- | M] (Kaspersky Lab) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\klmouflt.sys -- (klmouflt)
DRV - [2009/09/25 11:59:42 | 000,128,016 | ---- | M] (Kaspersky Lab) [Kernel | System] -- C:\WINDOWS\system32\drivers\57373901.sys -- (57373901)
DRV - [2009/09/14 09:42:46 | 000,032,272 | ---- | M] (Kaspersky Lab) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\klim5.sys -- (klim5)
DRV - [2009/09/01 10:29:50 | 000,128,016 | ---- | M] (Kaspersky Lab) [Kernel | System] -- C:\WINDOWS\system32\drivers\kl1.sys -- (kl1)
DRV - [2008/08/26 05:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2008/04/13 13:45:12 | 000,060,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\USBAUDIO.sys -- (usbaudio) USB Audio Driver (WDM)
DRV - [2008/04/13 13:36:39 | 000,043,008 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | Disabled] -- C:\WINDOWS\system32\DRIVERS\amdagp.sys -- (amdagp)
DRV - [2008/04/13 13:36:39 | 000,040,960 | ---- | M] (Silicon Integrated Systems Corporation) [Kernel | Disabled] -- C:\WINDOWS\system32\DRIVERS\sisagp.sys -- (sisagp)
DRV - [2008/04/13 11:36:05 | 000,144,384 | ---- | M] (Windows ® Server 2003 DDK provider) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\hdaudbus.sys -- (HDAudBus)
DRV - [2008/01/20 13:36:56 | 000,035,840 | ---- | M] (Sax software company) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\SAXNDIS.sys -- (SaxNDIS) Ax3soft Packet Driver (SaxNDIS)
DRV - [2007/09/16 19:07:00 | 006,853,088 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv)
DRV - [2007/06/22 11:59:24 | 000,479,232 | ---- | M] (eMPIA Technology, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\emBDA.sys -- (USB28xxBGA)
DRV - [2007/06/22 11:59:06 | 000,038,656 | ---- | M] (eMPIA Technology, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\emOEM.sys -- (USB28xxOEM)
DRV - [2007/06/13 14:41:44 | 004,403,712 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2007/02/25 06:10:48 | 000,005,376 | --S- | M] (Gteko Ltd.) [Kernel | Auto] -- C:\WINDOWS\system32\drivers\dsunidrv.sys -- (dsunidrv)
DRV - [2007/02/12 14:36:54 | 000,277,784 | ---- | M] (Intel Corporation) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\iastor.sys -- (iaStor)
DRV - [2006/10/05 11:07:28 | 000,004,736 | ---- | M] (Gteko Ltd.) [Kernel | On_Demand] -- C:\Program Files\DellSupport\GTAction\triggers\DSproct.sys -- (DSproct)
DRV - [2006/08/18 07:18:08 | 000,009,400 | ---- | M] (Roxio) [File_System | Auto] -- C:\WINDOWS\system32\DLA\DLADResM.SYS -- (DLADResM)
DRV - [2006/08/18 07:17:46 | 000,035,096 | ---- | M] (Roxio) [File_System | Auto] -- C:\WINDOWS\system32\DLA\DLABMFSM.SYS -- (DLABMFSM)
DRV - [2006/08/18 07:17:44 | 000,097,848 | ---- | M] (Roxio) [File_System | Auto] -- C:\WINDOWS\system32\DLA\DLAUDF_M.SYS -- (DLAUDF_M)
DRV - [2006/08/18 07:17:44 | 000,094,648 | ---- | M] (Roxio) [File_System | Auto] -- C:\WINDOWS\system32\DLA\DLAUDFAM.SYS -- (DLAUDFAM)
DRV - [2006/08/18 07:17:42 | 000,026,008 | ---- | M] (Roxio) [File_System | Auto] -- C:\WINDOWS\system32\DLA\DLAOPIOM.SYS -- (DLAOPIOM)
DRV - [2006/08/18 07:17:40 | 000,032,472 | ---- | M] (Roxio) [File_System | Auto] -- C:\WINDOWS\system32\DLA\DLABOIOM.SYS -- (DLABOIOM)
DRV - [2006/08/18 07:17:38 | 000,104,472 | ---- | M] (Roxio) [File_System | Auto] -- C:\WINDOWS\system32\DLA\DLAIFS_M.SYS -- (DLAIFS_M)
DRV - [2006/08/18 07:17:38 | 000,014,520 | ---- | M] (Roxio) [File_System | Auto] -- C:\WINDOWS\system32\DLA\DLAPoolM.SYS -- (DLAPoolM)
DRV - [2006/08/11 05:05:58 | 000,051,768 | ---- | M] (Roxio) [File_System | Auto] -- C:\WINDOWS\system32\drivers\DRVNDDM.SYS -- (DRVNDDM)
DRV - [2006/08/11 04:35:18 | 000,012,920 | ---- | M] (Roxio) [File_System | System] -- C:\WINDOWS\system32\drivers\DLACDBHM.SYS -- (DLACDBHM)
DRV - [2006/08/11 04:35:16 | 000,028,184 | ---- | M] (Roxio) [File_System | System] -- C:\WINDOWS\system32\drivers\DLARTL_M.SYS -- (DLARTL_M)
DRV - [2006/07/21 05:21:26 | 000,099,176 | ---- | M] (Sonic Solutions) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\DRVMCDB.SYS -- (DRVMCDB)
DRV - [2006/06/12 13:06:28 | 000,041,984 | ---- | M] (Samsung Electronics Co., Ltd.) [Kernel | Auto] -- C:\WINDOWS\system32\drivers\DGIVECP.SYS -- (DgiVecp)
DRV - [2005/02/17 08:46:06 | 000,283,904 | ---- | M] () [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\ar5523.sys -- (AR5523)
DRV - [2005/01/17 05:54:56 | 000,086,528 | ---- | M] (VideoHome Tech.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\thpbdau2.sys -- (VideoHomeBDAU2)
DRV - [2004/09/11 04:52:26 | 000,043,264 | ---- | M] (Windows ® 2000 DDK provider) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\athfmwdl.sys -- (ATHFMWDL)
DRV - [2004/08/04 05:00:00 | 000,223,616 | ---- | M] (Microsoft Corporation) [Kernel | System] -- C:\WINDOWS\system32\drivers\tcpip6.sys -- (Tcpip6)
DRV - [2004/08/04 05:00:00 | 000,179,584 | ---- | M] (Mylex Corporation) [Kernel | Disabled] -- C:\WINDOWS\system32\DRIVERS\dac2w2k.sys -- (dac2w2k)
DRV - [2004/08/04 05:00:00 | 000,088,448 | ---- | M] (Microsoft Corporation) [Kernel | Auto] -- C:\WINDOWS\system32\drivers\nwlnkipx.sys -- (NwlnkIpx)
DRV - [2004/08/04 05:00:00 | 000,063,232 | ---- | M] (Microsoft Corporation) [Kernel | Auto] -- C:\WINDOWS\system32\drivers\nwlnknb.sys -- (NwlnkNb)
DRV - [2004/08/04 05:00:00 | 000,055,936 | ---- | M] (Microsoft Corporation) [Kernel | Auto] -- C:\WINDOWS\system32\drivers\nwlnkspx.sys -- (NwlnkSpx)
DRV - [2004/08/04 05:00:00 | 000,049,024 | ---- | M] (QLogic Corporation) [Kernel | Disabled] -- C:\WINDOWS\system32\DRIVERS\ql1280.sys -- (ql1280)
DRV - [2004/08/04 05:00:00 | 000,045,312 | ---- | M] (QLogic Corporation) [Kernel | Disabled] -- C:\WINDOWS\system32\DRIVERS\ql12160.sys -- (ql12160)
DRV - [2004/08/04 05:00:00 | 000,040,320 | ---- | M] (QLogic Corporation) [Kernel | Disabled] -- C:\WINDOWS\system32\DRIVERS\ql1080.sys -- (ql1080)
DRV - [2004/08/04 05:00:00 | 000,040,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\nmnt.sys -- (nm)
DRV - [2004/08/04 05:00:00 | 000,036,736 | ---- | M] (Promise Technology, Inc.) [Kernel | Disabled] -- C:\WINDOWS\system32\DRIVERS\ultra.sys -- (ultra)
DRV - [2004/08/04 05:00:00 | 000,032,640 | ---- | M] (LSI Logic) [Kernel | Disabled] -- C:\WINDOWS\system32\DRIVERS\symc8xx.sys -- (symc8xx)
DRV - [2004/08/04 05:00:00 | 000,030,688 | ---- | M] (LSI Logic) [Kernel | Disabled] -- C:\WINDOWS\system32\DRIVERS\sym_u3.sys -- (sym_u3)
DRV - [2004/08/04 05:00:00 | 000,028,384 | ---- | M] (LSI Logic) [Kernel | Disabled] -- C:\WINDOWS\system32\DRIVERS\sym_hi.sys -- (sym_hi)
DRV - [2004/08/04 05:00:00 | 000,026,496 | ---- | M] (Advanced System Products, Inc.) [Kernel | Disabled] -- C:\WINDOWS\system32\DRIVERS\asc.sys -- (asc)
DRV - [2004/08/04 05:00:00 | 000,019,072 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled] -- C:\WINDOWS\system32\DRIVERS\sparrow.sys -- (Sparrow)
DRV - [2004/08/04 05:00:00 | 000,017,280 | ---- | M] (American Megatrends Inc.) [Kernel | Disabled] -- C:\WINDOWS\system32\DRIVERS\mraid35x.sys -- (mraid35x)
DRV - [2004/08/04 05:00:00 | 000,016,256 | ---- | M] (Symbios Logic Inc.) [Kernel | Disabled] -- C:\WINDOWS\system32\DRIVERS\symc810.sys -- (symc810)
DRV - [2004/08/04 05:00:00 | 000,015,360 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\mpe.sys -- (MPE)
DRV - [2004/08/04 05:00:00 | 000,014,848 | ---- | M] (Advanced System Products, Inc.) [Kernel | Disabled] -- C:\WINDOWS\system32\DRIVERS\asc3550.sys -- (asc3550)
DRV - [2004/08/04 05:00:00 | 000,006,656 | ---- | M] (CMD Technology, Inc.) [Kernel | Disabled] -- C:\WINDOWS\system32\DRIVERS\cmdide.sys -- (CmdIde)
DRV - [2004/08/04 05:00:00 | 000,005,248 | ---- | M] (Acer Laboratories Inc.) [Kernel | Disabled] -- C:\WINDOWS\system32\DRIVERS\aliide.sys -- (AliIde)
DRV - [2004/02/11 09:34:50 | 000,021,808 | ---- | M] (An Chen Computer Co., Ltd.) [Kernel | On_Demand] -- C:\WINDOWS\System32\Drivers\Aldebaran.sys -- (Aldebaran)
DRV - [2004/02/11 09:34:46 | 000,016,855 | ---- | M] (An Chen Computer Co., Ltd.) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\Achernar.sys -- (Achernar)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\Software\Microsoft\Internet Explorer\Search,Default_Page_URL = www.google.co.uk/ig/dell?hl=en&client=dell-usuk&channel=uk&ibd=1070911
IE - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.co.uk/hws/sb/dell-usuk/en/side.html?channel=uk
IE - HKLM\Software\Microsoft\Internet Explorer\Search,Start Page = www.google.co.uk/ig/dell?hl=en&client=dell-usuk&channel=uk&ibd=1070911
IE - HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.co.uk/ig/dell?hl=en&client=dell-usuk&channel=uk&ibd=1070911
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\Administrator_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\David_ON_C\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.co.uk/ig/dell?hl=en&client=dell-usuk&channel=uk&ibd=1070911
IE - HKU\David_ON_C\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.co.uk/hws/sb/dell-usuk/en/side.html?channel=uk
IE - HKU\David_ON_C\Software\Microsoft\Internet Explorer\Main,Start Page = http://k2b-bulk.ebay.co.uk/ws/eBayISAPI.dll?SMSummary
IE - HKU\David_ON_C\..\URLSearchHook: {472734EA-242A-422b-ADF8-83D1E48CC825} - Reg Error: Key error. File not found
IE - HKU\David_ON_C\..\URLSearchHook: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
IE - HKU\David_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\Guest_ON_C\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.co.uk/ig/dell?hl=en&client=dell-usuk&channel=uk&ibd=1070911
IE - HKU\Guest_ON_C\Software\Microsoft\Internet Explorer\Main,First Home Page = http://www1.euro.dell.com/content/default.aspx?c=uk&l=en&s=gen
IE - HKU\Guest_ON_C\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.co.uk/hws/sb/dell-usuk/en/side.html?channel=uk
IE - HKU\Guest_ON_C\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.co.uk/ig/dell?hl=en&client=dell-usuk&channel=uk&ibd=1070911
IE - HKU\Guest_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - prefs.js..extensions.enabledItems: linkfilter@kaspersky.ru:9.0.0.736
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - HKLM\software\mozilla\Firefox\Extensions\\{6E19037A-12E3-4295-8915-ED48BC341614}: C:\Program Files\RelevantKnowledge
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.12\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010/12/08 05:49:45 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.12\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010/12/01 05:35:31 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Thunderbird\Extensions\\{eea12ec4-729d-4703-bc37-106ce9879ce2}: C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\THBExt [2010/01/16 04:49:24 | 000,000,000 | ---D | M]
[2010/12/08 07:10:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Extensions
[2010/12/23 16:49:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\r87hsvxe.default\extensions
[2010/12/23 10:38:41 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\r87hsvxe.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2006/12/31 19:39:06 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2010/09/26 09:21:45 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
[2006/12/31 19:39:07 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
[2009/12/27 17:01:00 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions\linkfilter@kaspersky.ru
[2006/12/31 19:38:45 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
[2010/10/27 00:24:34 | 000,001,538 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\amazon-en-GB.xml
[2010/10/27 00:24:34 | 000,000,947 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\chambers-en-GB.xml
[2010/10/27 00:24:34 | 000,000,769 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\eBay-en-GB.xml
[2010/10/27 00:24:34 | 000,001,135 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\yahoo-en-GB.xml
O1 HOSTS File: ([2010/12/17 07:24:05 | 000,000,098 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (&Yahoo! Toolbar Helper) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (eBay Toolbar Helper) - {22D8E815-4A5E-4DFB-845E-AAB64207F5BD} - C:\Program Files\eBay\eBay Toolbar2\eBayTb.dll (eBay Inc.)
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O2 - BHO: (IEVkbdBHO Class) - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\ievkbd.dll (Kaspersky Lab)
O2 - BHO: (CBrowserHelperObject Object) - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\Dell\BAE\BAE.dll (Dell Inc.)
O2 - BHO: (FDMIECookiesBHO Class) - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files\Free Download Manager\iefdm2.dll ()
O2 - BHO: (FilterBHO Class) - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\klwtbbho.dll (Kaspersky Lab)
O3 - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll ()
O3 - HKLM\..\Toolbar: (eBay Toolbar) - {92085AD4-F48A-450D-BD93-B28CC7DF67CE} - C:\Program Files\eBay\eBay Toolbar2\eBayTb.dll (eBay Inc.)
O3 - HKLM\..\Toolbar: (Yahoo! Toolbar) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
O3 - HKU\David_ON_C\..\Toolbar\WebBrowser: (no name) - {043C5167-00BB-4324-AF7E-62013FAEDACF} - No CLSID value found.
O3 - HKU\Guest_ON_C\..\Toolbar\WebBrowser: (no name) - {043C5167-00BB-4324-AF7E-62013FAEDACF} - No CLSID value found.
O3 - HKU\Guest_ON_C\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O3 - HKU\Guest_ON_C\..\Toolbar\WebBrowser: (no name) - {CC05A3E3-64C3-4AF2-BFC1-AF0D66B69065} - No CLSID value found.
O4 - HKLM..\Run: [AVP] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe (Kaspersky Lab)
O4 - HKLM..\Run: [dellsupportcenter] C:\Program Files\Dell Support Center\bin\sprtcmd.exe (SupportSoft, Inc.)
O4 - HKLM..\Run: [DivXUpdate] C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
O4 - HKLM..\Run: [dscactivate] C:\Program Files\Dell Support Center\gs_agent\custom\dsca.exe ( )
O4 - HKLM..\Run: [eBayToolbar] C:\Program Files\eBay\eBay Toolbar2\eBayTBDaemon.exe (eBay Inc.)
O4 - HKLM..\Run: [EKIJ5000StatusMonitor] C:\WINDOWS\system32\spool\drivers\w32x86\3\EKIJ5000MUI.exe (Eastman Kodak Company)
O4 - HKLM..\Run: [EzPrint] C:\Program Files\Lexmark 4300 Series\ezprint.exe (Lexmark International Inc.)
O4 - HKLM..\Run: [ISUSPM Startup] C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe (Macrovision Corporation)
O4 - HKLM..\Run: [ISUSScheduler] C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe (Macrovision Corporation)
O4 - HKLM..\Run: [LXCECATS] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\LXCEtime.DLL ()
O4 - HKLM..\Run: [lxcemon.exe] C:\Program Files\Lexmark 4300 Series\lxcemon.exe (Lexmark International, Inc.)
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware (reboot)] C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [NBKeyScan] C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe (Nero AG)
O4 - HKLM..\Run: [NokiaMServer] C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer.exe (Nokia)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [Presto! DVR Monitor] C:\Program Files\NewSoft\Presto! DVR\Monitor.exe (NewSoft)
O4 - HKLM..\Run: [Presto! PVR Monitor] C:\Program Files\NewSoft\Presto! PVR\Monitor.exe (NewSoft)
O4 - HKLM..\Run: [PrnStatusMX] C:\Program Files\Hewlett-Packard\PrnStatusMX\PrnStatusMX.exe (Marvell Semiconductor, Inc.)
O4 - HKLM..\Run: [SpyHunter Security Suite] C:\Program Files\Enigma Software Group\SpyHunter\SpyHunter4.exe (Enigma Software Group USA, LLC.)
O4 - HKLM..\Run: [Symantec PIF AlertEng] C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe (Symantec Corporation)
O4 - HKU\Administrator_ON_C..\Run: [DellSupport] C:\Program Files\DellSupport\DSAgnt.exe (Gteko Ltd.)
O4 - HKU\Administrator_ON_C..\Run: [IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe (Nero AG)
O4 - HKU\David_ON_C..\Run: [DellSupport] C:\Program Files\DellSupport\DSAgnt.exe (Gteko Ltd.)
O4 - HKU\David_ON_C..\Run: [IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe (Nero AG)
O4 - HKU\David_ON_C..\Run: [PC Suite Tray] C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe (Nokia)
O4 - HKU\David_ON_C..\Run: [rkill] C:\Documents and Settings\David\Desktop\rkill.exe ()
O4 - HKU\David_ON_C..\Run: [Software Informer] C:\Program Files\Software Informer\softinfo.exe (Informer Technologies, Inc.)
O4 - HKU\David_ON_C..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe (Safer Networking Limited)
O4 - HKU\David_ON_C..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\23ec432b-1cb1-4d03-a0ba-382d7e45ca2b.com (SUPERAntiSpyware.com)
O4 - HKU\Guest_ON_C..\Run: [DellSupport] C:\Program Files\DellSupport\DSAgnt.exe (Gteko Ltd.)
O4 - HKU\Guest_ON_C..\Run: [IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe (Nero AG)
O4 - HKU\Guest_ON_C..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe File not found
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Lightsurf.lnk = C:\Program Files\LightSurf\Common\IconMgr.exe (LightSurf Technologies, Inc.)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\Administrator_ON_C\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\Administrator_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\Administrator_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\Administrator_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\David_ON_C\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\David_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\Guest_ON_C\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\Guest_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\LocalService_ON_C\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\LocalService_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\NetworkService_ON_C\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\NetworkService_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\systemprofile_ON_C\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8 - Extra context menu item: eBay Search - C:\Program Files\eBay\eBay Toolbar2\eBayTb.dll (eBay Inc.)
O9 - Extra Button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra Button: Run WinHTTrack - {36ECAF82-3300-8F84-092E-AFF36D6C7040} - C:\Program Files\WinHTTrack\WinHTTrackIEBar.dll ()
O9 - Extra 'Tools' menuitem : Launch WinHTTrack - {36ECAF82-3300-8F84-092E-AFF36D6C7040} - C:\Program Files\WinHTTrack\WinHTTrackIEBar.dll ()
O9 - Extra Button: &Virtual keyboard - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\klwtbbho.dll (Kaspersky Lab)
O9 - Extra Button: Bonjour - {7F9DB11C-E358-4ca6-A83D-ACC663939424} - C:\Program Files\Bonjour\ExplorerPlugin.dll (Apple Inc.)
O9 - Extra Button: URLs c&heck - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\klwtbbho.dll (Kaspersky Lab)
O9 - Extra 'Tools' menuitem : Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O9 - Extra Button: Sothink SWF Catcher - {E19ADC6E-3909-43E4-9A89-B7B676377EE3} - C:\Program Files\Common Files\SourceTec\SWF Catcher\InternetExplorer.htm ()
O9 - Extra 'Tools' menuitem : Sothink SWF Catcher - {E19ADC6E-3909-43E4-9A89-B7B676377EE3} - C:\Program Files\Common Files\SourceTec\SWF Catcher\InternetExplorer.htm ()
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\WINDOWS\system32\nwprovau.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - File not found
O16 - DPF: {01A88BB1-1174-41EC-ACCB-963509EAE56B} http://support.euro.dell.com/systemprofiler/SysPro.CAB (SysProWmi Class)
O16 - DPF: {0E5F0222-96B9-11D3-8997-00104BD12D94} http://www.pcpitstop.com/betapit/PCPitStop.CAB (PCPitstop Utility)
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} http://security.symantec.com/sscv6/SharedContent/vc/bin/AvSniff.cab (Symantec AntiVirus scanner)
O16 - DPF: {4C39376E-FA9D-4349-BACC-D305C1750EF3} http://tools.ebayimg.com/eps/wl/activex/eBay_Enhanced_Picture_Control_v1-0-24-0.cab (EPUImageControl Class)
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab (Symantec RuFSI Utility Class)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1205320089281 (MUWebControl Class)
O16 - DPF: {6F6FDB9E-5072-498C-BCB0-2B7F00C49EE7} http://support.euro.dell.com/systemprofiler/DellSystemLite.CAB (DellSystemLite.Scanner)
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab (OnlineScanner Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {8FEFF364-6A5F-4966-A917-A3AC28411659} http://download.sopcast.com/download/SOPCORE.CAB (SopCore Control)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab (Reg Error: Key error.)
O16 - DPF: {A9F8D9EC-3D0A-4A60-BD82-FBD64BAD370D} http://h20264.www2.hp.com/ediags/dd/install/HPDriverDiagnosticsxp2k.cab (DDRevision Class)
O16 - DPF: {C1FDEE68-98D5-4F42-A4DD-D0BECF5077EB} http://tools.ebayimg.com/eps/wl/activex/eBay_Enhanced_Picture_Control_v1-0-27-0.cab (EPUImageControl Class)
O16 - DPF: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {CF84DAC5-A4F5-419E-A0BA-C01FFD71112F} http://content.systemrequirementslab.com.s3.amazonaws.com/global/bin/srldetect_intel_4.3.1.0.cab (SysInfo Class)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O16 - DPF: {E8F628B5-259A-4734-97EE-BA914D7BE941} http://plugin.driveragent.com/files/driveragent.cab (Driver Agent ActiveX Control)
O16 - DPF: Deployer http://www.pcthreat.com/autoinstall/shsafeinstall.cab (Reg Error: Key error.)
O18 - Protocol\Handler\intu-help-qb1 {9B0F96C7-2E4B-433e-ABF3-043BA1B54AE3} - C:\Program Files\Intuit\QuickBooks 2008\HelpAsyncPluggableProtocol.dll (TODO: <Company name>)
O18 - Protocol\Handler\vsharechrome {3F3A4B8A-86FC-43A4-BB00-6D7EBE9D4484} - Reg Error: Key error. File not found
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O20 - AppInit_DLLs: (C:\PROGRA~1\KASPER~1\KASPER~1\kloehk.dll) - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\kloehk.dll (Kaspersky Lab)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UIHost - (C:\Documents and Settings\All Users\Application Data\TuneUp Software\TuneUp Utilities\WinStyler\tu_logonui.exe) - C:\Documents and Settings\All Users\Application Data\TuneUp Software\TuneUp Utilities\WinStyler\tu_logonui.exe (Microsoft Corporation)
O20 - Winlogon\Notify\!SASWinLogon: DllName - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL (SUPERAntiSpyware.com)
O20 - Winlogon\Notify\klogon: DllName - C:\WINDOWS\system32\klogon.dll - C:\WINDOWS\system32\klogon.dll (Kaspersky Lab)
O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Bliss.bmp
O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Bliss.bmp
O28 - HKLM ShellExecuteHooks: {091EB208-39DD-417D-A5DD-7E2C2D8FB9CB} - C:\Program Files\Windows Defender\MpShHook.dll (Microsoft Corporation)
O28 - HKLM ShellExecuteHooks: {56F9679E-7826-4C84-81F3-532071A8BCC5} - C:\Program Files\Windows Desktop Search\MsnlNamespaceMgr.dll (Microsoft Corporation)
O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL (SuperAdBlocker.com)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010/12/23 10:29:39 | 000,000,000 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2010/07/02 06:53:26 | 000,000,000 | ---D | M] - D:\Autoplay CD's -- [ NTFS ]
O32 - AutoRun File - [2009/12/29 02:26:19 | 000,000,000 | ---D | M] - D:\Autoplay CD's Old -- [ NTFS ]
O32 - AutoRun File - [2006/03/24 06:06:41 | 000,000,053 | R--- | M] () - X:\AUTORUN.INF -- [ CDFS ]
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
========== Files/Folders - Created Within 30 Days ==========
[2010/12/24 00:44:58 | 016,561,952 | ---- | C] (Sun Microsystems, Inc.) -- C:\Documents and Settings\Administrator\Desktop\jre-6u23-windows-i586.exe
[2010/12/23 10:50:37 | 000,000,000 | RHSD | C] -- C:\cmdcons
[2010/12/23 10:47:01 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe
[2010/12/23 10:47:01 | 000,161,792 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe
[2010/12/23 10:47:01 | 000,136,704 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe
[2010/12/23 10:47:01 | 000,031,232 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe
[2010/12/23 10:46:45 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2010/12/23 10:42:38 | 000,000,000 | ---D | C] -- C:\Qoobox
[2010/12/23 10:21:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch
[2010/12/23 07:41:59 | 000,000,000 | ---D | C] -- C:\tmp
[2010/12/17 07:24:05 | 000,553,984 | R--- | C] (OldTimer Tools) -- C:\OTLPE.exe
[2010/12/17 07:22:39 | 000,000,000 | ---D | C] -- C:\_OTL
[2010/12/13 11:46:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Local Settings\Application Data\Safe mirror
[2010/12/13 11:45:28 | 000,000,000 | ---D | C] -- C:\Program Files\Cobian Backup 10
[2010/12/13 11:44:50 | 015,492,608 | ---- | C] (Luis Cobian, CobianSoft) -- C:\Documents and Settings\David\Desktop\cbSetup.exe
[2010/12/12 11:17:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\SUPERAntiSpyware.com
[2010/12/12 09:11:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\vShare
[2010/12/10 12:18:42 | 000,000,000 | ---D | C] -- C:\Program Files\ESET
[2010/12/10 11:51:42 | 011,843,016 | ---- | C] (Microsoft Corporation) -- C:\Documents and Settings\David\goal-kb890830-v3.13.exe
[2010/12/10 09:28:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft Corporation
[2010/12/10 09:19:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Desktop
[2010/12/10 07:49:13 | 000,000,000 | ---D | C] -- C:\Program Files\Active Shield 5
[2010/12/10 07:28:38 | 000,356,352 | ---- | C] (eSellerate Inc.) -- C:\WINDOWS\eSellerateEngine.dll
[2010/12/10 07:28:37 | 000,081,920 | ---- | C] (eSellerate Inc.) -- C:\WINDOWS\eSellerateControl350.dll
[2010/12/10 07:28:37 | 000,000,000 | ---D | C] -- C:\Program Files\True Sword 5
[2010/12/10 07:19:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\Yahoo!
[2010/12/10 07:10:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Desktop\SysProt
[2010/12/10 07:09:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\WinRAR
[2010/12/10 05:44:17 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2010/12/10 05:44:13 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2010/12/10 05:44:13 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2010/12/10 05:34:19 | 000,315,408 | ---- | C] (Kaspersky Lab) -- C:\WINDOWS\System32\drivers\5737390.sys
[2010/12/10 05:34:19 | 000,128,016 | ---- | C] (Kaspersky Lab) -- C:\WINDOWS\System32\drivers\57373901.sys
[2010/12/10 05:34:19 | 000,037,392 | ---- | C] (Kaspersky Lab) -- C:\WINDOWS\System32\drivers\57373902.sys
[2010/12/10 05:34:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Desktop\Virus Removal Tool
[2010/12/10 05:29:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\Windows Search
[2010/12/10 05:27:02 | 000,000,000 | ---D | C] -- C:\Program Files\SUPERAntiSpyware
[2010/12/10 04:44:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\SUPERAntiSpyware.com
[2010/12/09 07:41:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\Sun
[2010/12/09 07:39:20 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarere
[2010/12/09 07:35:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\Eastman_Kodak_Company
[2010/12/09 07:35:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\Eastman Kodak Company
[2010/12/09 03:31:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\InfraRecorder
[2010/12/09 03:05:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\Macromedia
[2010/12/09 03:03:52 | 007,622,112 | ---- | C] (Malwarebytes Corporation ) -- C:\Documents and Settings\Administrator\Desktop\mbam-setup-1.50.0.0.exe
[2010/12/09 02:59:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\vShare
[2010/12/09 02:59:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\Identities
[2010/12/09 02:59:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\Ahead
[2010/12/09 02:59:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\Windows Desktop Search
[2010/12/09 02:59:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\SupportSoft
[2010/12/09 02:59:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\Nero
[2010/12/09 02:59:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\eBay
[2010/12/09 02:58:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\Trusteer
[2010/12/09 01:30:57 | 000,064,288 | ---- | C] (Lavasoft AB) -- C:\WINDOWS\System32\drivers\Lbd.sys
[2010/12/09 01:30:54 | 000,098,392 | ---- | C] (Sunbelt Software) -- C:\WINDOWS\System32\drivers\SBREDrv.sys
[2010/12/09 01:26:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Local Settings\Application Data\Sunbelt Software
[2010/12/09 01:19:57 | 000,000,000 | ---D | C] -- C:\Program Files\Lavasoft
[2010/12/09 01:00:29 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\David\IECompatCache
[2010/12/09 00:58:57 | 000,000,000 | ---D | C] -- C:\!KillBox
[2010/12/09 00:58:53 | 000,092,672 | ---- | C] (Option^Explicit Software vbtechcd@gmail.com) -- C:\Documents and Settings\David\Desktop\KillBox.exe
[2010/12/08 11:28:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Desktop\New Folder
[2010/12/08 11:22:11 | 000,000,000 | ---D | C] -- C:\sh4ldr
[2010/12/08 11:22:11 | 000,000,000 | ---D | C] -- C:\Program Files\Enigma Software Group
[2010/12/08 11:20:07 | 000,663,960 | ---- | C] (Enigma Software Group USA, LLC.) -- C:\Documents and Settings\David\Desktop\SpyHunter-Installer.exe
[2010/12/08 10:45:12 | 000,000,000 | ---D | C] -- C:\TDSSKiller_Quarantine
[2010/12/08 10:43:50 | 001,344,600 | ---- | C] (Kaspersky Lab ZAO) -- C:\Documents and Settings\David\Desktop\TDSSKiller.exe
[2010/12/08 08:38:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Guest\Application Data\Macromedia
[2010/12/08 08:38:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Guest\Application Data\vShare
[2010/12/08 08:38:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Guest\Application Data\Adobe
[2010/12/08 08:38:21 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Guest\PrivacIE
[2010/12/08 08:38:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Guest\Local Settings\Application Data\Conduit
[2010/12/08 08:38:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Guest\Application Data\Yahoo!
[2010/12/08 08:38:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Guest\Local Settings\Application Data\softonic-de3
[2010/12/08 08:37:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Guest\Application Data\Google
[2010/12/08 08:37:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Guest\Local Settings\Application Data\ConduitEngine
[2010/12/08 08:37:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Guest\Local Settings\Application Data\Ahead
[2010/12/08 08:37:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Guest\Local Settings\Application Data\Identities
[2010/12/08 08:37:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Guest\Application Data\Windows Desktop Search
[2010/12/08 08:37:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Guest\Local Settings\Application Data\Mozilla
[2010/12/08 08:37:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Guest\Application Data\Mozilla
[2010/12/08 08:37:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Guest\Application Data\Nero
[2010/12/08 08:36:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Guest\Application Data\eBay
[2010/12/08 08:01:08 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Defender
[2010/12/08 07:16:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\Malwarebytes
[2010/12/08 07:14:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\Macromedia
[2010/12/08 07:11:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\My Documents\Downloads
[2010/12/08 07:10:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\Mozilla
[2010/12/08 07:10:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\Mozilla
[2010/12/08 05:12:22 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Guest\IETldCache
[2010/12/08 05:12:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Guest\Application Data\PC Suite
[2010/12/08 05:12:15 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Guest\Application Data\Microsoft
[2010/12/08 05:12:15 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Guest\SendTo
[2010/12/08 05:12:15 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Guest\Recent
[2010/12/08 05:12:15 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Guest\Application Data
[2010/12/08 05:12:15 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Guest\Start Menu
[2010/12/08 05:12:15 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Guest\My Documents\My Videos
[2010/12/08 05:12:15 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Guest\My Documents\My Pictures
[2010/12/08 05:12:15 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Guest\My Documents\My Music
[2010/12/08 05:12:15 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Guest\My Documents
[2010/12/08 05:12:15 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Guest\Favorites
[2010/12/08 05:12:15 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Guest\Cookies
[2010/12/08 05:12:15 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Guest\Templates
[2010/12/08 05:12:15 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Guest\PrintHood
[2010/12/08 05:12:15 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Guest\NetHood
[2010/12/08 05:12:15 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Guest\Local Settings
[2010/12/08 05:12:15 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Guest\Application Data\GTek
[2010/12/08 05:12:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Guest\Application Data\Trusteer
[2010/12/08 05:12:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Guest\Local Settings\Application Data\Temp
[2010/12/08 05:12:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Guest\Local Settings\Application Data\Roxio
[2010/12/08 05:12:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Guest\Application Data\Roxio
[2010/12/08 05:12:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Guest\Local Settings\Application Data\PowerDVD DX
[2010/12/08 05:12:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Guest\My Documents\My Google Gadgets
[2010/12/08 05:12:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Guest\Local Settings\Application Data\Microsoft
[2010/12/08 05:12:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Guest\Application Data\InstallShield
[2010/12/08 05:12:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Guest\Application Data\Identities
[2010/12/08 05:12:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Guest\Local Settings\Application Data\Google
[2010/12/08 05:12:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Guest\Desktop
[2010/12/08 05:12:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Guest\Local Settings\Application Data\ApplicationHistory
[2010/12/08 05:12:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Guest\Local Settings\Application Data\Adobe
[2010/12/08 05:12:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Guest\Local Settings\Application Data\{3248F0A6-6813-11D6-A77B-00B0D0150060}
[2010/12/08 05:06:43 | 000,000,000 | ---D | C] -- C:\Program Files\Spybot - Search & Destroy
[2010/12/08 04:51:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\PC Tools
[2010/12/08 04:51:40 | 006,872,936 | ---- | C] (PC Tools Research Pty. Ltd. ) -- C:\Documents and Settings\David\Desktop\sdtrial-regnow.exe
[2010/12/08 04:25:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\SlimBrowser
[2010/12/08 04:16:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\TuneUp Software
[2010/12/08 04:16:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\Adobe
[2010/12/08 04:15:16 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Administrator\PrivacIE
[2010/12/08 04:13:35 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Administrator\IETldCache
[2010/12/08 04:08:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Local Settings\Application Data\NPE
[2010/12/08 03:50:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\PriceGong
[2010/12/08 02:47:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\Malwarebytes
[2010/12/08 02:45:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Malware
[2010/11/30 03:17:55 | 000,018,816 | ---- | C] (Nokia) -- C:\WINDOWS\System32\drivers\pccsmcfd.sys
[2010/11/30 03:17:36 | 000,000,000 | ---D | C] -- C:\Program Files\PC Connectivity Solution
[2010/11/23 15:04:03 | 000,000,000 | ---D | C] -- C:\Program Files\vShare
[2010/11/20 16:12:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\PCDr
[2010/11/19 16:09:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Local Settings\Application Data\Conduit
[2010/11/17 07:46:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\dvd
[2010/11/15 06:26:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Manuals
[2010/11/13 09:46:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\WeBid
[2010/11/11 10:20:00 | 000,000,000 | ---D | C] -- C:\Program Files\ElcomSoft
[2010/11/11 10:17:11 | 000,000,000 | ---D | C] -- C:\Program Files\Intelore
[2010/11/11 03:20:57 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\David\Recent
[2010/11/07 05:48:20 | 000,000,000 | ---D | C] -- C:\Program Files\Pic2Ico
[2010/11/02 11:47:12 | 000,082,376 | ---- | C] (Microsoft Corporation) -- C:\Documents and Settings\David\mrtstub.exe
[2010/11/01 05:59:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Presto! PVR
[2010/10/30 09:03:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\TVUAx
[2010/10/30 06:01:56 | 000,000,000 | ---D | C] -- C:\Program Files\SopCast
[2010/10/28 10:24:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Hugin 2010.2.0
[2010/10/23 11:38:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Local Settings\Application Data\NewSoft
[2010/10/23 11:32:21 | 000,021,808 | ---- | C] (An Chen Computer Co., Ltd.) -- C:\WINDOWS\System32\drivers\Aldebaran.sys
[2010/10/23 11:32:21 | 000,016,855 | ---- | C] (An Chen Computer Co., Ltd.) -- C:\WINDOWS\System32\drivers\Achernar.sys
[2010/10/23 11:30:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ipp20
[2010/10/23 11:30:01 | 002,428,928 | ---- | C] (Intel Corporation.) -- C:\WINDOWS\System32\ippia611.dll
[2010/10/23 11:30:01 | 001,359,872 | ---- | C] (Intel Corporation.) -- C:\WINDOWS\System32\ippsa611.dll
[2010/10/23 11:30:01 | 000,462,848 | ---- | C] (Intel Corporation.) -- C:\WINDOWS\System32\ippcva611.dll
[2010/10/23 11:30:01 | 000,225,280 | ---- | C] (Intel Corporation.) -- C:\WINDOWS\System32\ippi11.dll
[2010/10/23 11:30:01 | 000,184,320 | ---- | C] (Intel Corporation.) -- C:\WINDOWS\System32\ippsra611.dll
[2010/10/23 11:30:01 | 000,176,128 | ---- | C] (Intel Corporation.) -- C:\WINDOWS\System32\ipps11.dll
[2010/10/23 11:30:01 | 000,151,552 | ---- | C] (Intel Corporation.) -- C:\WINDOWS\System32\ippja611.dll
[2010/10/23 11:30:01 | 000,094,208 | ---- | C] (Intel Corporation.) -- C:\WINDOWS\System32\ippcv11.dll
[2010/10/23 11:30:01 | 000,077,824 | ---- | C] (Intel Corporation.) -- C:\WINDOWS\System32\ippsr11.dll
[2010/10/23 11:30:01 | 000,065,536 | ---- | C] (Intel Corporation.) -- C:\WINDOWS\System32\ippj11.dll
[2010/10/23 11:24:49 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\NewSoft
[2010/10/23 11:24:24 | 000,000,000 | ---D | C] -- C:\Program Files\NewSoft
[2010/10/23 11:19:21 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\vfwwdm32.dll
[2010/10/23 11:19:21 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\vidcap.ax
[2010/10/23 11:19:19 | 000,091,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\kswdmcap.ax
[2010/10/23 11:19:19 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\kstvtune.ax
[2010/10/23 11:19:19 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\ksxbar.ax
[2010/10/23 11:19:01 | 000,086,528 | ---- | C] (VideoHome Tech.) -- C:\WINDOWS\System32\drivers\thpbdau2.sys
[2010/10/23 11:18:59 | 000,000,000 | ---D | C] -- C:\Program Files\VideoHome
[2010/10/22 06:48:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\IObit
[2010/10/22 06:48:19 | 000,000,000 | ---D | C] -- C:\Program Files\IObit
[2010/10/08 03:18:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Local Settings\Application Data\Indigo Rose Corporation
[2010/10/07 04:54:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Desktop\Programs By Rick
[2010/10/07 04:54:04 | 000,000,000 | ---D | C] -- C:\AffilaitePageMakerByKirkham
[2010/10/06 13:41:33 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\PCSuite
[2010/10/05 06:39:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Local Settings\Application Data\Microsoft Corporation
[2010/10/05 06:38:13 | 000,421,888 | ---- | C] (Eastman Kodak Company) -- C:\WINDOWS\System32\EKIJ5000MON.dll
[2010/10/05 06:38:13 | 000,131,072 | ---- | C] (Eastman Kodak Company) -- C:\WINDOWS\System32\EKIJCOINST09.dll
[2010/10/03 17:43:44 | 000,059,240 | ---- | C] (Trusteer Ltd.) -- C:\WINDOWS\System32\drivers\RapportKELL.sys
[2010/09/30 23:49:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Jewel Covers
[2010/09/30 10:29:00 | 000,000,000 | ---D | C] -- C:\www
[2010/09/30 09:54:09 | 000,000,000 | ---D | C] -- C:\phpFiles
[2010/09/30 09:41:50 | 000,000,000 | ---D | C] -- C:\Program Files\EasyPHP5.2.10
[2010/09/30 09:40:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\PHP
[2010/09/26 09:21:42 | 000,472,808 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\deployJava1.dll
[2010/09/24 12:02:03 | 000,008,192 | ---- | C] (Nokia) -- C:\WINDOWS\System32\drivers\usbser_lowerfltj.sys
[2010/09/24 12:02:02 | 000,008,192 | ---- | C] (Nokia) -- C:\WINDOWS\System32\drivers\usbser_lowerflt.sys
[2010/09/24 12:02:00 | 000,022,528 | ---- | C] (Nokia) -- C:\WINDOWS\System32\drivers\ccdcmbo.sys
[2010/09/24 12:01:59 | 001,461,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wdfcoinstaller01009.dll
[2010/09/24 12:01:59 | 000,662,016 | ---- | C] (Nokia) -- C:\WINDOWS\System32\nmwcdcocls.dll
[2010/09/24 12:01:59 | 000,018,176 | ---- | C] (Nokia) -- C:\WINDOWS\System32\drivers\ccdcmb.sys
[2010/09/23 05:45:02 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\RtlGina
[2010/09/23 05:45:02 | 000,000,000 | ---D | C] -- C:\Program Files\REALTEK
[2010/09/22 12:43:54 | 000,000,000 | ---D | C] -- C:\Program Files\SystemRequirementsLab
[2010/09/21 18:29:57 | 000,527,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_7.dll
[2010/09/21 18:29:57 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAPOFX1_5.dll
[2010/09/21 18:29:56 | 002,106,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_43.dll
[2010/09/21 18:29:56 | 000,239,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_7.dll
[2010/09/21 18:29:55 | 001,868,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dcsx_43.dll
[2010/09/21 18:29:55 | 000,470,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_43.dll
[2010/09/21 18:29:55 | 000,248,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx11_43.dll
[2010/09/21 18:29:54 | 001,998,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_43.dll
[2010/09/21 18:29:53 | 000,528,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_6.dll
[2010/09/21 18:29:53 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_6.dll
[2010/09/21 18:29:53 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAPOFX1_4.dll
[2010/09/21 18:29:52 | 000,515,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_5.dll
[2010/09/21 18:29:52 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\X3DAudio1_7.dll
[2010/09/21 18:29:51 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_5.dll
[2010/09/21 18:29:50 | 001,974,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_42.dll
[2010/09/21 18:29:49 | 005,501,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dcsx_42.dll
[2010/09/21 18:29:49 | 000,235,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx11_42.dll
[2010/09/21 18:29:48 | 001,892,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_42.dll
[2010/09/21 18:29:48 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_42.dll
[2010/09/21 18:29:47 | 004,178,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_41.dll
[2010/09/21 18:29:47 | 001,846,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_41.dll
[2010/09/21 18:29:47 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_41.dll
[2010/09/21 18:29:46 | 000,517,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_4.dll
[2010/09/21 18:29:46 | 000,235,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_4.dll
[2010/09/21 18:29:46 | 000,069,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAPOFX1_3.dll
[2010/09/21 18:29:45 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\X3DAudio1_6.dll
[2010/09/21 18:29:44 | 004,379,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_40.dll
[2010/09/21 18:29:44 | 002,036,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_40.dll
[2010/09/21 18:29:44 | 000,452,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_40.dll
[2010/09/21 18:29:43 | 000,514,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_3.dll
[2010/09/21 18:29:43 | 000,235,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_3.dll
[2010/09/21 18:29:43 | 000,070,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAPOFX1_2.dll
[2010/09/21 18:29:42 | 000,509,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_2.dll
[2010/09/21 18:29:42 | 000,068,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAPOFX1_1.dll
[2010/09/21 18:29:42 | 000,023,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\X3DAudio1_5.dll
[2010/09/21 18:29:41 | 001,493,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_39.dll
[2010/09/21 18:29:41 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_39.dll
[2010/09/21 18:29:41 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_2.dll
[2010/09/21 18:29:40 | 003,851,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_39.dll
[2010/09/21 18:29:39 | 000,507,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_1.dll
[2010/09/21 18:29:39 | 000,065,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAPOFX1_0.dll
[2010/09/21 18:29:38 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_1.dll
[2010/09/21 18:29:38 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\X3DAudio1_4.dll
[2010/09/21 18:29:37 | 003,850,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_38.dll
[2010/09/21 18:29:37 | 001,491,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_38.dll
[2010/09/21 18:29:37 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_38.dll
[2010/09/21 18:29:36 | 000,479,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_0.dll
[2010/09/21 18:29:36 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_0.dll
[2010/09/21 18:29:35 | 001,420,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_37.dll
[2010/09/21 18:29:35 | 000,462,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_37.dll
[2010/09/21 18:29:35 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\X3DAudio1_3.dll
[2010/09/21 18:29:34 | 003,786,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_37.dll
[2010/09/21 18:29:33 | 000,267,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_10.dll
[2010/09/21 18:29:32 | 003,734,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_36.dll
[2010/09/21 18:29:32 | 001,374,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_36.dll
[2010/09/21 18:29:32 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_36.dll
[2010/09/21 18:29:31 | 000,267,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_9.dll
[2010/09/21 18:29:30 | 003,727,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_35.dll
[2010/09/21 18:29:30 | 001,358,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_35.dll
[2010/09/21 18:29:30 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_35.dll
[2010/09/21 18:29:29 | 001,124,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_34.dll
[2010/09/21 18:29:29 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_34.dll
[2010/09/21 18:29:29 | 000,266,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_8.dll
[2010/09/21 18:29:29 | 000,017,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\X3DAudio1_2.dll
[2010/09/21 18:29:28 | 003,497,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_34.dll
[2010/09/21 18:29:28 | 000,081,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xinput1_3.dll
[2010/09/21 18:29:26 | 000,261,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_7.dll
[2010/09/21 18:29:25 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_33.dll
[2010/09/21 18:29:24 | 001,123,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_33.dll
[2010/09/21 18:29:23 | 003,495,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_33.dll
[2010/09/21 18:29:22 | 000,255,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_6.dll
[2010/09/21 18:29:21 | 000,251,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_5.dll
[2010/09/21 18:29:21 | 000,237,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_4.dll
[2010/09/21 18:29:20 | 002,414,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_31.dll
[2010/09/21 18:29:20 | 000,015,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\x3daudio1_1.dll
[2010/09/21 18:29:19 | 000,236,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_3.dll
[2010/09/21 18:29:19 | 000,062,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xinput1_2.dll
[2010/09/21 18:29:18 | 000,230,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_2.dll
[2010/09/21 18:29:17 | 000,229,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_1.dll
[2010/09/21 18:29:17 | 000,062,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xinput1_1.dll
[2010/09/21 18:29:12 | 000,230,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_0.dll
[2010/09/21 18:29:12 | 000,014,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\x3daudio1_0.dll
[2010/09/21 18:29:11 | 002,332,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_29.dll
[2010/09/21 18:29:11 | 000,061,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xinput9_1_0.dll
[2010/09/21 18:29:10 | 002,297,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_26.dll
[2010/09/21 18:29:09 | 002,337,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_25.dll
[2010/09/21 18:29:06 | 002,222,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_24.dll
[2010/09/21 18:21:10 | 000,000,000 | ---D | C] -- C:\WINDOWS\Logs
[2010/09/21 18:17:44 | 000,000,000 | ---D | C] -- C:\truePlay2.0B1
[2010/09/21 18:13:41 | 002,682,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\vcredist_x86.exe
[2010/09/21 18:12:47 | 002,319,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_27.dll
[2010/09/21 18:12:47 | 000,000,000 | ---D | C] -- C:\trueSpace761Std
[2010/09/19 05:19:20 | 000,278,528 | ---- | C] (Real Networks, Inc) -- C:\WINDOWS\System32\pncrt.dll
[2010/09/19 05:19:20 | 000,185,920 | ---- | C] (RealNetworks, Inc.) -- C:\WINDOWS\System32\rmoc3260.dll
[2010/09/19 05:19:20 | 000,006,656 | ---- | C] (RealNetworks, Inc.) -- C:\WINDOWS\System32\pndx5016.dll
[2010/09/19 05:19:20 | 000,005,632 | ---- | C] (RealNetworks, Inc.) -- C:\WINDOWS\System32\pndx5032.dll
[2010/09/19 05:19:19 | 000,000,000 | ---D | C] -- C:\Program Files\Real Alternative
[2010/09/19 04:45:29 | 000,000,000 | ---D | C] -- C:\Downloads
[2010/09/19 04:41:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\Free Download Manager
[2010/09/19 04:41:30 | 000,000,000 | ---D | C] -- C:\Program Files\Free Download Manager
[2010/09/15 12:49:06 | 001,044,480 | R--- | C] (eHelp Corporation.) -- C:\WINDOWS\System32\roboex32.dll
[2010/09/15 12:49:06 | 000,049,152 | R--- | C] (Blue Sky Software Corporation.) -- C:\WINDOWS\System32\inetwh32.dll
[2010/09/13 16:05:23 | 005,165,571 | ---- | C] (MPC-HC Team ) -- C:\Documents and Settings\David\My Documents\MPC-HomeCinema.1.4.2499.0.x86.exe
[2010/09/13 15:55:26 | 000,017,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsg.dll
[2010/09/12 14:40:27 | 000,015,781 | ---- | C] (Meetinghouse Data Communications) -- C:\WINDOWS\System32\drivers\mdc8021x.sys
[2010/09/12 14:40:20 | 000,090,112 | ---- | C] (Atheros Communications, Inc.) -- C:\WINDOWS\System32\oemres.dll
[2010/09/12 14:40:20 | 000,043,264 | ---- | C] (Windows ® 2000 DDK provider) -- C:\WINDOWS\System32\drivers\athfmwdl.sys
[2010/09/12 14:40:19 | 000,847,872 | ---- | C] (Meetinghouse Data Communications) -- C:\WINDOWS\System32\AegisE4.dll
[2010/09/12 14:40:19 | 000,843,776 | ---- | C] (Meetinghouse Data Communications) -- C:\WINDOWS\System32\AegisE5.dll
[2010/09/12 14:40:19 | 000,770,048 | ---- | C] (Meetinghouse Data Communications) -- C:\WINDOWS\System32\AegisE2.dll
[2010/09/12 14:40:19 | 000,409,600 | ---- | C] (Atheros) -- C:\WINDOWS\System32\athcfg11.dll
[2010/09/12 09:58:25 | 000,000,000 | ---D | C] -- C:\Program Files\108Mbps Wireless Network USB Dongle
[2010/09/12 09:56:16 | 005,229,582 | ---- | C] ( ) -- C:\Documents and Settings\David\My Documents\DRV - XWL-11GUAR.exe
[2010/09/10 12:36:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\NSS
[2010/09/10 12:36:31 | 000,000,000 | ---D | C] -- C:\Program Files\Norton Security Scan
[2010/09/10 12:36:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\NSS\0207030.022
[2010/09/10 12:36:28 | 000,000,000 | ---D | C] -- C:\Program Files\NortonInstaller
[2010/09/10 09:32:49 | 000,850,200 | ---- | C] (DivX, Inc. ) -- C:\Documents and Settings\David\My Documents\DivXInstaller.exe
[2010/09/10 09:11:18 | 000,000,000 | ---D | C] -- C:\Intel
[2010/09/10 09:07:45 | 000,356,352 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NVUNINST.EXE
[2010/09/10 09:07:27 | 000,303,104 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrstr.dll
[2010/09/10 09:07:27 | 000,303,104 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrssl.dll
[2010/09/10 09:07:27 | 000,299,008 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrssk.dll
[2010/09/10 09:07:27 | 000,294,912 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrssv.dll
[2010/09/10 09:07:27 | 000,290,816 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsth.dll
[2010/09/10 09:07:27 | 000,167,936 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrszht.dll
[2010/09/10 09:07:27 | 000,163,840 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrszhc.dll
[2010/09/10 09:07:25 | 000,258,048 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrstr.dll
[2010/09/10 09:07:25 | 000,258,048 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrssl.dll
[2010/09/10 09:07:25 | 000,258,048 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrssk.dll
[2010/09/10 09:07:25 | 000,253,952 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsth.dll
[2010/09/10 09:07:25 | 000,253,952 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrssv.dll
[2010/09/10 09:07:25 | 000,225,280 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrszhc.dll
[2010/09/10 09:07:25 | 000,126,976 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrszht.dll
[2010/09/10 09:01:58 | 067,071,024 | ---- | C] (Xceed Software Inc. 1-450-442-2626 info@xceedsoft.com www.xceedsoft.com) -- C:\Documents and Settings\David\My Documents\R170352.EXE
[2010/09/05 01:17:58 | 000,000,000 | ---D | C] -- C:\Config.Msi
[2010/07/18 06:25:08 | 000,000,000 | ---D | C] -- C:\Program Files\Easy eCover Creator
[2010/07/15 05:23:38 | 000,654,456 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\ncs2dmix.dll
[2010/07/15 05:23:38 | 000,506,488 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\accesor.dll
[2010/07/14 04:16:44 | 000,182,784 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\Ncs2Setp.dll
[2010/07/14 03:39:00 | 000,134,264 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\ncs2instutility.dll
[2010/07/14 03:20:10 | 001,813,112 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\ncscolib.dll
[2010/07/02 08:00:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\Nseries
[2010/07/02 07:57:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Local Settings\Application Data\IsolatedStorage
[2010/07/02 07:45:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Local Settings\Application Data\Nokia
[2010/07/02 07:44:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\PC Suite
[2010/07/02 07:44:35 | 000,016,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsgXP_2k3.dll
[2010/07/02 07:21:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\Nokia
[2010/07/02 06:55:08 | 000,000,000 | ---D | C] -- C:\Program Files\MSXML 6.0
[2010/07/02 06:51:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\Globalization
[2010/07/02 06:50:39 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Nokia
[2010/07/02 06:40:54 | 000,092,672 | ---- | C] (Nokia) -- C:\WINDOWS\System32\nmwcdcls.dll
[2010/07/02 06:40:52 | 000,000,000 | ---D | C] -- C:\Program Files\Nokia
[2010/06/21 08:43:16 | 000,030,880 | ---- | C] (Intel Corporation ) -- C:\WINDOWS\System32\drivers\iqvw32.sys
[2010/06/11 07:37:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\Windows Search
[2010/06/11 05:08:08 | 000,000,000 | ---D | C] -- C:\Program Files\DIFX
[2010/06/11 05:07:17 | 000,479,232 | ---- | C] (eMPIA Technology, Inc.) -- C:\WINDOWS\System32\drivers\emBDA.sys
[2010/06/11 05:07:17 | 000,106,496 | ---- | C] (eMPIA Technology, Inc.) -- C:\WINDOWS\System32\emPRP.ax
[2010/06/11 05:07:17 | 000,061,440 | ---- | C] (eMPIA Technology, Inc.) -- C:\WINDOWS\emMON.exe
[2010/06/11 05:07:17 | 000,038,656 | ---- | C] (eMPIA Technology, Inc.) -- C:\WINDOWS\System32\drivers\emOEM.sys
[2010/06/11 04:38:55 | 000,000,000 | ---D | C] -- C:\Program Files\SmartCam
[2010/06/11 04:32:18 | 000,060,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\USBAUDIO.sys
[2010/06/11 04:30:48 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\vfwwdm32.dll
[2010/06/11 04:30:48 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksxbar.ax
[2010/06/11 04:30:47 | 000,091,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kswdmcap.ax
[2010/06/11 04:30:46 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kstvtune.ax
[2010/06/11 04:30:44 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dshowext.ax
[2010/06/10 00:48:38 | 000,239,768 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\PRONtObj.dll
[2010/06/09 11:20:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\09-06-2010
[2010/05/28 12:47:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Local Settings\Application Data\PCHealth
[2010/05/27 04:55:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Local Settings\Application Data\Eastman_Kodak_Company
[2010/05/27 04:09:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\Macromedia
[2010/05/27 04:06:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Local Settings\Application Data\Eastman Kodak Company
[2010/05/27 04:05:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\Eastman Kodak Company
[2010/05/27 04:03:45 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\kodak
[2010/05/27 04:03:11 | 000,000,000 | ---D | C] -- C:\Program Files\Kodak
[2010/05/27 04:02:33 | 000,000,000 | ---D | C] -- C:\Program Files\Bonjour
[2010/05/27 04:00:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\Temp
[2010/05/27 03:15:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\Birdstep Technology
[2010/05/27 03:14:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Application Data\Birdstep Technology
[2010/05/27 03:13:22 | 000,113,280 | ---- | C] (Huawei Technologies Co., Ltd.) -- C:\WINDOWS\System32\drivers\ewusbnet.sys
[2010/05/27 03:13:22 | 000,102,528 | ---- | C] (Huawei Technologies Co., Ltd.) -- C:\WINDOWS\System32\drivers\ewusbmdm.sys
[2010/05/27 03:13:22 | 000,100,736 | ---- | C] (Huawei Technologies Co., Ltd.) -- C:\WINDOWS\System32\drivers\ewusbdev.sys
[2010/05/27 03:13:22 | 000,024,448 | ---- | C] (Huawei Tech. Co., Ltd.) -- C:\WINDOWS\System32\drivers\ewdcsc.sys
[2010/05/27 03:13:07 | 000,000,000 | ---D | C] -- C:\Program Files\Huawei Modems
[2010/05/27 03:12:02 | 000,000,000 | ---D | C] -- C:\Program Files\3 Mobile Broadband
[2010/05/24 09:55:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Local Settings\Application Data\RadioSure
[2010/04/27 01:52:04 | 000,117,456 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\drivers\ianswxp.sys
[2010/04/26 17:04:42 | 000,353,592 | ---- | C] (DivX, Inc.) -- C:\WINDOWS\System32\DivXControlPanelApplet.cpl
[2010/04/13 11:21:05 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\LocalService\IETldCache
[2010/04/13 11:20:10 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\David\PrivacIE
[2010/04/11 14:15:21 | 000,000,000 | ---D | C] -- C:\Program Files\IrfanView
[2010/04/09 10:00:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\Windows Desktop Search
[2010/04/09 09:57:13 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\David\IETldCache
[2010/04/08 05:19:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Tracing
[2010/04/08 05:16:36 | 003,426,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_32.dll
[2010/04/08 05:16:24 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft SQL Server Compact Edition
[2010/04/08 05:14:12 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft
[2010/04/08 05:13:47 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Live SkyDrive
[2010/04/08 05:13:19 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Live
[2010/04/08 04:37:12 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Windows Live
[2010/04/08 04:35:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\Adobe
[2010/04/08 04:34:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\ie8updates
[2010/04/08 04:31:14 | 000,832,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wininet.dll
[2010/04/08 04:31:14 | 000,765,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\vgx.dll
[2010/04/08 04:31:14 | 000,233,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\webcheck.dll
[2010/04/08 04:31:13 | 001,168,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\urlmon.dll
[2010/04/08 04:31:13 | 000,671,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstime.dll
[2010/04/08 04:31:13 | 000,430,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\vbscript.dll
[2010/04/08 04:31:13 | 000,193,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msrating.dll
[2010/04/08 04:31:13 | 000,105,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\url.dll
[2010/04/08 04:31:13 | 000,102,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\occache.dll
[2010/04/08 04:31:13 | 000,066,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdc.ocx
[2010/04/08 04:31:13 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pngfilt.dll
[2010/04/08 04:31:12 | 006,067,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieframe.dll
[2010/04/08 04:31:12 | 003,599,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mshtml.dll
[2010/04/08 04:31:12 | 002,452,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieapfltr.dat
[2010/04/08 04:31:12 | 001,830,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetcpl.cpl
[2010/04/08 04:31:12 | 001,383,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mshtml.tlb
[2010/04/08 04:31:12 | 000,991,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieframe.dll.mui
[2010/04/08 04:31:12 | 000,634,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iexplore.exe
[2010/04/08 04:31:12 | 000,512,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jscript.dll
[2010/04/08 04:31:12 | 000,477,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mshtmled.dll
[2010/04/08 04:31:12 | 000,459,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeeds.dll
[2010/04/08 04:31:12 | 000,385,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iedkcs32.dll
[2010/04/08 04:31:12 | 000,380,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieapfltr.dll
[2010/04/08 04:31:12 | 000,347,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dxtmsft.dll
[2010/04/08 04:31:12 | 000,268,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iertutil.dll
[2010/04/08 04:31:12 | 000,230,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieaksie.dll
[2010/04/08 04:31:12 | 000,214,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dxtrans.dll
[2010/04/08 04:31:12 | 000,192,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iepeers.dll
[2010/04/08 04:31:12 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieakui.dll
[2010/04/08 04:31:12 | 000,156,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msls31.dll
[2010/04/08 04:31:12 | 000,153,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieakeng.dll
[2010/04/08 04:31:12 | 000,124,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\advpack.dll
[2010/04/08 04:31:12 | 000,092,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inseng.dll
[2010/04/08 04:31:12 | 000,078,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieencode.dll
[2010/04/08 04:31:12 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admparse.dll
[2010/04/08 04:31:12 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ie4uinit.exe
[2010/04/08 04:31:12 | 000,063,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icardie.dll
[2010/04/08 04:31:12 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hmmapi.dll
[2010/04/08 04:31:12 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iesetup.dll
[2010/04/08 04:31:12 | 000,052,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeedsbs.dll
[2010/04/08 04:31:12 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mshtmler.dll
[2010/04/08 04:31:12 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mshta.exe
[2010/04/08 04:31:12 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iernonce.dll
[2010/04/08 04:31:12 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\licmgr10.dll
[2010/04/08 04:31:12 | 000,036,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imgutil.dll
[2010/04/08 04:31:12 | 000,027,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jsproxy.dll
[2010/04/08 04:31:12 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\corpol.dll
[2010/04/08 04:24:17 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Desktop Search
[2010/04/08 04:24:16 | 000,000,000 | -H-D | C] -- C:\WINDOWS\System32\GroupPolicy
[2010/04/08 03:49:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Driver
[2010/03/31 06:15:21 | 000,000,000 | ---D | C] -- C:\Program Files\AudiobookCutterFE
[2010/03/30 18:16:34 | 000,099,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\PresentationHostProxy.dll
[2010/03/30 18:10:40 | 000,295,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\PresentationHost.exe
[2010/03/25 04:27:09 | 000,604,488 | ---- | C] (TuneUp Software) -- C:\WINDOWS\System32\TUProgSt.exe
[2010/03/25 04:27:07 | 000,029,000 | ---- | C] (TuneUp Software) -- C:\WINDOWS\System32\uxtuneup.dll
[2010/03/25 04:27:06 | 000,361,288 | ---- | C] (TuneUp Software) -- C:\WINDOWS\System32\TuneUpDefragService.exe
[2010/03/19 04:10:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Temp
[2010/03/18 07:16:28 | 000,771,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msvcr100_clr0400.dll
[2010/03/18 07:16:28 | 000,486,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\evr.dll
[2010/03/18 07:16:28 | 000,070,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dxva2.dll
[2010/03/11 07:58:20 | 000,000,000 | ---D | C] -- C:\Program Files\KompoZer
[2010/03/11 07:44:05 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Wireless
[2010/03/10 14:29:32 | 000,094,208 | ---- | C] (DivX, Inc.) -- C:\WINDOWS\System32\dpl100.dll
[2010/03/04 09:32:08 | 000,000,000 | ---D | C] -- C:\Program Files\Tong
[2010/03/04 09:04:16 | 000,000,000 | ---D | C] -- C:\Program Files\Secret Maryo Chronicles
[2010/03/04 08:56:07 | 000,000,000 | ---D | C] -- C:\Program Files\Cambrian Labs
[2010/03/04 08:48:33 | 000,000,000 | ---D | C] -- C:\Program Files\Duo
[2010/03/04 08:47:10 | 000,000,000 | ---D | C] -- C:\Program Files\Bubble Train
[2010/03/04 08:42:46 | 000,000,000 | ---D | C] -- C:\Program Files\2H4U
[2010/03/03 10:25:44 | 000,000,000 | -HSD | C] -- C:\WINDOWS\CSC
[2010/02/24 07:47:58 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\browserchoice.exe
[2010/02/19 14:27:36 | 000,720,384 | ---- | C] (DivX, Inc.) -- C:\WINDOWS\System32\DivX.dll
[2010/02/19 14:27:16 | 000,856,064 | ---- | C] (DivX, Inc.) -- C:\WINDOWS\System32\divx_xx0c.dll
[2010/02/19 14:27:16 | 000,856,064 | ---- | C] (DivX, Inc.) -- C:\WINDOWS\System32\divx_xx07.dll
[2010/02/19 14:27:16 | 000,847,872 | ---- | C] (DivX, Inc.) -- C:\WINDOWS\System32\divx_xx0a.dll
[2010/02/19 14:27:16 | 000,843,776 | ---- | C] (DivX, Inc.) -- C:\WINDOWS\System32\divx_xx16.dll
[2010/02/19 14:27:16 | 000,839,680 | ---- | C] (DivX, Inc.) -- C:\WINDOWS\System32\divx_xx11.dll
[2010/02/10 03:55:04 | 000,000,000 | ---D | C] -- C:\Program Files\DAEMON Tools Toolbar
[2010/02/10 03:54:45 | 000,691,696 | ---- | C] (Duplex Secure Ltd.) -- C:\WINDOWS\System32\drivers\sptd.sys
[2010/02/10 03:54:34 | 000,000,000 | ---D | C] -- C:\Program Files\DAEMON Tools Lite
[2010/02/10 03:54:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\DAEMON Tools Lite
[2010/02/08 14:41:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\My Documents\AutoPlay Media Studio 7.0
[2010/02/05 04:46:49 | 000,000,000 | ---D | C] -- C:\Program Files\LightScribe Template Labeler
[2010/02/05 03:36:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Nero
[2010/02/05 03:27:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\Nero
[2010/02/05 03:10:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Local Settings\Application Data\Ahead
[2010/02/05 02:47:55 | 000,000,000 | ---D | C] -- C:\Program Files\Nero
[2010/02/05 02:47:55 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Nero
[2010/02/05 02:46:01 | 002,388,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_30.dll
[2010/02/05 02:46:00 | 002,323,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_28.dll
[2010/01/31 12:05:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Local Settings\Application Data\Temp
[2010/01/30 04:15:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\DivX
[2010/01/27 06:41:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Desktop\OpenOffice.org 3.1 (en-US de hu it fr) Installation Files
[2010/01/26 05:36:37 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Business Objects
[2010/01/26 05:36:34 | 000,000,000 | ---D | C] -- C:\Andica
[2010/01/26 05:31:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Local Settings\Application Data\Downloaded Installations
[2010/01/17 12:05:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Google
[2010/01/17 12:02:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Downloads
[2010/01/17 11:53:07 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DivX Shared
[2010/01/17 11:52:58 | 000,000,000 | ---D | C] -- C:\Program Files\DivX
[2010/01/13 16:30:57 | 000,000,000 | ---D | C] -- C:\Program Files\LightScribe Diagnostic Utility
[2010/01/13 16:30:04 | 006,168,272 | ---- | C] (LightScribe ) -- C:\Documents and Settings\David\My Documents\LsDiagnosticUtility_1.18.10.2.exe
[2010/01/13 16:12:26 | 001,155,072 | ---- | C] (Lexmark International, Inc.) -- C:\WINDOWS\System32\lxceserv.dll
[2010/01/13 16:12:26 | 001,134,592 | ---- | C] (Lexmark International, Inc.) -- C:\WINDOWS\System32\lxceusb1.dll
[2010/01/13 16:12:26 | 000,630,784 | ---- | C] (Lexmark International, Inc.) -- C:\WINDOWS\System32\lxcepmui.dll
[2010/01/13 16:12:26 | 000,143,360 | ---- | C] (Lexmark International, Inc.) -- C:\WINDOWS\System32\lxceprox.dll
[2010/01/13 16:12:26 | 000,114,688 | ---- | C] (Lexmark International, Inc.) -- C:\WINDOWS\System32\lxcepplc.dll
[2010/01/13 16:12:25 | 000,753,664 | ---- | C] (Lexmark International, Inc.) -- C:\WINDOWS\System32\lxcehbn3.dll
[2010/01/13 16:12:25 | 000,667,648 | ---- | C] (Lexmark International, Inc.) -- C:\WINDOWS\System32\lxcecomc.dll
[2010/01/13 16:12:25 | 000,475,136 | ---- | C] (Lexmark International, Inc.) -- C:\WINDOWS\System32\lxcelmpm.dll
[2010/01/13 16:12:25 | 000,471,040 | ---- | C] (Lexmark International, Inc.) -- C:\WINDOWS\System32\lxcecoms.exe
[2010/01/13 16:12:25 | 000,405,504 | ---- | C] (Lexmark International, Inc.) -- C:\WINDOWS\System32\lxcecomm.dll
[2010/01/13 16:12:25 | 000,389,120 | ---- | C] (Lexmark International, Inc.) -- C:\WINDOWS\System32\lxceutil.dll
[2010/01/13 16:12:25 | 000,364,544 | ---- | C] (Lexmark International, Inc.) -- C:\WINDOWS\System32\lxcecfg.exe
[2010/01/13 16:12:25 | 000,356,352 | ---- | C] (Lexmark International, Inc.) -- C:\WINDOWS\System32\lxceih.exe
[2010/01/13 16:12:24 | 000,172,032 | ---- | C] (Lexmark International, Inc.) -- C:\WINDOWS\System32\lxceinsb.dll
[2010/01/13 16:12:24 | 000,139,264 | ---- | C] (Lexmark International, Inc.) -- C:\WINDOWS\System32\lxcejswr.dll
[2010/01/13 16:12:24 | 000,131,072 | ---- | C] (Lexmark International, Inc.) -- C:\WINDOWS\System32\lxceins.dll
[2010/01/13 16:12:24 | 000,098,304 | ---- | C] (Lexmark International, Inc.) -- C:\WINDOWS\System32\lxceinsr.dll
[2010/01/13 16:12:23 | 000,983,091 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\lxcegf.dll
[2010/01/13 16:12:23 | 000,086,016 | ---- | C] (Lexmark International, Inc.) -- C:\WINDOWS\System32\lxcecub.dll
[2010/01/13 16:12:23 | 000,073,728 | ---- | C] (Lexmark International, Inc.) -- C:\WINDOWS\System32\lxcecu.dll
[2010/01/13 16:12:23 | 000,036,864 | ---- | C] (Lexmark International, Inc.) -- C:\WINDOWS\System32\lxcecur.dll
[2010/01/13 16:11:35 | 039,736,848 | ---- | C] (Lexmark International, Inc. ) -- C:\Documents and Settings\David\My Documents\cjb4300EN.exe
[2010/01/13 16:00:28 | 000,065,536 | ---- | C] (Lexmark International) -- C:\WINDOWS\System32\lxcecfg.dll
[2010/01/06 07:03:15 | 000,000,000 | ---D | C] -- C:\Program Files\LingoPad
[2010/01/06 07:03:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\Lingo4u
[2010/01/03 08:30:43 | 000,000,000 | ---D | C] -- C:\Program Files\Veetle
[2010/01/02 04:45:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\dvdcss
[2009/12/27 16:59:22 | 000,000,000 | ---D | C] -- C:\Program Files\Kaspersky Lab
[2009/12/27 16:59:02 | 000,315,408 | ---- | C] (Kaspersky Lab) -- C:\WINDOWS\System32\drivers\klif.sys
[2009/12/19 09:40:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\WLAN IDE Card
[2009/12/19 09:06:12 | 000,000,000 | ---D | C] -- C:\WINDOWS\OPTIONS
[2009/12/19 09:06:12 | 000,000,000 | ---D | C] -- C:\Program Files\802.11 Wireless LAN
[2009/11/27 04:57:10 | 004,112,856 | ---- | C] (Two Pilots) -- C:\WINDOWS\PDFCreatorPilot.dll
[2009/11/27 04:57:08 | 000,000,000 | ---D | C] -- C:\Program Files\Simpo PDF Merge & Split
[2009/11/27 04:29:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\PDFs Output
[2009/11/27 04:27:59 | 000,000,000 | ---D | C] -- C:\Program Files\Simpo PDF Creator
[2009/11/21 14:14:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Dev-PHP Projects
[2009/11/21 12:02:00 | 000,000,000 | ---D | C] -- C:\Program Files\Dev-PHP2
[2009/11/21 12:02:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\DevPHP
[2009/11/18 05:02:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Mikogo
[2009/11/18 05:02:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\Mikogo
[2009/11/17 06:59:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\KompoZer-0.8b1
[2009/11/17 06:40:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Local Settings\Application Data\kompozer.net
[2009/11/17 06:40:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\kompozer.net
[2009/11/06 19:07:08 | 000,049,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\netfxperf.dll
[2009/11/04 12:37:22 | 000,335,872 | ---- | C] (NCT Company Ltd.) -- C:\WINDOWS\System32\NCTAudioVisualization2.dll
[2009/11/04 12:37:22 | 000,196,608 | ---- | C] (NCT Company Ltd.) -- C:\WINDOWS\System32\NCTWMAFile2.dll
[2009/11/04 12:37:21 | 000,835,584 | ---- | C] (NCT) -- C:\WINDOWS\System32\NCTAudioCDGrabber2.dll
[2009/11/04 12:37:21 | 000,270,336 | ---- | C] (NCT Company Ltd.) -- C:\WINDOWS\System32\NCTAudioDisplay2.dll
[2009/11/04 12:37:20 | 004,057,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wmfdist.exe
[2009/11/04 12:37:18 | 000,000,000 | ---D | C] -- C:\Program Files\FreeCDRipper
[2009/11/03 07:49:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\Office Genuine Advantage
[2009/11/01 16:57:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\.dvdcss
[2009/10/30 14:00:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Application Data\TuneUp Software
[2009/10/30 13:29:55 | 000,030,536 | ---- | C] (TuneUp Software) -- C:\WINDOWS\System32\TURegOpt.exe
[2009/10/30 13:29:11 | 000,000,000 | ---D | C] -- C:\Program Files\TuneUp Utilities 2010
[2009/10/30 12:48:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\AutoPlay Media Studio 7.0
[2009/10/30 12:47:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\IndigoRose
[2009/10/30 12:45:22 | 000,000,000 | ---D | C] -- C:\Program Files\AutoPlay Media Studio 7.0
[2009/10/30 12:43:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\Downloaded Installations
[2009/10/29 07:31:19 | 000,000,000 | ---D | C] -- C:\Program Files\Virtually Real
[2009/10/20 15:34:56 | 000,219,664 | ---- | C] (Kaspersky Lab) -- C:\WINDOWS\System32\klogon.dll
[2009/10/19 03:56:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\fontconfig
[2009/10/19 03:55:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\.smplayer
[2009/10/19 03:54:18 | 000,000,000 | ---D | C] -- C:\Program Files\SMPlayer
[2009/10/19 03:43:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\blinkx
[2009/10/19 03:43:00 | 000,000,000 | ---D | C] -- C:\Program Files\Blinkx
[2009/10/19 03:42:46 | 000,000,000 | ---D | C] -- C:\Program Files\Free Offers from Freeze.com
[2009/10/16 10:20:31 | 000,000,000 | ---D | C] -- C:\found.000
[2009/10/14 16:18:34 | 000,036,880 | ---- | C] (Kaspersky Lab) -- C:\WINDOWS\System32\drivers\klbg.sys
[2009/10/07 03:59:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\AppData
[2009/10/07 03:59:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\Iconomize
[2009/10/07 03:54:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\Desktopicon
[2009/10/07 03:54:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\FFOutput
[2009/10/07 03:53:38 | 000,000,000 | ---D | C] -- C:\Program Files\FreeTime
[2009/10/07 03:52:13 | 000,201,216 | ---- | C] (NCT Company Ltd.) -- C:\WINDOWS\System32\NCTVideoPlayer.dll
[2009/10/07 03:52:13 | 000,188,416 | ---- | C] (NCT Company Ltd.) -- C:\WINDOWS\System32\NCTVideoFile.dll
[2009/10/07 03:52:12 | 000,764,416 | ---- | C] (NCT Company Ltd.) -- C:\WINDOWS\System32\NCTRMFile.dll
[2009/10/07 03:52:12 | 000,495,104 | ---- | C] (NCT Company Ltd.) -- C:\WINDOWS\System32\NCTVideoCoreM.dll
[2009/10/07 03:52:12 | 000,382,464 | ---- | C] (NCT Company Ltd.) -- C:\WINDOWS\System32\NCTAVIFile.dll
[2009/10/07 03:52:12 | 000,249,856 | ---- | C] (Online Media Technologies Company Ltd.) -- C:\WINDOWS\System32\NCTQuickTimeFile.dll
[2009/10/07 03:52:12 | 000,215,552 | ---- | C] (NCT Company Ltd.) -- C:\WINDOWS\System32\NCTWMVFile.dll
[2009/10/07 03:52:11 | 002,846,720 | ---- | C] (Online Media Technologies Ltd.) -- C:\WINDOWS\System32\NCTAudioCompress3.dll
[2009/10/07 03:52:11 | 000,780,288 | ---- | C] (NCT Company Ltd.) -- C:\WINDOWS\System32\NCTVideoCompress.dll
[2009/10/07 03:52:11 | 000,090,112 | ---- | C] (Online Media Technologies Ltd.) -- C:\WINDOWS\System32\NCTAudioFormatSettings3.dll
[2009/10/07 03:52:10 | 000,778,240 | ---- | C] (Online Media Technologies Ltd.) -- C:\WINDOWS\System32\NCTAudioCompress2.dll
[2009/10/07 03:52:04 | 000,856,064 | ---- | C] (Essien Research & Development) -- C:\WINDOWS\System32\mpgfiltr.ax
[2009/10/07 03:52:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\RMBin
[2009/10/07 03:52:03 | 000,421,888 | ---- | C] (Gabest) -- C:\WINDOWS\System32\RealMediaSplitter.ax
[2009/10/07 03:52:03 | 000,208,896 | ---- | C] (Viscom Software www.viscomsoft.com) -- C:\WINDOWS\System32\VideoEdit.ocx
[2009/10/07 03:52:03 | 000,147,456 | ---- | C] (Viscom Software www.viscomsoft.com) -- C:\WINDOWS\System32\viscomqtenc.dll
[2009/10/07 03:52:03 | 000,139,264 | ---- | C] (Viscom Software www.viscomsoft.com) -- C:\WINDOWS\System32\viscomqtde.dll
[2009/10/07 03:52:03 | 000,081,920 | ---- | C] (Viscom Software) -- C:\WINDOWS\System32\viscomwave.dll
[2009/10/07 03:52:02 | 000,000,000 | ---D | C] -- C:\Program Files\Extra Video Creator
[2009/10/05 15:34:42 | 003,733,706 | ---- | C] (Romain Bourdon (Roms) ) -- C:\Documents and Settings\David\Desktop\WampServer2-APACHE2063.exe
[2009/10/05 15:26:41 | 000,000,000 | ---D | C] -- C:\wamp
[2009/10/05 02:04:42 | 000,000,000 | R--D | C] -- C:\Program Files\Skype
[2009/10/05 02:00:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Desktop\Adobe CS3
[2009/10/05 01:51:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\Software Informer
[2009/10/05 01:51:06 | 000,000,000 | ---D | C] -- C:\Program Files\Software Informer
[2009/10/05 01:50:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Local Settings\Application Data\Autoplay Menu Designer
[2009/10/05 01:50:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Autoplay Menu Designer
[2009/10/05 01:50:22 | 000,000,000 | ---D | C] -- C:\Program Files\Visual Designing
[2009/10/05 01:50:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\Autoplay Menu Designer
[2009/10/03 00:20:28 | 000,222,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MpSigStub.exe
[2009/10/02 14:39:44 | 000,019,472 | ---- | C] (Kaspersky Lab) -- C:\WINDOWS\System32\drivers\klmouflt.sys
[2009/10/01 07:32:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Documents
[2009/09/24 09:07:20 | 000,389,120 | ---- | C] (SafeApp Software, LLC) -- C:\WINDOWS\System32\RegistryHelperLM.ocx
[2009/09/23 18:30:08 | 000,156,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mscorier.dll
[2009/09/23 04:38:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\HpUpdate
[2009/09/23 04:38:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\Hewlett-Packard
[2009/09/15 03:55:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\DisplayTune
[2009/09/15 03:54:59 | 000,487,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\msvcp70.dll
[2009/09/15 03:54:59 | 000,344,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\msvcr70.dll
[2009/09/15 03:54:58 | 001,392,671 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\msvbvm60.dll
[2009/09/14 09:42:46 | 000,032,272 | ---- | C] (Kaspersky Lab) -- C:\WINDOWS\System32\drivers\klim5.sys
[2009/09/12 03:32:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\VLC
[2009/09/12 03:32:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\New Folder (4)
[2009/09/11 10:22:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\zh-TW
[2009/09/11 10:22:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\zh-HK
[2009/09/11 10:22:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\tr-TR
[2009/09/11 10:22:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\sv-SE
[2009/09/11 10:22:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\pt-BR
[2009/09/11 10:22:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\nl-NL
[2009/09/11 10:22:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\nb-NO
[2009/09/11 10:22:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ko-KR
[2009/09/11 10:22:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\it-IT
[2009/09/11 10:22:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\he-IL
[2009/09/11 10:22:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\fr-FR
[2009/09/11 10:22:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\fi-FI
[2009/09/11 10:22:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\es-ES
[2009/09/11 10:22:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\el-GR
[2009/09/11 10:22:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\de-DE
[2009/09/11 10:22:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\da-DK
[2009/09/11 10:22:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ar-SA
[2009/09/01 10:29:50 | 000,128,016 | ---- | C] (Kaspersky Lab) -- C:\WINDOWS\System32\drivers\kl1.sys
[2009/08/15 06:34:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Local Settings\Application Data\TVU Networks
[2009/08/15 06:34:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\LocalLow
[2009/08/13 00:50:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\DVD Flick
[2009/08/13 00:49:30 | 000,040,960 | ---- | C] (vbAccelerator) -- C:\WINDOWS\System32\ssubtmr6.dll
[2009/08/13 00:49:29 | 000,036,864 | ---- | C] (Robdogg Inc.) -- C:\WINDOWS\System32\trayicon_handler.ocx
[2009/08/13 00:49:29 | 000,028,672 | ---- | C] (-) -- C:\WINDOWS\System32\mousewheel.ocx
[2009/08/13 00:49:20 | 000,000,000 | ---D | C] -- C:\Program Files\DVD Flick
[2009/08/11 07:15:08 | 000,244,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msflxgrd.ocx
[2009/08/04 13:52:22 | 001,193,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\FM20.DLL
[2009/08/03 09:07:42 | 000,322,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\OGAAddin.dll
[2009/07/24 04:33:36 | 000,000,000 | ---D | C] -- C:\Program Files\TalkTalk
[2009/07/24 04:33:17 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Wise Installation Wizard
[2009/07/23 07:38:42 | 000,000,000 | ---D | C] -- C:\Program Files\TuneUp Utilities 2009
[2009/07/23 07:33:48 | 017,777,408 | ---- | C] (TuneUp Software) -- C:\Documents and Settings\David\My Documents\TU2009TrialEN-US.exe
[2009/07/23 05:04:20 | 000,000,000 | ---D | C] -- C:\Program Files\Hugin
[2009/07/16 11:29:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\Marvell
[2009/07/14 06:51:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\vlc
[2009/07/14 06:07:12 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SourceTec
[2009/07/14 06:06:29 | 000,000,000 | ---D | C] -- C:\Program Files\SourceTec
[2009/07/13 07:22:14 | 000,086,016 | ---- | C] (Printing Communications Assoc., Inc. (PCAUSA)) -- C:\WINDOWS\System32\ZDN50.dll
[2009/07/13 07:22:14 | 000,015,872 | ---- | C] (Printing Communications Assoc., Inc. (PCAUSA)) -- C:\WINDOWS\System32\ZDNDIS5.sys
[2009/07/13 07:22:14 | 000,000,000 | ---D | C] -- C:\Program Files\ZyDAS Technology Corporation
[2009/07/12 10:24:05 | 000,000,000 | ---D | C] -- C:\Program Files\alot
[2009/07/10 06:15:46 | 000,306,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\WLXPGSS.SCR
[2009/06/11 06:02:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Start Menu
[2009/06/11 00:35:42 | 000,496,128 | ---- | C] ( datenhaus GmbH) -- C:\WINDOWS\System32\dhRichClient3.dll
[2009/05/22 13:22:05 | 000,106,496 | ---- | C] (Zenographics, Inc.) -- C:\WINDOWS\System32\ZSPOOL.DLL
[2009/05/22 13:22:05 | 000,053,248 | ---- | C] (Zenographics, Inc.) -- C:\WINDOWS\System32\ZTAG.DLL
[2009/05/22 13:22:04 | 000,512,000 | ---- | C] (Marvell Semiconductor, Inc.) -- C:\WINDOWS\System32\HPIPMX.dll
[2009/05/22 13:22:04 | 000,237,568 | ---- | C] (Marvell Semiconductor, Inc.) -- C:\WINDOWS\System32\HPIPMXRes.dll
[2009/05/22 13:22:04 | 000,114,688 | ---- | C] (Marvell Semiconductor, Inc.) -- C:\WINDOWS\System32\HPMCoSetup.dll
[2009/05/22 13:22:04 | 000,061,440 | ---- | C] (Zenographics, Inc.) -- C:\WINDOWS\System32\ZIMF.DLL
[2009/05/22 13:22:03 | 000,163,840 | ---- | C] (Marvell Semiconductor, Inc.) -- C:\WINDOWS\System32\CP1215LI.DLL
[2009/05/22 13:22:03 | 000,143,360 | ---- | C] (Marvell Semiconductor, Inc.) -- C:\WINDOWS\System32\CP1215LM.DLL
[2009/05/22 13:22:03 | 000,057,344 | ---- | C] (Marvell Semiconductor, Inc.) -- C:\WINDOWS\System32\CP1215EWS.dll
[2009/05/22 13:17:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DRVSTORE
[2009/05/22 13:16:32 | 000,000,000 | ---D | C] -- C:\Program Files\Hewlett-Packard
[2009/05/22 13:16:11 | 000,000,000 | ---D | C] -- C:\Program Files\HP
[2009/05/22 13:15:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\Hewlett-Packard
[2009/05/22 13:15:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\HP
[2009/05/21 12:04:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Samsung
[2009/05/18 07:02:03 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Silverlight
[2009/05/14 06:49:28 | 000,000,000 | ---D | C] -- C:\Program Files\LightSurf
[2009/05/11 12:48:17 | 000,000,000 | ---D | C] -- C:\Google
[2009/04/23 03:05:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Wondershare DVD to Flash Converter
[2009/04/22 09:30:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Kitchen
[2009/04/22 03:14:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\ZPS11
[2009/04/22 03:13:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\Zoner
[2009/04/22 03:12:48 | 000,000,000 | ---D | C] -- C:\Program Files\Zoner
[2009/04/20 07:02:24 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ptpusb.dll
[2009/04/20 07:02:23 | 000,159,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ptpusd.dll
[2009/04/20 05:37:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Converter
[2009/04/20 05:33:31 | 000,000,000 | ---D | C] -- C:\Program Files\Quick Conversion
[2009/04/19 16:23:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Astrid
[2009/04/19 15:12:19 | 000,000,000 | ---D | C] -- C:\WINDOWS\BarTr23
[2009/04/19 15:10:20 | 000,150,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MSCmCIT.dll
[2009/04/19 15:10:20 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\CmDlgIT.dll
[2009/04/19 15:10:19 | 000,063,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MSCc2IT.dll
[2009/04/19 15:10:18 | 000,028,672 | ---- | C] (Microsoft Corporation ) -- C:\WINDOWS\System32\Cmct3IT.dll
[2009/04/19 15:10:17 | 000,368,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\vbar332.dll
[2009/04/19 15:10:17 | 000,000,000 | ---D | C] -- C:\Program Files\Translationplus
[2009/04/17 06:22:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\Skype
[2009/04/15 03:01:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Application Data\Trusteer
[2009/04/03 08:12:54 | 000,000,000 | ---D | C] -- C:\Program Files\3D Covers Extreme
[2009/03/19 08:43:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\ImgBurn
[2009/03/19 08:15:27 | 000,000,000 | ---D | C] -- C:\Program Files\ImgBurn
[2009/03/12 04:59:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Application Data\BOM
[2009/03/11 05:59:57 | 000,000,000 | ---D | C] -- C:\Program Files\AWicons Pro
[2009/03/09 01:08:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Application Data\Trusteer
[2009/03/06 10:52:02 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\XPSViewer
[2009/03/06 10:51:57 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild
[2009/03/06 10:51:49 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies
[2009/03/06 10:51:14 | 001,676,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xpssvcs.dll
[2009/03/06 10:51:14 | 000,117,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\prntvpt.dll
[2009/03/06 10:50:57 | 000,000,000 | ---D | C] -- C:\WINDOWS\SxsCaPendDel
[2009/03/04 12:38:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\Trusteer
[2009/03/04 12:38:12 | 000,000,000 | ---D | C] -- C:\Program Files\Trusteer
[2009/02/26 14:25:44 | 000,442,368 | ---- | C] (blinkx) -- C:\WINDOWS\System32\ssblinkx.scr
[2009/02/26 12:11:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Scotsman
[2009/02/24 14:13:14 | 000,208,896 | ---- | C] (Samsung Electronics Co., Ltd.) -- C:\WINDOWS\System32\SSRemove.Exe
[2009/02/23 07:07:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\BOM
[2009/02/23 07:05:54 | 000,109,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Mswinsck.ocx
[2009/02/23 07:05:52 | 000,000,000 | ---D | C] -- C:\Program Files\Bid-O-Matic
[2009/02/23 06:56:04 | 000,000,000 | ---D | C] -- C:\emacs
[2009/02/15 13:46:03 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\David\%USERPROFILE%
[2009/02/06 06:51:11 | 000,114,688 | ---- | C] (Zoran Microelectronics Ltd.) -- C:\WINDOWS\System32\JpegCode.dll
[2009/02/06 06:51:11 | 000,016,896 | ---- | C] (FotoNation Ltd.) -- C:\WINDOWS\System32\CoachDlg.dll
[2009/02/06 06:51:10 | 000,008,192 | ---- | C] (FotoNation) -- C:\WINDOWS\System32\CoachWrp.dll
[2009/02/06 06:51:10 | 000,005,632 | ---- | C] (Accapella Ltd.) -- C:\WINDOWS\System32\CoachSti.dll
[2009/02/06 06:51:10 | 000,000,000 | ---D | C] -- C:\Program Files\Digital Camera
[2009/02/06 06:50:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\New Folder (3)
[2009/01/30 12:14:43 | 000,000,000 | ---D | C] -- C:\My Documents
[2009/01/27 04:54:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Self Assessment
[2009/01/22 09:23:14 | 000,028,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mdimon.dll
[2009/01/22 09:22:18 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER
[2009/01/22 09:20:46 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft.NET
[2009/01/13 14:10:59 | 000,000,000 | ---D | C] -- C:\Program Files\MSECache
[2009/01/13 13:48:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\OpenOffice.org
[2009/01/13 13:47:02 | 000,000,000 | ---D | C] -- C:\WINDOWS\ShellNew
[2009/01/13 13:44:58 | 000,000,000 | ---D | C] -- C:\Program Files\OpenOffice.org 3
[2009/01/12 11:41:16 | 000,000,000 | ---D | C] -- C:\~ROXTMP
[2009/01/07 12:20:18 | 000,265,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdbg2.dll
[2008/12/18 12:42:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\DSBOutput
[2008/12/18 12:41:39 | 000,000,000 | ---D | C] -- C:\Program Files\Wondershare
[2008/12/16 06:07:42 | 000,475,136 | ---- | C] (DMSoft Technologies) -- C:\WINDOWS\System32\SkinCrafter.dll
[2008/12/16 06:07:42 | 000,000,000 | ---D | C] -- C:\Program Files\Extra CD DVD Burner
[2008/12/12 05:18:16 | 000,087,336 | ---- | C] (Apple Inc.) -- C:\WINDOWS\System32\dns-sd.exe
[2008/12/12 05:11:46 | 000,065,536 | ---- | C] (Apple Inc.) -- C:\WINDOWS\System32\jdns_sd.dll
[2008/12/12 05:11:46 | 000,061,440 | ---- | C] (Apple Inc.) -- C:\WINDOWS\System32\dnssd.dll
[2008/12/12 04:35:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\InfraRecorder
[2008/12/10 06:58:45 | 000,000,000 | ---D | C] -- C:\Program Files\InfraRecorder
[2008/12/07 13:54:37 | 000,000,000 | ---D | C] -- C:\Program Files\Total Network Monitor
[2008/11/27 12:47:58 | 000,000,000 | ---D | C] -- C:\Program Files\CamStudio
[2008/11/27 12:33:26 | 000,000,000 | ---D | C] -- C:\Program Files\VideoLAN
[2008/11/17 05:00:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\Yahoo!
[2008/11/06 18:27:34 | 001,081,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mscomctl.ocx
[2008/11/06 18:27:08 | 000,067,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\SYSINFO.OCX
[2008/11/06 18:26:32 | 000,212,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\richtx32.ocx
[2008/11/06 18:26:06 | 000,647,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mscomct2.ocx
[2008/11/06 18:26:04 | 000,132,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msinet.ocx
[2008/10/30 07:57:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\New Folder (2)
[2008/10/30 07:12:54 | 000,000,000 | ---D | C] -- C:\Program Files\PC Inspector File Recovery
[2008/10/30 06:15:22 | 000,000,000 | ---D | C] -- C:\Program Files\Yahoo!
[2008/10/30 06:00:33 | 000,000,000 | ---D | C] -- C:\Program Files\WinUtilities
[2008/10/29 14:19:33 | 000,765,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msvcp71d.dll
[2008/10/29 14:19:33 | 000,544,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msvcr71d.dll
[2008/10/29 14:19:33 | 000,035,840 | ---- | C] (Sax software company) -- C:\WINDOWS\System32\drivers\SAXNDIS.sys
[2008/10/29 14:19:28 | 000,000,000 | ---D | C] -- C:\Program Files\Ax3soft
[2008/10/23 08:21:35 | 000,000,000 | ---D | C] -- C:\Program Files\BinaryMark
[2008/10/16 06:10:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\.gnome2_private
[2008/10/16 06:10:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\.gnome2
[2008/10/16 06:10:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\.gconfd
[2008/10/16 06:10:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\.gconf
[2008/10/16 06:10:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\.gnucash
[2008/10/16 06:09:15 | 000,000,000 | ---D | C] -- C:\Program Files\gnucash
[2008/09/24 07:36:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Bookkeeping
[2008/09/19 08:30:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Forbes
[2008/09/19 08:16:22 | 000,000,000 | ---D | C] -- C:\WINDOWS\pss
[2008/09/19 08:01:40 | 000,000,000 | ---D | C] -- C:\forbes
[2008/09/18 05:37:14 | 000,000,000 | --SD | C] -- C:\Documents and Settings\David\My Documents\CDInterface Studio Projects
[2008/09/18 05:32:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\dafini.co.uk
[2008/09/17 15:51:36 | 000,000,000 | ---D | C] -- C:\Program Files\Tint
[2008/09/05 18:29:58 | 000,934,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\WgaTray.exe
[2008/08/24 17:29:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\mojosoft
[2008/08/24 17:29:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\BusinessCardsMX templates
[2008/08/24 17:29:06 | 000,000,000 | ---D | C] -- C:\Program Files\MOJOSOFT
[2008/07/30 14:50:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Moyea
[2008/07/30 14:50:00 | 000,434,176 | ---- | C] (Gabest) -- C:\WINDOWS\System32\rtl2.dat
[2008/07/30 14:49:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\Moyea
[2008/07/30 14:49:56 | 000,000,000 | ---D | C] -- C:\Program Files\Moyea
[2008/07/30 14:49:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\New Folder
[2008/07/29 16:10:04 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\TsWpfWrp.exe
[2008/07/29 14:59:58 | 000,781,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\PresentationNative_v0300.dll
[2008/07/29 14:59:58 | 000,611,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\uiautomationcore.dll
[2008/07/29 14:59:58 | 000,105,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\PresentationCFFRasterizerNative_v0300.dll
[2008/07/29 14:24:50 | 000,622,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icardagt.exe
[2008/07/29 14:24:50 | 000,097,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\infocardapi.dll
[2008/07/29 14:24:50 | 000,037,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\infocardcpl.cpl
[2008/07/29 14:24:50 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icardres.dll
[2008/07/29 00:49:58 | 000,586,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icardres.dll.mui
[2008/07/25 06:16:58 | 000,083,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mscories.dll
[2008/07/17 10:52:20 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\scripting
[2008/07/17 10:52:19 | 000,000,000 | ---D | C] -- C:\WINDOWS\l2schemas
[2008/07/17 10:52:19 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en
[2008/07/17 10:52:19 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\bits
[2008/07/17 10:50:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\ServicePackFiles
[2008/07/17 10:45:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\$NtServicePackUninstall$
[2008/07/17 10:17:15 | 000,276,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wmphoto.dll
[2008/07/17 10:17:13 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wlanapi.dll
[2008/07/17 10:17:12 | 000,712,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\windowscodecs.dll
[2008/07/17 10:17:12 | 000,347,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\windowscodecsext.dll
[2008/07/17 10:17:11 | 000,025,471 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\watv10nt.sys
[2008/07/17 10:17:11 | 000,022,271 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\watv06nt.sys
[2008/07/17 10:17:11 | 000,011,935 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\wadv11nt.sys
[2008/07/17 10:17:11 | 000,011,871 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\wadv09nt.sys
[2008/07/17 10:17:11 | 000,011,807 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\wadv07nt.sys
[2008/07/17 10:17:11 | 000,011,295 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\wadv08nt.sys
[2008/07/17 10:17:10 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\vidcap.ax
[2008/07/17 10:17:09 | 000,011,325 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\vchnt5.dll
[2008/07/17 10:17:06 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsgqec.dll
[2008/07/17 10:17:02 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spupdwxp.exe
[2008/07/17 10:17:01 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spdwnwxp.exe
[2008/07/17 10:17:00 | 000,404,990 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slntamr.sys
[2008/07/17 10:17:00 | 000,286,792 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slextspk.dll
[2008/07/17 10:17:00 | 000,188,508 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slgen.dll
[2008/07/17 10:17:00 | 000,129,535 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slnt7554.sys
[2008/07/17 10:17:00 | 000,095,424 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slnthal.sys
[2008/07/17 10:17:00 | 000,073,832 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slcoinst.dll
[2008/07/17 10:17:00 | 000,073,796 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slserv.exe
[2008/07/17 10:17:00 | 000,032,866 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slrundll.exe
[2008/07/17 10:17:00 | 000,032,866 | ---- | C] (Smart Link) -- C:\WINDOWS\slrundll.exe
[2008/07/17 10:17:00 | 000,013,240 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slwdmsup.sys
[2008/07/17 10:16:59 | 000,003,901 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\siint5.dll
[2008/07/17 10:16:58 | 000,397,056 | ---- | C] (S3 Graphics, Inc.) -- C:\WINDOWS\System32\s3gnb.dll
[2008/07/17 10:16:58 | 000,166,912 | ---- | C] (S3 Graphics, Inc.) -- C:\WINDOWS\System32\drivers\s3gnbm.sys
[2008/07/17 10:16:58 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\setupn.exe
[2008/07/17 10:16:57 | 000,290,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rhttpaa.dll
[2008/07/17 10:16:57 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qutil.dll
[2008/07/17 10:16:57 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rasqec.dll
[2008/07/17 10:16:57 | 000,030,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\rndismpx.sys
[2008/07/17 10:16:57 | 000,013,776 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\recagent.sys
[2008/07/17 10:16:56 | 000,412,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\photometadatahandler.dll
[2008/07/17 10:16:56 | 000,150,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qagent.dll
[2008/07/17 10:16:56 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qcliprov.dll
[2008/07/17 10:16:55 | 000,144,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\onex.dll
[2008/07/17 10:16:54 | 000,180,360 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\ntmtlfax.sys
[2008/07/17 10:16:52 | 001,737,856 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\mtxparhd.dll
[2008/07/17 10:16:52 | 001,309,184 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\mtlstrm.sys
[2008/07/17 10:16:52 | 000,452,736 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\drivers\mtxparhm.sys
[2008/07/17 10:16:52 | 000,193,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\napmontr.dll
[2008/07/17 10:16:52 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\napstat.exe
[2008/07/17 10:16:52 | 000,126,686 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\mtlmnt5.sys
[2008/07/17 10:16:52 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msxml6r.dll
[2008/07/17 10:16:52 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\napipsec.dll
[2008/07/17 10:16:52 | 000,012,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\mutohpen.sys
[2008/07/17 10:16:51 | 000,155,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mssha.dll
[2008/07/17 10:16:51 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msshavmsg.dll
[2008/07/17 10:16:46 | 000,397,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcex.dll
[2008/07/17 10:16:46 | 000,184,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\microsoft.managementconsole.dll
[2008/07/17 10:16:46 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcfxcommon.dll
[2008/07/17 10:16:46 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcperf.exe
[2008/07/17 10:16:45 | 000,086,016 | ---- | C] (Conexant) -- C:\WINDOWS\System32\mdmxsdk.dll
[2008/07/17 10:16:41 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\l2gpstore.dll
[2008/07/17 10:16:41 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdpash.dll
[2008/07/17 10:16:41 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdnepr.dll
[2008/07/17 10:16:41 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdiultn.dll
[2008/07/17 10:16:41 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdbhc.dll
[2008/07/17 10:16:36 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\smtpapi.dll
[2008/07/17 10:16:36 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rwnh.dll
[2008/07/17 10:16:35 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\irbus.sys
[2008/07/17 10:16:35 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comsdupd.exe
[2008/07/17 10:16:33 | 000,032,285 | ---- | C] (Conexant Systems, Inc.) -- C:\WINDOWS\System32\hsfcisp2.dll
[2008/07/17 10:16:31 | 000,180,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eapphost.dll
[2008/07/17 10:16:31 | 000,094,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eappgnui.dll
[2008/07/17 10:16:31 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eapqec.dll
[2008/07/17 10:16:31 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eappprxy.dll
[2008/07/17 10:16:31 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\faxpatch.exe
[2008/07/17 10:16:30 | 000,184,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eapp3hst.dll
[2008/07/17 10:16:30 | 000,126,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eappcfg.dll
[2008/07/17 10:16:30 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eapolqec.dll
[2008/07/17 10:16:29 | 000,650,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3ui.dll
[2008/07/17 10:16:29 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3cfg.dll
[2008/07/17 10:16:29 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3msm.dll
[2008/07/17 10:16:29 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dhcpqec.dll
[2008/07/17 10:16:29 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3gpclnt.dll
[2008/07/17 10:16:29 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dimsroam.dll
[2008/07/17 10:16:29 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3api.dll
[2008/07/17 10:16:29 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3dlg.dll
[2008/07/17 10:16:25 | 000,015,423 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\ch7xxnt5.dll
[2008/07/17 10:16:24 | 000,516,768 | ---- | C] (ATI Technologies Inc. ) -- C:\WINDOWS\System32\ativvaxx.dll
[2008/07/17 10:16:24 | 000,233,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\azroles.dll
[2008/07/17 10:16:24 | 000,104,960 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinrvxx.sys
[2008/07/17 10:16:24 | 000,073,216 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atintuxx.sys
[2008/07/17 10:16:24 | 000,063,488 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinxsxx.sys
[2008/07/17 10:16:24 | 000,057,856 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinbtxx.sys
[2008/07/17 10:16:24 | 000,052,224 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinraxx.sys
[2008/07/17 10:16:24 | 000,032,768 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ativtmxx.dll
[2008/07/17 10:16:24 | 000,031,744 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinxbxx.sys
[2008/07/17 10:16:24 | 000,028,672 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinsnxx.sys
[2008/07/17 10:16:24 | 000,025,471 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\atv04nt5.dll
[2008/07/17 10:16:24 | 000,023,040 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ativmvxx.ax
[2008/07/17 10:16:24 | 000,021,183 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\atv01nt5.dll
[2008/07/17 10:16:24 | 000,017,279 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\atv10nt5.dll
[2008/07/17 10:16:24 | 000,014,336 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinpdxx.sys
[2008/07/17 10:16:24 | 000,014,143 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\atv06nt5.dll
[2008/07/17 10:16:24 | 000,013,824 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinttxx.sys
[2008/07/17 10:16:24 | 000,013,824 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinmdxx.sys
[2008/07/17 10:16:24 | 000,011,359 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\atv02nt5.dll
[2008/07/17 10:16:24 | 000,009,728 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ativdaxx.ax
[2008/07/17 10:16:24 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx4.dll
[2008/07/17 10:16:23 | 001,888,992 | ---- | C] (ATI Technologies Inc. ) -- C:\WINDOWS\System32\ati3duag.dll
[2008/07/17 10:16:23 | 000,870,784 | ---- | C] (ATI Technologies Inc. ) -- C:\WINDOWS\System32\ati3d1ag.dll
[2008/07/17 10:16:23 | 000,701,440 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati2mtag.sys
[2008/07/17 10:16:23 | 000,377,984 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ati2dvaa.dll
[2008/07/17 10:16:23 | 000,327,040 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati2mtaa.sys
[2008/07/17 10:16:23 | 000,229,376 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ati2cqag.dll
[2008/07/17 10:16:23 | 000,201,728 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ati2dvag.dll
[2008/07/17 10:16:23 | 000,063,663 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1rvxx.sys
[2008/07/17 10:16:23 | 000,036,463 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1tuxx.sys
[2008/07/17 10:16:23 | 000,034,735 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1xsxx.sys
[2008/07/17 10:16:23 | 000,030,671 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1raxx.sys
[2008/07/17 10:16:23 | 000,029,455 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1xbxx.sys
[2008/07/17 10:16:23 | 000,026,367 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1snxx.sys
[2008/07/17 10:16:23 | 000,021,343 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1ttxx.sys
[2008/07/17 10:16:23 | 000,012,047 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1pdxx.sys
[2008/07/17 10:16:22 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\aaclient.dll
[2008/07/17 10:16:22 | 000,056,623 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1btxx.sys
[2008/07/17 10:16:22 | 000,011,615 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1mdxx.sys
[2008/07/17 10:16:22 | 000,004,255 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv01nt5.dll
[2008/07/17 10:16:22 | 000,003,967 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv02nt5.dll
[2008/07/17 10:16:22 | 000,003,775 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv11nt5.dll
[2008/07/17 10:16:22 | 000,003,711 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv09nt5.dll
[2008/07/17 10:16:22 | 000,003,647 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv07nt5.dll
[2008/07/17 10:16:22 | 000,003,615 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv05nt5.dll
[2008/07/17 10:16:22 | 000,003,135 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv08nt5.dll
[2008/07/11 05:41:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Web Sites
[2008/06/28 03:23:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Lightscribe
[2008/06/06 09:54:26 | 000,095,600 | ---- | C] (Ahead Software AG
im Stoeckmaedle 18
76307 Karlsbad, Germany
Fax: ++49-7248-911-888
e-mail: info@nero.com) -- C:\WINDOWS\System32\NeroCo.dll
[2008/06/06 09:54:16 | 000,972,072 | ---- | C] (Nero AG) -- C:\WINDOWS\UNRecode.exe
[2008/06/04 15:02:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Downloaded Program Updates
[2008/06/02 05:53:25 | 000,000,000 | ---D | C] -- C:\My Web Sites
[2008/06/02 05:49:13 | 000,000,000 | ---D | C] -- C:\Program Files\WinHTTrack
[2008/05/31 15:43:42 | 000,000,000 | ---D | C] -- C:\Program Files\RemoteObserverClient
[2008/05/31 15:29:55 | 000,000,000 | ---D | C] -- C:\Program Files\RemoteObserver
[2008/05/31 15:29:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\RemoteObserver
[2008/05/28 13:29:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Local Settings\Application Data\Mozilla
[2008/05/28 13:29:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\Mozilla
[2008/05/28 13:29:46 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2008/05/26 16:21:26 | 001,418,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mssrch.dll
[2008/05/26 16:21:08 | 001,582,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tquery.dll
[2008/05/26 16:19:36 | 000,273,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\oeph.dll
[2008/05/26 16:19:28 | 000,131,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\UncPH.dll
[2008/05/26 16:19:28 | 000,108,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\UncNE.dll
[2008/05/26 16:19:26 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\UncRes.dll
[2008/05/26 16:19:22 | 000,143,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\UncDMS.dll
[2008/05/26 16:19:20 | 000,097,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\UncCplExt.dll
[2008/05/26 16:19:16 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\oephRes.dll
[2008/05/26 16:18:56 | 000,203,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mssphtb.dll
[2008/05/26 16:18:44 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mssphtb.dll.mui
[2008/05/26 16:18:42 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msstrc.dll
[2008/05/26 16:18:34 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msshsq.dll
[2008/05/26 16:18:34 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xmlfilter.dll
[2008/05/26 16:18:32 | 000,038,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rtffilt.dll
[2008/05/26 16:18:26 | 000,350,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mssph.dll
[2008/05/26 16:18:08 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\propdefs.dll
[2008/05/26 16:17:58 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mssrch.dll.mui
[2008/05/26 16:17:54 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mssph.dll.mui
[2008/05/26 16:17:44 | 000,034,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msscb.dll
[2008/05/26 16:17:38 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msshooks.dll
[2008/05/26 16:17:36 | 000,221,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tquery.dll.mui
[2008/05/26 16:17:30 | 000,301,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\srchadmin.dll
[2008/05/26 16:17:28 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mssprxy.dll
[2008/05/26 16:17:26 | 000,087,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mssitlb.dll
[2008/05/26 16:17:26 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msscntrs.dll
[2008/05/26 16:17:12 | 000,135,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\srchadmin.dll.mui
[2008/05/24 12:37:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Local Settings\Application Data\PSU
[2008/05/07 03:54:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Updater
[2008/05/02 04:24:36 | 000,000,000 | ---D | C] -- C:\Program Files\TweakRAM
[2008/05/02 04:22:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\TweakRAM
[2008/04/28 04:03:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Ebook Shop 1
[2008/04/26 10:08:48 | 000,000,000 | ---D | C] -- C:\Program Files\e-novative
[2008/04/26 10:01:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\QuasarConfig
[2008/04/26 10:01:23 | 000,000,000 | ---D | C] -- C:\Program Files\Quasar
[2008/04/26 09:49:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Quasar
[2008/04/26 08:36:03 | 000,000,000 | ---D | C] -- C:\Program Files\Wise Registry Cleaner 3 Pro
[2008/04/26 08:34:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Wise Registry Cleaner
[2008/04/17 08:11:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Ebay
[2008/04/09 01:56:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\Intuit
[2008/04/08 08:59:10 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SWF Studio
[2008/04/08 08:55:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Local Settings\Application Data\Intuit
[2008/04/08 08:54:47 | 003,518,464 | ---- | C] (Amyuni Technologies
http://www.amyuni.com) -- C:\WINDOWS\System32\cdintf300.dll
[2008/04/08 08:54:47 | 001,843,200 | ---- | C] (Apache Software Foundation) -- C:\WINDOWS\System32\acXMLParser.dll
[2008/04/08 08:52:24 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Intuit
[2008/04/08 08:52:23 | 000,000,000 | ---D | C] -- C:\Program Files\Intuit
[2008/04/08 07:19:24 | 298,557,760 | ---- | C] (Intuit, Inc. ) -- C:\Documents and Settings\David\Desktop\QuickBooksSimpleStartDirect2008.exe
[2008/04/08 07:19:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\Download Manager
[2008/04/08 07:19:20 | 000,000,000 | ---D | C] -- C:\Program Files\Akamai
[2008/03/27 10:27:48 | 000,037,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\wdfldr.sys
[2008/03/27 09:02:46 | 000,000,000 | ---D | C] -- C:\Program Files\gs
[2008/03/26 07:21:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Projects
[2008/03/25 12:45:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Screenshots
[2008/03/25 08:00:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Web Sites Old
[2008/03/12 10:13:24 | 000,274,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mucltui.dll
[2008/03/12 10:13:24 | 000,016,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mucltui.dll.mui
[2008/03/12 06:41:46 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft CAPICOM 2.1.0.2
[2008/03/06 12:08:26 | 002,359,296 | ---- | C] (OpenOffice.org) -- C:\Documents and Settings\David\Desktop\soffice.exe
[2008/02/26 08:21:22 | 000,832,896 | ---- | C] (Indigo Rose Corporation) -- C:\WINDOWS\System32\ButtonThumbnailExtractor.dll
[2008/02/22 14:03:04 | 000,000,000 | ---D | C] -- C:\Program Files\Samsung Network Printer Utilities
[2008/02/21 11:04:13 | 000,057,344 | ---- | C] (Samsung Electronics) -- C:\WINDOWS\System32\ssdevm.dll
[2008/02/21 11:04:13 | 000,049,152 | ---- | C] (Samsung Electronics) -- C:\WINDOWS\System32\ssusbpn.dll
[2008/02/21 11:04:13 | 000,021,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msxml2a.dll
[2008/02/21 11:04:12 | 000,000,000 | ---D | C] -- C:\WINDOWS\Samsung
[2008/02/21 10:53:45 | 000,022,663 | ---- | C] (Samsung Electronics.) -- C:\WINDOWS\System32\SUGG1LMK.DLL
[2008/02/21 10:53:40 | 000,151,552 | ---- | C] (Samsung Electronics Co., Ltd.) -- C:\WINDOWS\System32\SUGG1CI.exe
[2008/02/21 10:53:39 | 000,057,344 | ---- | C] (SEC) -- C:\WINDOWS\System32\SUGG1CI.dll
[2008/02/21 10:53:37 | 000,041,984 | ---- | C] (Samsung Electronics Co., Ltd.) -- C:\WINDOWS\System32\drivers\DGIVECP.SYS
[2008/02/06 17:37:45 | 000,000,000 | ---D | C] -- C:\WINDOWS\Minidump
[2008/02/06 17:23:23 | 000,000,000 | ---D | C] -- C:\Program Files\Steganos Internet Security 2007
[2008/01/25 13:27:15 | 000,126,448 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxinsi64.exe
[2008/01/25 13:27:15 | 000,123,888 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxcpyi64.exe
[2008/01/25 13:27:15 | 000,072,176 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxhpinst.exe
[2008/01/25 13:27:15 | 000,068,592 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxinsa64.exe
[2008/01/25 13:27:15 | 000,068,080 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxcpya64.exe
[2008/01/17 08:04:26 | 000,000,000 | ---D | C] -- C:\Program Files\CDox
[2008/01/17 07:49:51 | 000,000,000 | ---D | C] -- C:\Program Files\MediaFood
[2008/01/17 07:48:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Free Inlay Printing
[2008/01/17 07:47:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Welcome MFDT UG_files
[2008/01/17 07:43:21 | 001,234,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MSJT4JLT.DLL
[2008/01/17 07:43:21 | 001,046,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msjet35.dll
[2008/01/17 07:43:21 | 000,415,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msrepl35.dll
[2008/01/17 07:43:21 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MFC42LOC.DLL
[2008/01/17 07:43:21 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MFC42DEU.DLL
[2008/01/17 07:42:57 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\PrintFit Shared
[2008/01/17 07:42:57 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\PrintFit
[2008/01/17 07:42:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\PrintFit
[2008/01/17 07:24:30 | 000,667,136 | ---- | C] (OLYMPUS Software Europe GmbH) -- C:\WINDOWS\System32\oik32.ocx
[2008/01/17 07:24:30 | 000,155,648 | ---- | C] (Lars Schenk / Gorch-Fock-Str. 39 / 23669 Timmendorfer Strand / Germany / barcode@sharedirect.com) -- C:\WINDOWS\System32\barcode.ocx
[2008/01/17 07:24:30 | 000,061,952 | ---- | C] (OLYMPUS Software Europe GmbH) -- C:\WINDOWS\System32\twiz32.ocx
[2008/01/17 07:24:29 | 000,125,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\VB6DE.DLL
[2008/01/17 07:24:29 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\CMDLGDE.DLL
[2008/01/17 07:24:29 | 000,000,000 | ---D | C] -- C:\Program Files\printFIT
[2007/12/17 06:43:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Jenny
[2007/12/13 07:31:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Local Settings\Application Data\Macromedia
[2007/12/13 07:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\Downloaded Installations
[2007/12/09 12:35:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\eBay
[2007/12/09 12:34:57 | 000,000,000 | ---D | C] -- C:\Program Files\eBay
[2007/12/06 00:45:26 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\supportsoft
[2007/12/06 00:45:26 | 000,000,000 | ---D | C] -- C:\Program Files\Dell Support Center
[2007/11/30 07:03:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\.thumbnails
[2007/11/30 07:01:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\.gimp-2.2
[2007/11/30 07:00:59 | 000,000,000 | ---D | C] -- C:\Program Files\GIMPshop
[2007/11/23 06:51:54 | 000,000,000 | R--D | C] -- C:\Documents and Settings\LocalService\Favorites
[2007/11/23 06:51:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\Google
[2007/11/23 06:51:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Application Data\Google
[2007/11/13 10:09:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\PCHealth
[2007/11/08 08:23:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\OpenOffice.org2
[2007/11/08 08:21:54 | 000,000,000 | ---D | C] -- C:\Program Files\OpenOffice.org 2.3
[2007/11/07 05:55:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Business Files
[2007/11/06 09:52:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Local Settings\Application Data\WMTools Downloaded Files
[2007/11/02 13:33:06 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\LightScribe
[2007/11/02 07:47:29 | 000,000,000 | ---D | C] -- C:\Program Files\SureThing
[2007/11/02 07:47:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\MVUNINST
[2007/11/01 11:40:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Local Settings\Application Data\MicroVision Applications
[2007/10/29 10:22:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Bank Of Scotland
[2007/10/29 04:11:58 | 000,053,248 | ---- | C] (Marvell Semiconductor, Inc.) -- C:\WINDOWS\System32\HPEWSMX.dll
[2007/10/04 07:47:57 | 000,000,000 | ---D | C] -- C:\Program Files\Blender Foundation
[2007/10/04 07:44:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\blender-2.45-windows
[2007/09/21 04:58:40 | 000,000,000 | --SD | C] -- C:\Documents and Settings\David\My Documents\CDInterface Studio Projects Old
[2007/09/21 04:58:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Local Settings\Application Data\CDInterface Studio
[2007/09/21 04:58:05 | 000,000,000 | ---D | C] -- C:\Program Files\CDInterface Studio
[2007/09/21 03:54:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Important Files
[2007/09/20 10:00:44 | 000,000,000 | ---D | C] -- C:\MDT
[2007/09/20 09:56:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\CyberLink
[2007/09/20 08:53:28 | 000,000,000 | ---D | C] -- C:\Program Files\Lx_cats
[2007/09/20 08:52:46 | 000,087,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wiafbdrv.dll
[2007/09/20 08:52:33 | 000,000,000 | ---D | C] -- C:\Program Files\Lexmark 4300 Series
[2007/09/20 08:52:28 | 000,000,000 | ---D | C] -- C:\Temp
[2007/09/20 08:48:40 | 000,000,000 | ---D | C] -- C:\Lexmark
[2007/09/20 01:25:00 | 000,000,000 | ---D | C] -- C:\CloneDVDTemp
[2007/09/18 08:36:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\ie7updates
[2007/09/17 23:44:48 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Connect 2
[2007/09/17 23:43:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\UMDF
[2007/09/17 23:43:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\LogFiles
[2007/09/17 22:50:11 | 000,299,520 | ---- | C] (InstallShield Corporation, Inc.) -- C:\WINDOWS\uninst.exe
[2007/09/17 22:49:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\WINDOWS
[2007/09/17 22:11:06 | 000,000,000 | ---D | C] -- C:\Program Files\PantsOff
[2007/09/17 21:20:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Local Settings\Application Data\Help
[2007/09/17 21:20:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\Help
[2007/09/17 21:12:09 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Dell
[2007/09/17 21:09:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\appmgmt
[2007/09/17 19:43:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\WBEM
[2007/09/17 19:43:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en-US
[2007/09/17 19:42:43 | 000,000,000 | -H-D | C] -- C:\WINDOWS\ie7
[2007/09/17 19:42:28 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$
[2007/09/17 19:42:15 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$
[2007/09/17 19:41:14 | 000,000,000 | ---D | C] -- C:\WINDOWS\network diagnostic
[2007/09/17 19:21:37 | 000,000,000 | ---D | C] -- C:\Program Files\Elaborate Bytes
[2007/09/17 19:21:00 | 000,000,000 | ---D | C] -- C:\Program Files\SlySoft
[2007/09/17 19:19:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Slysoft DVD Tools
[2007/09/17 18:44:50 | 000,000,000 | ---D | C] -- C:\Program Files\Ontrack
[2007/09/17 16:19:31 | 000,000,000 | ---D | C] -- C:\Program Files\EASEUS
[2007/09/17 15:52:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\File Repair
[2007/09/16 20:45:52 | 000,185,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Thawbrkr.dll
[2007/09/16 20:45:51 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\c_iscii.dll
[2007/09/16 20:45:49 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdusa.dll
[2007/09/16 20:45:43 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ftlx041e.dll
[2007/09/16 19:25:19 | 000,000,000 | ---D | C] -- C:\Program Files\Trackballs
[2007/09/16 18:54:18 | 000,000,000 | -H-D | C] -- C:\WINDOWS\PIF
[2007/09/16 18:13:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Ranish Partition Manager
#4
dave1708
- Topic Starter
-
- Members
- 11 posts
- OFFLINE
- Local time:06:57 PM
Posted 26 December 2010 - 04:05 PM
Part two:
[2007/09/16 18:01:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\TuneUp Software
[2007/09/16 10:50:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\Sun
[2007/09/16 10:50:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\Sun
[2007/09/15 23:00:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Flash Alternatives
[2007/09/15 22:53:53 | 001,875,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msir3jp.lex
[2007/09/15 22:53:53 | 001,677,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\chsbrkr.dll
[2007/09/15 22:53:53 | 000,838,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\chtbrkr.dll
[2007/09/15 22:53:53 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msir3jp.dll
[2007/09/15 22:53:53 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\korwbrkr.dll
[2007/09/15 22:53:41 | 000,218,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\c_g18030.dll
[2007/09/15 22:53:41 | 000,072,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wingb.ime
[2007/09/15 22:53:26 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\c_is2022.dll
[2007/09/15 22:53:24 | 000,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winar30.ime
[2007/09/15 22:53:24 | 000,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\phon.ime
[2007/09/15 22:53:24 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dayi.ime
[2007/09/15 22:53:24 | 000,078,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\chajei.ime
[2007/09/15 22:53:24 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\quick.ime
[2007/09/15 22:53:24 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\uniime.dll
[2007/09/15 22:53:24 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winime.ime
[2007/09/15 22:53:24 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\unicdime.ime
[2007/09/15 22:53:24 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\romanime.ime
[2007/09/15 22:53:24 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\miniime.tpl
[2007/09/15 22:53:23 | 000,811,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\imjp81k.dll
[2007/09/15 22:53:23 | 000,340,023 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\imjp81.ime
[2007/09/15 22:53:23 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winzm.ime
[2007/09/15 22:53:23 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winsp.ime
[2007/09/15 22:53:23 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winpy.ime
[2007/09/15 18:42:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\.trackballs
[2007/09/15 18:41:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Trackballs
[2007/09/15 16:15:47 | 000,000,000 | ---D | C] -- C:\Program Files\Pivot Stickfigure Animator
[2007/09/15 16:10:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\images
[2007/09/15 16:10:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\extensions
[2007/09/15 15:45:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Local Settings\Application Data\Apple Computer
[2007/09/15 15:40:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\Media Player Classic
[2007/09/15 15:40:02 | 000,065,536 | ---- | C] (Apple Inc.) -- C:\WINDOWS\System32\QuickTimeVR.qtx
[2007/09/15 15:40:02 | 000,049,152 | ---- | C] (Apple Inc.) -- C:\WINDOWS\System32\QuickTime.qts
[2007/09/15 15:39:58 | 000,000,000 | ---D | C] -- C:\Program Files\QuickTime Alternative
[2007/09/15 15:27:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\test
[2007/09/15 15:22:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Synfig
[2007/09/15 15:18:01 | 000,000,000 | ---D | C] -- C:\GTK
[2007/09/15 15:06:25 | 000,000,000 | ---D | C] -- C:\Program Files\Synfig
[2007/09/15 10:28:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\TVU Networks
[2007/09/15 10:27:54 | 000,000,000 | ---D | C] -- C:\Program Files\TVUPlayer
[2007/09/15 08:07:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Podcast Studio
[2007/09/15 08:07:00 | 000,000,000 | ---D | C] -- C:\Program Files\Real
[2007/09/15 08:06:59 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Real
[2007/09/15 08:06:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\Real
[2007/09/15 07:42:52 | 001,040,384 | ---- | C] (NCT Company Ltd.) -- C:\WINDOWS\System32\NCTAudioInformation2.dll
[2007/09/15 07:42:52 | 000,634,880 | ---- | C] (Online Media Technologies Ltd.) -- C:\WINDOWS\System32\NCTAudioEditor2.dll
[2007/09/15 07:42:52 | 000,450,560 | ---- | C] (NCT Company Ltd.) -- C:\WINDOWS\System32\NCTAudioTransform2.dll
[2007/09/15 07:42:52 | 000,315,392 | ---- | C] (NCT Company Ltd.) -- C:\WINDOWS\System32\NCTAudioPlayer2.dll
[2007/09/15 07:42:52 | 000,311,296 | ---- | C] (NCT Company Ltd.) -- C:\WINDOWS\System32\NCTAudioRecord2.dll
[2007/09/15 07:42:51 | 001,843,200 | ---- | C] (NCT Company Ltd.) -- C:\WINDOWS\System32\NCTAudioFile2.dll
[2007/09/15 07:42:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\onlineTV 3
[2007/09/15 07:42:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\concept design
[2007/09/15 07:42:50 | 000,000,000 | ---D | C] -- C:\Program Files\concept design
[2007/09/14 22:04:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\Fonts\g
[2007/09/14 22:01:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\Template
[2007/09/14 19:19:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Adobe
[2007/09/14 19:18:16 | 000,000,000 | ---D | C] -- C:\Program Files\Namo
[2007/09/14 19:14:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Hello Engines! Standard 6
[2007/09/14 19:08:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\AceBIT
[2007/09/14 19:08:23 | 000,937,800 | ---- | C] (AceBIT GmbH) -- C:\WINDOWS\System32\acebitaw.dll
[2007/09/14 19:08:22 | 000,000,000 | ---D | C] -- C:\Program Files\AceBIT
[2007/09/14 17:45:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Local Settings\Application Data\Identities
[2007/09/14 17:41:36 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\David\UserData
[2007/09/14 16:59:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\From other
[2007/09/14 16:57:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\WinRAR
[2007/09/14 16:56:40 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR
[2007/09/14 16:54:51 | 000,000,000 | ---D | C] -- C:\Program Files\7-Zip
[2007/09/14 16:32:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\Adobe
[2007/09/14 16:28:43 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Macromedia Shared
[2007/09/14 16:28:42 | 000,974,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mfc70.dll
[2007/09/14 16:28:42 | 000,487,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msvcp70.dll
[2007/09/14 16:28:42 | 000,344,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msvcr70.dll
[2007/09/14 16:28:29 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Macromedia
[2007/09/14 16:27:48 | 000,000,000 | ---D | C] -- C:\Program Files\Macromedia
[2007/09/14 16:16:55 | 000,000,000 | -HSD | C] -- C:\WINDOWS\ftpcache
[2007/09/14 15:59:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\SlimBrowser
[2007/09/14 15:59:01 | 000,000,000 | ---D | C] -- C:\Program Files\SlimBrowser
[2007/09/14 15:48:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\NtmsData
[2007/09/14 15:41:04 | 000,000,000 | ---D | C] -- C:\Program Files\MSXML 4.0
[2007/09/14 15:34:53 | 000,023,904 | ---- | C] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\COH_Mon.sys
[2007/09/14 15:27:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\PreInstall
[2007/09/14 15:19:31 | 000,466,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\capicom.dll
[2007/09/14 15:19:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\SoftwareDistribution
[2007/09/14 15:19:20 | 000,000,000 | ---D | C] -- C:\Program Files\Symantec
[2007/09/14 15:17:32 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Symantec Shared
[2007/09/14 15:16:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Local Settings\Application Data\SupportSoft
[2007/09/14 15:14:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\Macromedia
[2007/09/14 15:14:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\Google
[2007/09/14 14:58:18 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\David\Application Data\GTek
[2007/09/14 14:58:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\InstallShield
[2007/09/14 14:58:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\Identities
[2007/09/14 14:58:17 | 000,000,000 | --SD | C] -- C:\Documents and Settings\David\Application Data\Microsoft
[2007/09/14 14:58:17 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\David\SendTo
[2007/09/14 14:58:17 | 000,000,000 | R--D | C] -- C:\Documents and Settings\David\My Documents\My Videos
[2007/09/14 14:58:17 | 000,000,000 | R--D | C] -- C:\Documents and Settings\David\My Documents\My Pictures
[2007/09/14 14:58:17 | 000,000,000 | R--D | C] -- C:\Documents and Settings\David\My Documents\My Music
[2007/09/14 14:58:17 | 000,000,000 | R--D | C] -- C:\Documents and Settings\David\My Documents
[2007/09/14 14:58:17 | 000,000,000 | R--D | C] -- C:\Documents and Settings\David\Favorites
[2007/09/14 14:58:17 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\David\Cookies
[2007/09/14 14:58:17 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\David\PrintHood
[2007/09/14 14:58:17 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\David\NetHood
[2007/09/14 14:58:17 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\David\Local Settings
[2007/09/14 14:58:17 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\David\Application Data
[2007/09/14 14:58:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Local Settings\Application Data\Roxio
[2007/09/14 14:58:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\Roxio
[2007/09/14 14:58:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Local Settings\Application Data\PowerDVD DX
[2007/09/14 14:58:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Local Settings\Application Data\Microsoft
[2007/09/14 14:58:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Local Settings\Application Data\Google
[2007/09/14 14:58:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Desktop
[2007/09/14 14:58:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Local Settings\Application Data\ApplicationHistory
[2007/09/14 14:58:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Local Settings\Application Data\Adobe
[2007/09/14 14:58:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Local Settings\Application Data\{3248F0A6-6813-11D6-A77B-00B0D0150060}
[2007/09/14 14:58:16 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\David\Templates
[2007/09/14 14:58:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Start Menu
[2007/09/11 06:53:13 | 000,000,000 | -HSD | C] -- C:\RECYCLER
[2007/09/11 06:52:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Application Data\Roxio
[2007/09/11 06:52:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\Roxio
[2007/09/11 06:52:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\My Documents\My Google Gadgets
[2007/09/11 06:52:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\Roxio
[2007/09/11 06:52:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\Google
[2007/09/11 06:50:07 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office
[2007/09/11 06:50:05 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Works
[2007/09/11 06:49:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\Adobe
[2007/09/11 06:49:41 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe
[2007/09/11 06:49:41 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe
[2007/09/11 06:49:30 | 000,000,000 | ---D | C] -- C:\Program Files\Google
[2007/09/11 06:49:00 | 000,000,000 | ---D | C] -- C:\Program Files\Dell
[2007/09/11 06:48:45 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Administrator\Application Data\GTek
[2007/09/11 06:48:41 | 000,000,000 | ---D | C] -- C:\Program Files\DellSupport
[2007/09/11 06:45:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\PowerDVD DX
[2007/09/11 06:45:44 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Administrator\My Documents\My Videos
[2007/09/11 06:45:42 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msxml4a.dll
[2007/09/11 06:45:36 | 000,000,000 | ---D | C] -- C:\Program Files\CyberLink
[2007/09/11 06:45:27 | 000,099,176 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\drivers\DRVMCDB.SYS
[2007/09/11 06:45:27 | 000,092,920 | ---- | C] (Roxio) -- C:\WINDOWS\DLA.EXE
[2007/09/11 06:45:27 | 000,051,768 | ---- | C] (Roxio) -- C:\WINDOWS\System32\drivers\DRVNDDM.SYS
[2007/09/11 06:45:27 | 000,028,184 | ---- | C] (Roxio) -- C:\WINDOWS\System32\drivers\DLARTL_M.SYS
[2007/09/11 06:45:27 | 000,012,920 | ---- | C] (Roxio) -- C:\WINDOWS\System32\drivers\DLACDBHM.SYS
[2007/09/11 06:45:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DLA
[2007/09/11 06:43:39 | 000,000,000 | ---D | C] -- C:\WINDOWS\RegisteredPackages
[2007/09/11 06:42:56 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SureThing Shared
[2007/09/11 06:42:53 | 000,000,000 | ---D | C] -- C:\Program Files\Roxio
[2007/09/11 06:42:53 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield
[2007/09/11 06:42:41 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Sonic Shared
[2007/09/11 06:42:28 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Roxio Shared
[2007/09/11 06:42:08 | 000,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information
[2007/09/11 06:42:08 | 000,000,000 | ---D | C] -- C:\Program Files\Intel
[2007/09/11 06:42:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\InstallShield
[2007/09/11 06:41:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Lang
[2007/09/11 06:40:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\RTCOM
[2007/09/11 06:40:24 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksuser.dll
[2007/09/11 06:40:23 | 000,129,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksproxy.ax
[2007/09/11 06:39:55 | 000,026,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spupdsvc.exe
[2007/09/11 06:39:42 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\verclsid.exe
[2007/09/11 06:37:55 | 000,000,000 | ---D | C] -- C:\Program Files\Java
[2007/09/11 06:37:54 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2007/09/11 06:37:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\{3248F0A6-6813-11D6-A77B-00B0D0150060}
[2007/09/11 06:34:29 | 000,689,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xpsp3res.dll
[2007/09/11 06:34:21 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$hf_mig$
[2007/09/11 06:26:04 | 000,356,352 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvudisp.exe
[2007/09/11 06:25:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ReinstallBackups
[2007/09/11 06:22:03 | 002,441,216 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwssr.dll
[2007/09/11 06:22:02 | 003,629,056 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvvitvsr.dll
[2007/09/11 06:22:02 | 003,551,232 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvvitvs.dll
[2007/09/11 06:22:02 | 002,371,584 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwss.dll
[2007/09/11 06:22:02 | 000,335,872 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrses.dll
[2007/09/11 06:22:02 | 000,335,872 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsel.dll
[2007/09/11 06:22:02 | 000,327,680 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsfr.dll
[2007/09/11 06:22:02 | 000,327,680 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsesm.dll
[2007/09/11 06:22:02 | 000,323,584 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrspt.dll
[2007/09/11 06:22:02 | 000,323,584 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsit.dll
[2007/09/11 06:22:02 | 000,319,488 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsptb.dll
[2007/09/11 06:22:02 | 000,319,488 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsnl.dll
[2007/09/11 06:22:02 | 000,315,392 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsru.dll
[2007/09/11 06:22:02 | 000,315,392 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrshu.dll
[2007/09/11 06:22:02 | 000,311,296 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsde.dll
[2007/09/11 06:22:02 | 000,303,104 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsfi.dll
[2007/09/11 06:22:02 | 000,299,008 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsno.dll
[2007/09/11 06:22:02 | 000,294,912 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrspl.dll
[2007/09/11 06:22:02 | 000,294,912 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsda.dll
[2007/09/11 06:22:02 | 000,286,720 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrseng.dll
[2007/09/11 06:22:02 | 000,286,720 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrscs.dll
[2007/09/11 06:22:02 | 000,282,624 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsar.dll
[2007/09/11 06:22:02 | 000,278,528 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrshe.dll
[2007/09/11 06:22:02 | 000,274,432 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrspt.dll
[2007/09/11 06:22:02 | 000,270,336 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsru.dll
[2007/09/11 06:22:02 | 000,266,240 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsptb.dll
[2007/09/11 06:22:02 | 000,253,952 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrspl.dll
[2007/09/11 06:22:02 | 000,212,992 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsja.dll
[2007/09/11 06:22:02 | 000,196,608 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsko.dll
[2007/09/11 06:22:02 | 000,081,920 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwddi.dll
[2007/09/11 06:22:01 | 006,746,112 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvoglnt.dll
[2007/09/11 06:22:01 | 003,166,208 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvgamesr.dll
[2007/09/11 06:22:01 | 002,854,912 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvmoblsr.dll
[2007/09/11 06:22:01 | 001,150,976 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvmobls.dll
[2007/09/11 06:22:01 | 000,458,752 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvmccssr.dll
[2007/09/11 06:22:01 | 000,327,680 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrshe.dll
[2007/09/11 06:22:01 | 000,327,680 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsar.dll
[2007/09/11 06:22:01 | 000,282,624 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsfr.dll
[2007/09/11 06:22:01 | 000,282,624 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrses.dll
[2007/09/11 06:22:01 | 000,282,624 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsel.dll
[2007/09/11 06:22:01 | 000,278,528 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsit.dll
[2007/09/11 06:22:01 | 000,278,528 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsde.dll
[2007/09/11 06:22:01 | 000,274,432 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsnl.dll
[2007/09/11 06:22:01 | 000,274,432 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsesm.dll
[2007/09/11 06:22:01 | 000,266,240 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsja.dll
[2007/09/11 06:22:01 | 000,258,048 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsko.dll
[2007/09/11 06:22:01 | 000,258,048 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrshu.dll
[2007/09/11 06:22:01 | 000,253,952 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsno.dll
[2007/09/11 06:22:01 | 000,253,952 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsda.dll
[2007/09/11 06:22:01 | 000,249,856 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsfi.dll
[2007/09/11 06:22:01 | 000,249,856 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrscs.dll
[2007/09/11 06:22:01 | 000,245,760 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrseng.dll
[2007/09/11 06:22:01 | 000,229,376 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvmccs.dll
[2007/09/11 06:22:01 | 000,188,416 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvmccss.dll
[2007/09/11 06:22:01 | 000,081,920 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvmctray.dll
[2007/09/11 06:22:01 | 000,045,056 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvmccsrs.dll
[2007/09/11 06:22:00 | 003,334,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvgames.dll
[2007/09/11 06:22:00 | 000,307,200 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvexpbar.dll
[2007/09/11 06:21:59 | 006,344,704 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvdisps.dll
[2007/09/11 06:21:59 | 005,509,120 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvdispsr.dll
[2007/09/11 06:21:58 | 008,491,008 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcpl.dll
[2007/09/11 06:21:58 | 001,073,152 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcpluir.dll
[2007/09/11 06:21:58 | 000,753,664 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcplui.exe
[2007/09/11 06:21:58 | 000,413,696 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcpl.cpl
[2007/09/11 06:21:57 | 000,364,544 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvapi.dll
[2007/09/11 06:21:57 | 000,036,864 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcodins.dll
[2007/09/11 06:21:57 | 000,036,864 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcod.dll
[2007/09/11 06:21:47 | 000,265,416 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\Prounstl.exe
[2007/09/11 06:21:47 | 000,243,928 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\drivers\e1e5132.sys
[2007/09/11 06:21:47 | 000,121,440 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\e1000msg.dll
[2007/09/11 06:21:47 | 000,074,944 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\NicInstE.dll
[2007/09/11 06:21:47 | 000,066,424 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\NicEtCoE.dll
[2007/09/11 06:21:47 | 000,028,536 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\NicCo.dll
[2007/09/11 06:21:41 | 009,715,200 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RTLCPL.EXE
[2007/09/11 06:21:41 | 001,822,720 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SkyTel.exe
[2007/09/11 06:21:41 | 001,191,936 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RtlUpd.exe
[2007/09/11 06:21:41 | 000,282,624 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\RTSndMgr.CPL
[2007/09/11 06:21:41 | 000,086,016 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SOUNDMAN.EXE
[2007/09/11 06:21:40 | 004,403,712 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\drivers\RtkHDAud.sys
[2007/09/11 06:21:39 | 002,808,832 | ---- | C] (RealTek Semicoductor Corp.) -- C:\WINDOWS\ALCWZRD.EXE
[2007/09/11 06:21:39 | 002,162,688 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\MicCal.exe
[2007/09/11 06:21:39 | 000,299,008 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\ALSNDMGR.CPL
[2007/09/11 06:21:39 | 000,069,632 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\ALCMTR.EXE
[2007/09/11 06:21:36 | 000,000,000 | ---D | C] -- C:\drivers
[2007/09/10 00:24:54 | 000,544,768 | ---- | C] (Stardock Corporation) -- C:\WINDOWS\System32\wbocx.ocx
[2007/08/30 23:52:48 | 000,056,496 | ---- | C] (Stardock.Net, Inc) -- C:\WINDOWS\System32\wbhelp2.dll
[2007/08/30 23:52:48 | 000,033,968 | ---- | C] (Neil Banfield) -- C:\WINDOWS\System32\anim.dll
[2007/08/06 19:28:34 | 000,028,272 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\NicCo2.dll
[2007/07/30 13:19:12 | 000,044,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wups2.dll
[2007/07/30 13:19:02 | 000,015,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuapi.dll.mui
[2007/07/30 13:18:44 | 000,021,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wucltui.dll.mui
[2007/03/22 14:17:04 | 000,035,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\FM20ENU.DLL
[2007/03/20 16:22:04 | 000,972,336 | ---- | C] (Nero AG) -- C:\WINDOWS\UNNeroBackItUp.exe
[2007/02/25 06:10:48 | 000,005,376 | --S- | C] (Gteko Ltd.) -- C:\WINDOWS\System32\drivers\dsunidrv.sys
[2007/02/12 14:36:54 | 000,277,784 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\drivers\iastor.sys
[2007/01/02 17:48:35 | 000,000,000 | ---D | C] -- C:\msdownld.tmp
[2007/01/02 11:30:32 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mouclass.sys
[2007/01/02 11:30:32 | 000,012,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mouhid.sys
[2007/01/01 17:12:43 | 000,000,000 | ---D | C] -- C:\Program Files\Active Data Recovery Software
[2007/01/01 04:59:46 | 000,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\spxcoins.dll
[2007/01/01 04:59:46 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\irclass.dll
[2007/01/01 04:00:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\dell
[2007/01/01 03:39:27 | 000,000,000 | ---D | C] -- C:\found.001
[2007/01/01 00:15:34 | 000,647,728 | ---- | C] (Xceed Software Inc. 1-450-442-2626 info@xceedsoft.com www.xceedsoft.com) -- C:\R92578.EXE
[2006/12/31 19:45:20 | 000,050,688 | ---- | C] (Atribune.org) -- C:\Documents and Settings\Administrator\Desktop\ATF-Cleaner.exe
[2006/12/31 19:43:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\Birdstep Technology
[2006/12/31 19:39:05 | 000,157,472 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
[2006/12/31 19:39:05 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
[2006/12/31 19:39:05 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
[2006/12/31 19:39:05 | 000,073,728 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javacpl.cpl
[25 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\*.tmp files -> C:\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2010/12/24 00:56:00 | 000,000,410 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{9453D5F3-28BC-47B0-BFC1-2C8D7B24ECB1}.job
[2010/12/24 00:44:59 | 016,561,952 | ---- | M] (Sun Microsystems, Inc.) -- C:\Documents and Settings\Administrator\Desktop\jre-6u23-windows-i586.exe
[2010/12/23 17:20:00 | 000,000,884 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2010/12/23 17:07:35 | 000,000,815 | ---- | M] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2010/12/23 15:08:42 | 003,997,850 | R--- | M] () -- C:\Documents and Settings\Administrator\Desktop\ComboFix.exe
[2010/12/23 12:58:12 | 000,000,490 | -H-- | M] () -- C:\WINDOWS\tasks\Norton Security Scan for Administrator.job
[2010/12/23 12:58:12 | 000,000,474 | -H-- | M] () -- C:\WINDOWS\tasks\Norton Security Scan for David.job
[2010/12/23 12:41:04 | 000,000,721 | ---- | M] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\FlashPeak SlimBrowser.lnk
[2010/12/23 10:50:42 | 000,000,327 | RHS- | M] () -- C:\boot.ini
[2010/12/23 10:37:47 | 000,000,715 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\FlashPeak SlimBrowser.lnk
[2010/12/23 10:30:31 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\null
[2010/12/23 10:29:39 | 000,000,000 | ---- | M] () -- C:\autoexec.bat
[2010/12/23 10:29:17 | 000,512,314 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010/12/23 10:29:16 | 000,090,732 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010/12/23 10:21:04 | 000,693,664 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010/12/23 08:45:25 | 000,000,210 | ---- | M] () -- C:\Boot.bak
[2010/12/20 13:09:00 | 000,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2010/12/20 13:08:40 | 000,020,952 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2010/12/17 07:24:05 | 000,000,098 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\Hosts
[2010/12/16 20:57:34 | 003,992,266 | ---- | M] () -- C:\Documents and Settings\David\Desktop\ComboFix.exe
[2010/12/16 20:45:31 | 001,230,779 | ---- | M] () -- C:\Documents and Settings\David\Desktop\tdsskiller.zip
[2010/12/14 03:19:04 | 000,288,107 | ---- | M] () -- C:\Documents and Settings\David\Desktop\gmer.zip
[2010/12/14 02:59:46 | 000,624,128 | ---- | M] () -- C:\Documents and Settings\David\Desktop\dds.scr
[2010/12/14 02:53:37 | 000,000,040 | ---- | M] () -- C:\Documents and Settings\David\defogger_reenable
[2010/12/14 02:53:13 | 000,050,477 | ---- | M] () -- C:\Documents and Settings\David\Desktop\Defogger.exe
[2010/12/13 11:44:55 | 015,492,608 | ---- | M] (Luis Cobian, CobianSoft) -- C:\Documents and Settings\David\Desktop\cbSetup.exe
[2010/12/10 12:11:22 | 097,909,064 | ---- | M] () -- C:\Documents and Settings\David\Desktop\Norman_Malware_Cleaner.exe
[2010/12/10 09:29:11 | 000,284,000 | ---- | M] () -- C:\Documents and Settings\Administrator\My Documents\Capture1.gif
[2010/12/10 07:28:41 | 000,001,598 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\True Sword.lnk
[2010/12/10 07:09:59 | 000,354,396 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\SysProt.zip
[2010/12/10 06:59:57 | 000,660,752 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\iExplore.exe
[2010/12/09 07:59:28 | 011,843,016 | ---- | M] (Microsoft Corporation) -- C:\Documents and Settings\David\goal-kb890830-v3.13.exe
[2010/12/09 03:30:44 | 195,674,112 | ---- | M] () -- C:\Documents and Settings\Administrator\My Documents\'s.BootCD.10.0.iso
[2010/12/09 03:03:55 | 007,622,112 | ---- | M] (Malwarebytes Corporation ) -- C:\Documents and Settings\Administrator\Desktop\mbam-setup-1.50.0.0.exe
[2010/12/09 02:59:32 | 000,000,136 | ---- | M] () -- C:\Documents and Settings\Administrator\Local Settings\Application Data\fusioncache.dat
[2010/12/09 02:58:38 | 000,000,782 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\Windows Media Player.lnk
[2010/12/09 01:30:54 | 000,098,392 | ---- | M] (Sunbelt Software) -- C:\WINDOWS\System32\drivers\SBREDrv.sys
[2010/12/09 01:20:14 | 000,000,885 | ---- | M] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\Ad-Aware.lnk
[2010/12/09 00:58:56 | 000,092,672 | ---- | M] (Option^Explicit Software vbtechcd@gmail.com) -- C:\Documents and Settings\David\Desktop\KillBox.exe
[2010/12/09 00:34:36 | 000,009,830 | ---- | M] () -- C:\Documents and Settings\David\Desktop\exefix.reg
[2010/12/08 12:05:35 | 000,732,846 | ---- | M] () -- C:\WINDOWS\umcat_01.db
[2010/12/08 11:22:12 | 000,001,973 | ---- | M] () -- C:\Documents and Settings\David\Desktop\SpyHunter.lnk
[2010/12/08 11:20:45 | 000,663,960 | ---- | M] (Enigma Software Group USA, LLC.) -- C:\Documents and Settings\David\Desktop\SpyHunter-Installer.exe
[2010/12/08 10:49:29 | 000,000,745 | ---- | M] () -- C:\Documents and Settings\David\Desktop\xp_exe_fix.zip
[2010/12/08 09:48:08 | 001,344,600 | ---- | M] (Kaspersky Lab ZAO) -- C:\Documents and Settings\David\Desktop\TDSSKiller.exe
[2010/12/08 08:38:32 | 000,000,128 | ---- | M] () -- C:\Documents and Settings\Guest\Local Settings\Application Data\fusioncache.dat
[2010/12/08 08:36:27 | 000,000,815 | ---- | M] () -- C:\Documents and Settings\Guest\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2010/12/08 08:12:03 | 000,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2010/12/08 08:11:39 | 000,136,704 | ---- | M] () -- C:\Documents and Settings\David\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/12/08 05:12:26 | 000,000,782 | ---- | M] () -- C:\Documents and Settings\Guest\Desktop\Windows Media Player.lnk
[2010/12/08 05:06:48 | 000,000,951 | ---- | M] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\Spybot - Search & Destroy.lnk
[2010/12/08 05:06:48 | 000,000,933 | ---- | M] () -- C:\Documents and Settings\David\Desktop\Spybot - Search & Destroy.lnk
[2010/12/08 05:03:10 | 000,000,329 | ---- | M] () -- C:\Documents and Settings\David\Desktop\fix.reg
[2010/12/08 04:51:42 | 006,872,936 | ---- | M] (PC Tools Research Pty. Ltd. ) -- C:\Documents and Settings\David\Desktop\sdtrial-regnow.exe
[2010/12/08 04:08:17 | 000,000,184 | ---- | M] () -- C:\Documents and Settings\David\Desktop\NPE.ctl
[2010/12/08 04:08:13 | 005,716,848 | ---- | M] () -- C:\Documents and Settings\David\Desktop\NPE.exe
[2010/12/08 03:34:58 | 000,000,349 | ---- | M] () -- C:\Documents and Settings\David\fix.reg
[2010/12/08 03:15:29 | 000,660,752 | ---- | M] () -- C:\Documents and Settings\David\Desktop\iExplore.exe
[2010/12/08 03:14:33 | 000,660,752 | ---- | M] () -- C:\Documents and Settings\David\Desktop\rkill.scr
[2010/12/08 03:12:41 | 000,660,752 | ---- | M] () -- C:\Documents and Settings\David\Desktop\rkill.exe
[2010/12/08 01:37:27 | 000,114,243 | ---- | M] () -- C:\WINDOWS\System32\drivers\klin.dat
[2010/12/08 01:37:27 | 000,097,859 | ---- | M] () -- C:\WINDOWS\System32\drivers\klick.dat
[2010/12/04 20:21:12 | 000,001,791 | ---- | M] () -- C:\Documents and Settings\Guest\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2010/12/03 04:05:34 | 000,064,288 | ---- | M] (Lavasoft AB) -- C:\WINDOWS\System32\drivers\Lbd.sys
[2010/12/02 06:51:29 | 000,018,274 | ---- | M] () -- C:\Documents and Settings\David\My Documents\care_comm_02_12_10.odt
[2010/12/01 05:35:55 | 000,001,047 | ---- | M] () -- C:\Documents and Settings\David\Desktop\RadioSure.lnk
[2010/11/25 02:56:37 | 000,000,721 | ---- | M] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\FlashPeak SlimBrowser.lnk
[2010/11/19 16:09:58 | 000,001,620 | ---- | M] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2010/11/19 16:08:50 | 006,198,784 | ---- | M] () -- C:\Documents and Settings\David\Desktop\Softonic-de3.exe
[2010/11/19 16:07:53 | 000,597,503 | ---- | M] () -- C:\Documents and Settings\David\Desktop\downloadhelper-4.8.xpi.zip
[2010/11/19 16:07:53 | 000,597,503 | ---- | M] () -- C:\Documents and Settings\David\Desktop\downloadhelper-4.8.xpi
[2010/11/18 13:12:44 | 000,081,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\isign32.dll
[2010/11/16 10:56:19 | 000,000,038 | ---- | M] () -- C:\WINDOWS\AviSplitter.INI
[2010/11/16 03:13:17 | 000,000,625 | ---- | M] () -- C:\Documents and Settings\David\Desktop\Shortcut to webid.pdf.lnk
[2010/11/12 15:50:40 | 000,507,360 | ---- | M] () -- C:\Documents and Settings\David\Desktop\sdsetup_aff.exe
[2010/11/12 15:50:40 | 000,507,360 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\sdsetup_aff.exe
[2010/11/08 05:32:38 | 000,296,448 | ---- | M] () -- C:\Documents and Settings\David\My Documents\gmer.exe
[2010/11/08 05:32:38 | 000,296,448 | ---- | M] () -- C:\Documents and Settings\David\Desktop\gmer.exe
[2010/11/07 20:20:24 | 000,089,088 | ---- | M] () -- C:\WINDOWS\MBR.exe
[2010/11/07 14:29:06 | 000,000,167 | ---- | M] () -- C:\Documents and Settings\David\udownload.dat
[2010/11/07 05:48:21 | 000,001,546 | ---- | M] () -- C:\Documents and Settings\David\Desktop\Picture To Icon.lnk
[2010/11/07 05:48:21 | 000,000,022 | ---- | M] () -- C:\WINDOWS\System32\msxml.p2i
[2010/11/07 05:48:21 | 000,000,022 | ---- | M] () -- C:\WINDOWS\msxml.p2i
[2010/11/02 11:47:16 | 035,758,536 | ---- | M] () -- C:\Documents and Settings\David\mrt.exe
[2010/11/02 11:47:12 | 000,082,376 | ---- | M] (Microsoft Corporation) -- C:\Documents and Settings\David\mrtstub.exe
[2010/10/23 12:55:39 | 000,553,984 | R--- | M] (OldTimer Tools) -- C:\OTLPE.exe
[2010/10/23 11:30:02 | 000,151,566 | ---- | M] () -- C:\WINDOWS\System32\UninstIPP.isu
[2010/10/19 05:41:44 | 000,222,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\MpSigStub.exe
[2010/10/14 05:19:13 | 000,356,856 | ---- | M] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\FontCache3.0.0.0.dat
[2010/10/14 04:11:03 | 000,000,020 | ---- | M] () -- C:\GINA.TEXT
[2010/10/13 13:15:55 | 000,001,393 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2010/10/11 14:35:50 | 000,364,032 | ---- | M] () -- C:\Documents and Settings\David\Desktop\rkill.com
[2010/10/06 13:26:19 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_ccdcmb_01009.Wdf
[2010/10/06 13:26:14 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\MsftWdf_Kernel_01009_Coinstaller_Critical.Wdf
[2010/10/05 07:09:56 | 000,010,508 | ---- | M] () -- C:\Documents and Settings\David\My Documents\cmykVerticalTest.pdf
[2010/10/05 06:32:38 | 000,000,890 | ---- | M] () -- C:\WINDOWS\System32\InstallUtil.InstallLog
[2010/10/03 17:43:44 | 000,059,240 | ---- | M] (Trusteer Ltd.) -- C:\WINDOWS\System32\drivers\RapportKELL.sys
[2010/09/30 23:50:46 | 000,000,450 | ---- | M] () -- C:\Documents and Settings\David\Desktop\Shortcut to Jewel Covers.lnk
[2010/09/28 03:04:50 | 000,001,475 | ---- | M] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\eBay Turbo Lister 2.lnk
[2010/09/24 07:45:33 | 000,376,832 | ---- | M] () -- C:\WINDOWS\System32\AegisI5Installer.exe
[2010/09/23 04:30:35 | 000,000,041 | ---- | M] () -- C:\WLANCUGINA.TEXT
[2010/09/21 18:30:07 | 000,001,409 | ---- | M] () -- C:\Documents and Settings\David\Desktop\truePlay.lnk
[2010/09/21 18:15:59 | 000,001,418 | ---- | M] () -- C:\Documents and Settings\David\Desktop\trueSpace7.61 Beta 8 Standalone.lnk
[2010/09/21 18:12:47 | 000,000,065 | ---- | M] () -- C:\WINDOWS\Caligari.ini
[2010/09/20 17:31:02 | 000,048,439 | ---- | M] () -- C:\Documents and Settings\David\My Documents\kitchen_01.png
[2010/09/15 12:49:06 | 001,044,480 | R--- | M] (eHelp Corporation.) -- C:\WINDOWS\System32\roboex32.dll
[2010/09/15 12:49:06 | 000,049,152 | R--- | M] (Blue Sky Software Corporation.) -- C:\WINDOWS\System32\inetwh32.dll
[2010/09/14 02:08:30 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb
[2010/09/14 02:08:30 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb
[2010/09/13 16:18:39 | 000,000,000 | -H-- | M] () -- C:\Documents and Settings\David\My Documents\1255.mpg.dls.bak
[2010/09/13 16:08:24 | 000,001,978 | ---- | M] () -- C:\Documents and Settings\David\Desktop\Media Player Classic - Home Cinema.lnk
[2010/09/13 16:07:46 | 005,165,571 | ---- | M] (MPC-HC Team ) -- C:\Documents and Settings\David\My Documents\MPC-HomeCinema.1.4.2499.0.x86.exe
[2010/09/13 15:57:12 | 000,000,800 | ---- | M] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk
[2010/09/13 15:57:12 | 000,000,782 | ---- | M] () -- C:\Documents and Settings\David\Desktop\Windows Media Player.lnk
[2010/09/12 14:40:27 | 000,015,781 | ---- | M] (Meetinghouse Data Communications) -- C:\WINDOWS\System32\drivers\mdc8021x.sys
[2010/09/12 14:02:41 | 011,630,887 | ---- | M] () -- C:\Documents and Settings\David\My Documents\HA311v12.zip
[2010/09/12 09:56:49 | 005,229,582 | ---- | M] ( ) -- C:\Documents and Settings\David\My Documents\DRV - XWL-11GUAR.exe
[2010/09/10 12:36:31 | 000,000,172 | ---- | M] () -- C:\WINDOWS\System32\drivers\NSS\0207030.022\isolate.ini
[2010/09/10 09:32:55 | 000,850,200 | ---- | M] (DivX, Inc. ) -- C:\Documents and Settings\David\My Documents\DivXInstaller.exe
[2010/09/10 09:10:54 | 017,267,848 | ---- | M] () -- C:\Documents and Settings\David\My Documents\R158511.exe
[2010/09/10 09:07:04 | 067,071,024 | ---- | M] (Xceed Software Inc. 1-450-442-2626 info@xceedsoft.com www.xceedsoft.com) -- C:\Documents and Settings\David\My Documents\R170352.EXE
[2010/09/10 07:59:19 | 000,212,023 | ---- | M] () -- C:\Documents and Settings\David\My Documents\YourBTbill_30082010.pdf
[2010/09/10 07:43:25 | 000,075,927 | ---- | M] () -- C:\Documents and Settings\David\My Documents\ROWAN_JM-GF-Colour7-counc_tax-5035-OUTPUT_0370_001.pdf
[2010/09/09 10:35:00 | 000,082,704 | ---- | M] () -- C:\Documents and Settings\David\My Documents\ROWAN_JM-GF-Colour7-counc_tax-5035-OUTPUT_0368_001.pdf
[2010/09/08 11:30:55 | 000,014,283 | ---- | M] () -- C:\Documents and Settings\David\My Documents\bcw1.odt
[2010/09/08 11:30:44 | 000,016,896 | ---- | M] () -- C:\Documents and Settings\David\My Documents\talktalk2.doc
[2010/09/08 11:12:26 | 000,015,360 | ---- | M] () -- C:\Documents and Settings\David\My Documents\talktalk.doc
[2010/09/02 02:21:14 | 000,131,072 | ---- | M] (Eastman Kodak Company) -- C:\WINDOWS\System32\EKIJCOINST09.dll
[2010/09/02 02:17:46 | 000,421,888 | ---- | M] (Eastman Kodak Company) -- C:\WINDOWS\System32\EKIJ5000MON.dll
[2010/08/27 05:47:33 | 000,000,375 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts.ics
[2010/08/24 09:22:26 | 000,001,791 | ---- | M] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2010/08/11 23:07:46 | 002,120,176 | ---- | M] (Sonic Solutions) -- C:\WINDOWS\System32\PxSFS.DLL
[2010/08/11 23:07:46 | 000,698,864 | ---- | M] (Sonic Solutions) -- C:\WINDOWS\System32\Px.dll
[2010/08/11 23:07:46 | 000,567,792 | ---- | M] (Sonic Solutions) -- C:\WINDOWS\System32\pxdrv.dll
[2010/08/11 23:07:46 | 000,440,816 | ---- | M] (Sonic Solutions) -- C:\WINDOWS\System32\PxWave.dll
[2010/08/11 23:07:46 | 000,219,632 | ---- | M] (Sonic Solutions) -- C:\WINDOWS\System32\PxMas.dll
[2010/08/11 23:07:46 | 000,133,616 | ---- | M] (Sonic Solutions) -- C:\WINDOWS\System32\PxAFS.DLL
[2010/08/11 23:07:46 | 000,126,448 | ---- | M] (Sonic Solutions) -- C:\WINDOWS\System32\pxinsi64.exe
[2010/08/11 23:07:46 | 000,123,888 | ---- | M] (Sonic Solutions) -- C:\WINDOWS\System32\pxcpyi64.exe
[2010/08/11 23:07:46 | 000,100,848 | ---- | M] (Sonic Solutions) -- C:\WINDOWS\System32\VXBLOCK.dll
[2010/08/11 23:07:46 | 000,072,176 | ---- | M] (Sonic Solutions) -- C:\WINDOWS\System32\pxhpinst.exe
[2010/08/11 23:07:46 | 000,068,592 | ---- | M] (Sonic Solutions) -- C:\WINDOWS\System32\pxinsa64.exe
[2010/08/11 23:07:46 | 000,068,080 | ---- | M] (Sonic Solutions) -- C:\WINDOWS\System32\pxcpya64.exe
[2010/07/15 05:23:38 | 000,654,456 | ---- | M] (Intel® Corporation) -- C:\WINDOWS\System32\ncs2dmix.dll
[2010/07/15 05:23:38 | 000,506,488 | ---- | M] (Intel® Corporation) -- C:\WINDOWS\System32\accesor.dll
[2010/07/14 04:16:44 | 000,182,784 | ---- | M] (Intel® Corporation) -- C:\WINDOWS\System32\Ncs2Setp.dll
[2010/07/14 03:39:00 | 000,134,264 | ---- | M] (Intel® Corporation) -- C:\WINDOWS\System32\ncs2instutility.dll
[2010/07/14 03:20:10 | 001,813,112 | ---- | M] (Intel® Corporation) -- C:\WINDOWS\System32\ncscolib.dll
[2010/07/09 03:09:38 | 000,013,252 | ---- | M] () -- C:\Documents and Settings\David\My Documents\g4_docu.odt
[2010/07/02 09:22:04 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\UMDF\Msft_User_PCCSWpdDriver_01_05_00.Wdf
[2010/07/02 09:21:27 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_05_00.Wdf
[2010/07/02 07:45:01 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\UMDF\Msft_User_WpdMtpDr_01_00_00.Wdf
[2010/07/02 07:44:47 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_ccdcmb_01007.Wdf
[2010/07/02 07:44:44 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\MsftWdf_Kernel_01007_Coinstaller_Critical.Wdf
[2010/07/02 06:53:28 | 000,001,876 | ---- | M] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\Nokia Music.lnk
[2010/06/21 08:43:16 | 000,030,880 | ---- | M] (Intel Corporation ) -- C:\WINDOWS\System32\drivers\iqvw32.sys
[2010/06/10 00:48:38 | 000,239,768 | ---- | M] (Intel Corporation) -- C:\WINDOWS\System32\PRONtObj.dll
[2010/06/07 09:45:25 | 000,019,724 | ---- | M] () -- C:\Documents and Settings\David\My Documents\morrisons.odt
[2010/06/01 22:55:30 | 000,527,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_7.dll
[2010/06/01 22:55:30 | 000,239,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_7.dll
[2010/06/01 22:55:30 | 000,074,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\XAPOFX1_5.dll
[2010/05/27 03:14:20 | 000,001,668 | ---- | M] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\3Connect.lnk
[2010/05/27 03:13:07 | 000,071,259 | ---- | M] () -- C:\WINDOWS\Huawei ModemsUninstall.exe
[2010/05/27 03:05:10 | 000,000,292 | ---- | M] () -- C:\WINDOWS\wininit.ini
[2010/05/26 05:41:02 | 002,106,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_43.dll
[2010/05/26 05:41:02 | 001,998,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_43.dll
[2010/05/26 05:41:02 | 001,868,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dcsx_43.dll
[2010/05/26 05:41:02 | 000,470,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_43.dll
[2010/05/26 05:41:02 | 000,248,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx11_43.dll
[2010/05/25 07:24:08 | 000,356,352 | ---- | M] (eSellerate Inc.) -- C:\WINDOWS\eSellerateEngine.dll
[2010/05/25 07:24:08 | 000,081,920 | ---- | M] (eSellerate Inc.) -- C:\WINDOWS\eSellerateControl350.dll
[2010/05/07 11:41:40 | 000,265,416 | ---- | M] (Intel Corporation) -- C:\WINDOWS\System32\Prounstl.exe
[2010/04/27 01:52:04 | 000,117,456 | ---- | M] (Intel Corporation) -- C:\WINDOWS\System32\drivers\ianswxp.sys
[2010/04/26 17:04:42 | 000,353,592 | ---- | M] (DivX, Inc.) -- C:\WINDOWS\System32\DivXControlPanelApplet.cpl
[2010/04/26 10:58:12 | 000,256,512 | ---- | M] () -- C:\WINDOWS\PEV.exe
[2010/04/25 11:08:04 | 000,000,793 | ---- | M] () -- C:\Documents and Settings\David\Desktop\Hello Engines! Standard 6.lnk
[2010/04/13 18:45:14 | 000,074,944 | ---- | M] (Intel Corporation) -- C:\WINDOWS\System32\NicInstE.dll
[2010/04/11 14:15:28 | 000,001,565 | ---- | M] () -- C:\Documents and Settings\David\Desktop\IrfanView Thumbnails.lnk
[2010/04/11 14:15:28 | 000,000,685 | ---- | M] () -- C:\Documents and Settings\David\Desktop\IrfanView.lnk
[2010/04/10 09:18:28 | 000,119,828 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml
[2010/04/09 09:57:32 | 000,000,815 | ---- | M] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2010/03/31 08:22:35 | 000,000,008 | ---- | M] () -- C:\Documents and Settings\David\Desktop\New Rich Text Document.rtf
[2010/03/31 06:15:24 | 000,000,720 | ---- | M] () -- C:\Documents and Settings\David\Desktop\Audiobook Cutter FE.lnk
[2010/03/30 18:16:34 | 000,099,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\PresentationHostProxy.dll
[2010/03/30 18:10:40 | 000,295,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\PresentationHost.exe
[2010/03/30 06:24:40 | 000,317,440 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mp4sdecd.dll
[2010/03/25 18:59:22 | 000,243,928 | ---- | M] (Intel Corporation) -- C:\WINDOWS\System32\drivers\e1e5132.sys
[2010/03/25 04:27:09 | 000,604,488 | ---- | M] (TuneUp Software) -- C:\WINDOWS\System32\TUProgSt.exe
[2010/03/25 04:27:06 | 000,361,288 | ---- | M] (TuneUp Software) -- C:\WINDOWS\System32\TuneUpDefragService.exe
[2010/03/18 07:16:28 | 000,771,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msvcr100_clr0400.dll
[2010/03/18 07:16:28 | 000,486,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\evr.dll
[2010/03/18 07:16:28 | 000,070,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dxva2.dll
[2010/03/11 07:38:54 | 001,168,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\urlmon.dll
[2010/03/11 07:38:54 | 000,832,512 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wininet.dll
[2010/03/11 07:38:54 | 000,233,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\webcheck.dll
[2010/03/11 07:38:53 | 003,599,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mshtml.dll
[2010/03/11 07:38:53 | 000,671,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mstime.dll
[2010/03/11 07:38:53 | 000,671,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstime.dll
[2010/03/11 07:38:53 | 000,477,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mshtmled.dll
[2010/03/11 07:38:53 | 000,459,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msfeeds.dll
[2010/03/11 07:38:53 | 000,459,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeeds.dll
[2010/03/11 07:38:53 | 000,193,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msrating.dll
[2010/03/11 07:38:53 | 000,193,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msrating.dll
[2010/03/11 07:38:53 | 000,105,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\url.dll
[2010/03/11 07:38:53 | 000,105,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\url.dll
[2010/03/11 07:38:53 | 000,102,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\occache.dll
[2010/03/11 07:38:53 | 000,052,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msfeedsbs.dll
[2010/03/11 07:38:53 | 000,052,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeedsbs.dll
[2010/03/11 07:38:53 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\pngfilt.dll
[2010/03/11 07:38:53 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pngfilt.dll
[2010/03/11 07:38:52 | 006,067,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieframe.dll
[2010/03/11 07:38:52 | 001,830,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\inetcpl.cpl
[2010/03/11 07:38:52 | 001,830,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetcpl.cpl
[2010/03/11 07:38:52 | 000,268,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iertutil.dll
[2010/03/11 07:38:52 | 000,192,512 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\iepeers.dll
[2010/03/11 07:38:52 | 000,192,512 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iepeers.dll
[2010/03/11 07:38:52 | 000,078,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ieencode.dll
[2010/03/11 07:38:52 | 000,078,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieencode.dll
[2010/03/11 07:38:52 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\iernonce.dll
[2010/03/11 07:38:52 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iernonce.dll
[2010/03/11 07:38:52 | 000,027,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\jsproxy.dll
[2010/03/11 07:38:52 | 000,027,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jsproxy.dll
[2010/03/11 07:38:51 | 000,385,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\iedkcs32.dll
[2010/03/11 07:38:51 | 000,385,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iedkcs32.dll
[2010/03/11 07:38:51 | 000,380,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ieapfltr.dll
[2010/03/11 07:38:51 | 000,380,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieapfltr.dll
[2010/03/11 07:38:51 | 000,347,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dxtmsft.dll
[2010/03/11 07:38:51 | 000,347,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dxtmsft.dll
[2010/03/11 07:38:51 | 000,230,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ieaksie.dll
[2010/03/11 07:38:51 | 000,230,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieaksie.dll
[2010/03/11 07:38:51 | 000,214,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dxtrans.dll
[2010/03/11 07:38:51 | 000,214,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dxtrans.dll
[2010/03/11 07:38:51 | 000,153,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ieakeng.dll
[2010/03/11 07:38:51 | 000,153,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieakeng.dll
[2010/03/11 07:38:51 | 000,124,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\advpack.dll
[2010/03/11 07:38:51 | 000,063,488 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icardie.dll
[2010/03/11 07:38:51 | 000,017,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\corpol.dll
[2010/03/11 07:38:51 | 000,017,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\corpol.dll
[2010/03/10 14:29:32 | 000,094,208 | ---- | M] (DivX, Inc.) -- C:\WINDOWS\System32\dpl100.dll
[2010/03/10 08:18:46 | 000,389,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\html.iec
[2010/03/10 08:18:20 | 000,070,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ie4uinit.exe
[2010/03/10 08:18:20 | 000,070,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ie4uinit.exe
[2010/03/04 09:55:31 | 000,001,476 | ---- | M] () -- C:\Documents and Settings\David\Desktop\TONG!.lnk
[2010/03/04 09:04:40 | 000,001,848 | ---- | M] () -- C:\Documents and Settings\David\Desktop\Secret Maryo Chronicles.lnk
[2010/03/04 08:47:15 | 000,001,681 | ---- | M] () -- C:\Documents and Settings\David\Desktop\Bubble Train.lnk
[2010/02/28 08:52:55 | 008,118,438 | ---- | M] () -- C:\Documents and Settings\David\My Documents\veetle-0.9.16.exe
[2010/02/26 08:32:58 | 000,008,192 | ---- | M] (Nokia) -- C:\WINDOWS\System32\drivers\usbser_lowerfltj.sys
[2010/02/26 08:32:52 | 000,662,016 | ---- | M] (Nokia) -- C:\WINDOWS\System32\nmwcdcocls.dll
[2010/02/26 08:32:50 | 000,092,672 | ---- | M] (Nokia) -- C:\WINDOWS\System32\nmwcdcls.dll
[2010/02/26 08:32:46 | 000,008,192 | ---- | M] (Nokia) -- C:\WINDOWS\System32\drivers\usbser_lowerflt.sys
[2010/02/26 08:32:44 | 000,022,528 | ---- | M] (Nokia) -- C:\WINDOWS\System32\drivers\ccdcmbo.sys
[2010/02/26 08:32:44 | 000,018,176 | ---- | M] (Nokia) -- C:\WINDOWS\System32\drivers\ccdcmb.sys
[2010/02/26 08:19:00 | 001,461,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wdfcoinstaller01009.dll
[2010/02/23 11:08:19 | 000,029,921 | ---- | M] () -- C:\Documents and Settings\David\My Documents\astrid_gov_02_10.odt
[2010/02/23 00:20:02 | 000,634,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iexplore.exe
[2010/02/23 00:18:28 | 000,161,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ieakui.dll
[2010/02/23 00:18:28 | 000,161,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieakui.dll
[2010/02/19 14:27:36 | 000,720,384 | ---- | M] (DivX, Inc.) -- C:\WINDOWS\System32\DivX.dll
[2010/02/19 14:27:16 | 000,856,064 | ---- | M] (DivX, Inc.) -- C:\WINDOWS\System32\divx_xx0c.dll
[2010/02/19 14:27:16 | 000,856,064 | ---- | M] (DivX, Inc.) -- C:\WINDOWS\System32\divx_xx07.dll
[2010/02/19 14:27:16 | 000,847,872 | ---- | M] (DivX, Inc.) -- C:\WINDOWS\System32\divx_xx0a.dll
[2010/02/19 14:27:16 | 000,843,776 | ---- | M] (DivX, Inc.) -- C:\WINDOWS\System32\divx_xx16.dll
[2010/02/19 14:27:16 | 000,839,680 | ---- | M] (DivX, Inc.) -- C:\WINDOWS\System32\divx_xx11.dll
[2010/02/17 05:41:03 | 000,000,664 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat
[2010/02/15 13:00:00 | 000,278,528 | ---- | M] (Real Networks, Inc) -- C:\WINDOWS\System32\pncrt.dll
[2010/02/15 13:00:00 | 000,185,920 | ---- | M] (RealNetworks, Inc.) -- C:\WINDOWS\System32\rmoc3260.dll
[2010/02/15 13:00:00 | 000,006,656 | ---- | M] (RealNetworks, Inc.) -- C:\WINDOWS\System32\pndx5016.dll
[2010/02/15 13:00:00 | 000,005,632 | ---- | M] (RealNetworks, Inc.) -- C:\WINDOWS\System32\pndx5032.dll
[2010/02/12 05:03:03 | 000,293,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\browserchoice.exe
[2010/02/10 03:54:45 | 000,691,696 | ---- | M] (Duplex Secure Ltd.) -- C:\WINDOWS\System32\drivers\sptd.sys
[2010/02/08 06:51:50 | 000,001,546 | ---- | M] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\ImgBurn.lnk
[2010/02/08 06:51:50 | 000,001,528 | ---- | M] () -- C:\Documents and Settings\David\Desktop\ImgBurn.lnk
[2010/02/05 03:10:18 | 000,002,370 | ---- | M] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\Nero StartSmart Essentials.lnk
[2010/02/05 03:10:18 | 000,002,272 | ---- | M] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\Nero Home Essentials SE.lnk
[2010/02/05 03:08:31 | 000,001,024 | ---- | M] () -- C:\Documents and Settings\David\.rnd
[2010/02/04 04:01:14 | 000,528,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_6.dll
[2010/02/04 04:01:14 | 000,238,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_6.dll
[2010/02/04 04:01:14 | 000,074,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\XAPOFX1_4.dll
[2010/02/04 04:01:14 | 000,022,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\X3DAudio1_7.dll
[2010/02/02 06:08:58 | 000,030,536 | ---- | M] (TuneUp Software) -- C:\WINDOWS\System32\TURegOpt.exe
[2010/01/28 07:35:24 | 000,010,240 | ---- | M] () -- C:\WINDOWS\System32\drivers\mdvrmng.sys
[2010/01/28 07:34:32 | 000,113,280 | ---- | M] (Huawei Technologies Co., Ltd.) -- C:\WINDOWS\System32\drivers\ewusbnet.sys
[2010/01/28 07:34:32 | 000,102,528 | ---- | M] (Huawei Technologies Co., Ltd.) -- C:\WINDOWS\System32\drivers\ewusbmdm.sys
[2010/01/28 07:34:32 | 000,100,736 | ---- | M] (Huawei Technologies Co., Ltd.) -- C:\WINDOWS\System32\drivers\ewusbdev.sys
[2010/01/28 07:34:32 | 000,024,448 | ---- | M] (Huawei Tech. Co., Ltd.) -- C:\WINDOWS\System32\drivers\ewdcsc.sys
[2010/01/27 06:01:55 | 558,369,298 | ---- | M] () -- C:\Documents and Settings\David\My Documents\OOo_3.1.1_090909_Win32Intel_install_en-US_de_hu_it_fr.exe
[2010/01/15 10:18:49 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx
[2010/01/14 06:09:28 | 000,011,773 | ---- | M] () -- C:\Documents and Settings\David\My Documents\post_office_monthly.odt
[2010/01/13 16:30:13 | 006,168,272 | ---- | M] (LightScribe ) -- C:\Documents and Settings\David\My Documents\LsDiagnosticUtility_1.18.10.2.exe
[2010/01/13 16:19:49 | 000,011,141 | ---- | M] () -- C:\WINDOWS\System32\LexFiles.ulf
[2010/01/13 16:12:42 | 000,000,867 | ---- | M] () -- C:\lxceinst.csv
[2010/01/13 16:12:19 | 000,000,275 | ---- | M] () -- C:\lxcefire.csv
[2010/01/13 16:11:36 | 039,736,848 | ---- | M] (Lexmark International, Inc. ) -- C:\Documents and Settings\David\My Documents\cjb4300EN.exe
[2010/01/13 16:00:21 | 000,000,139 | ---- | M] () -- C:\lxceinst.001
[2010/01/13 16:00:10 | 000,000,275 | ---- | M] () -- C:\lxcefire.001
[2010/01/13 15:58:56 | 000,117,562 | ---- | M] () -- C:\lxceunst.csv
[2010/01/13 07:42:15 | 000,556,639 | ---- | M] () -- C:\Documents and Settings\David\My Documents\bx6vp_1.exe
[2010/01/13 07:40:05 | 000,591,291 | ---- | M] () -- C:\Documents and Settings\David\My Documents\bx6sp2.exe
[2010/01/06 07:03:18 | 000,000,648 | ---- | M] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\LingoPad.lnk
[2009/12/30 06:40:17 | 000,010,933 | ---- | M] () -- C:\Documents and Settings\David\My Documents\untitled_0_2.odt
[2009/12/27 17:26:32 | 000,315,408 | ---- | M] (Kaspersky Lab) -- C:\WINDOWS\System32\drivers\klif.sys
[2009/12/16 13:43:27 | 000,343,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mspaint.exe
[2009/11/27 07:23:59 | 000,000,685 | ---- | M] () -- C:\Documents and Settings\David\Desktop\Simpo PDF Creator.lnk
[2009/11/27 04:57:10 | 000,000,730 | ---- | M] () -- C:\Documents and Settings\David\Desktop\Simpo PDF Merge & Split.lnk
[2009/11/21 14:14:16 | 000,000,746 | ---- | M] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\Dev-PHP.lnk
[2009/11/16 06:25:48 | 000,029,000 | ---- | M] (TuneUp Software) -- C:\WINDOWS\System32\uxtuneup.dll
[2009/11/12 14:02:28 | 000,000,137 | ---- | M] () -- C:\WINDOWS\System32\09wutili.sys
[2009/11/06 19:07:08 | 000,049,488 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\netfxperf.dll
[2009/11/05 07:11:15 | 002,270,797 | ---- | M] () -- C:\Documents and Settings\David\My Documents\ADSL-8000.pdf
[2009/11/04 12:37:22 | 000,000,685 | ---- | M] () -- C:\Documents and Settings\David\Desktop\Free CD Ripper.lnk
[2009/11/04 07:21:32 | 000,022,552 | ---- | M] () -- C:\Documents and Settings\David\My Documents\claimform.pdf
[2009/10/29 06:57:20 | 000,105,472 | ---- | M] () -- C:\WINDOWS\PreConvert.dll
[2009/10/22 07:54:18 | 000,037,392 | ---- | M] (Kaspersky Lab) -- C:\WINDOWS\System32\drivers\57373902.sys
[2009/10/20 15:34:56 | 000,219,664 | ---- | M] (Kaspersky Lab) -- C:\WINDOWS\System32\klogon.dll
[2009/10/19 03:43:08 | 000,001,502 | ---- | M] () -- C:\Documents and Settings\David\Desktop\blinkx beat.lnk
[2009/10/19 03:42:47 | 000,001,613 | ---- | M] () -- C:\Documents and Settings\David\Desktop\Free Dolphins Screensaver.lnk
[2009/10/19 03:42:47 | 000,001,611 | ---- | M] () -- C:\Documents and Settings\David\Desktop\Free Whales ScreenSaver.lnk
[2009/10/19 03:42:47 | 000,001,609 | ---- | M] () -- C:\Documents and Settings\David\Desktop\Free Animated Desktop Wallpaper.lnk
[2009/10/14 16:18:34 | 000,036,880 | ---- | M] (Kaspersky Lab) -- C:\WINDOWS\System32\drivers\klbg.sys
[2009/10/09 17:31:10 | 000,315,408 | ---- | M] (Kaspersky Lab) -- C:\WINDOWS\System32\drivers\5737390.sys
[2009/10/08 08:57:02 | 000,611,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\uiautomationcore.dll
[2009/10/07 03:54:06 | 000,000,851 | ---- | M] () -- C:\Documents and Settings\David\Desktop\Format Factory.lnk
[2009/10/07 03:52:13 | 000,000,705 | ---- | M] () -- C:\Documents and Settings\David\Desktop\Extra Video Creator.lnk
[2009/10/05 15:34:57 | 003,733,706 | ---- | M] (Romain Bourdon (Roms) ) -- C:\Documents and Settings\David\Desktop\WampServer2-APACHE2063.exe
[2009/10/05 15:33:43 | 000,001,174 | ---- | M] () -- C:\WINDOWS\mozver.dat
[2009/10/05 01:50:29 | 000,001,860 | ---- | M] () -- C:\Documents and Settings\David\Desktop\Order Autoplay Menu Designer Online.lnk
[2009/10/05 01:50:29 | 000,000,891 | ---- | M] () -- C:\Documents and Settings\David\Desktop\Autoplay Menu Designer.lnk
[2009/10/02 14:39:44 | 000,019,472 | ---- | M] (Kaspersky Lab) -- C:\WINDOWS\System32\drivers\klmouflt.sys
[2009/09/25 11:59:42 | 000,128,016 | ---- | M] (Kaspersky Lab) -- C:\WINDOWS\System32\drivers\57373901.sys
[2009/09/25 02:20:52 | 000,000,404 | ---- | M] () -- C:\Documents and Settings\David\Desktop\eBay.lnk
[2009/09/25 02:20:52 | 000,000,404 | ---- | M] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\eBay.lnk
[2009/09/24 09:07:20 | 000,389,120 | ---- | M] (SafeApp Software, LLC) -- C:\WINDOWS\System32\RegistryHelperLM.ocx
[2009/09/23 18:30:08 | 000,156,488 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mscorier.dll
[2009/09/14 09:42:46 | 000,032,272 | ---- | M] (Kaspersky Lab) -- C:\WINDOWS\System32\drivers\klim5.sys
[2009/09/09 14:01:40 | 000,027,675 | ---- | M] () -- C:\WINDOWS\System32\drivers\klopp.dat
[2009/09/04 11:44:40 | 000,515,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_5.dll
[2009/09/04 11:44:40 | 000,238,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_5.dll
[2009/09/04 11:44:40 | 000,069,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\XAPOFX1_3.dll
[2009/09/04 11:29:34 | 000,453,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_42.dll
[2009/09/04 11:29:34 | 000,235,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx11_42.dll
[2009/09/04 11:29:32 | 005,501,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dcsx_42.dll
[2009/09/04 11:29:32 | 001,974,616 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_42.dll
[2009/09/04 11:29:30 | 001,892,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_42.dll
[2009/09/01 10:29:50 | 000,128,016 | ---- | M] (Kaspersky Lab) -- C:\WINDOWS\System32\drivers\kl1.sys
[2009/08/21 07:52:09 | 000,009,563 | ---- | M] () -- C:\Documents and Settings\David\My Documents\holidaypark refund 1000.00.odt
[2009/08/18 00:35:20 | 000,001,952 | ---- | M] () -- C:\WINDOWS\System32\objsafe.tlb
[2009/08/14 05:05:25 | 000,083,343 | ---- | M] () -- C:\Documents and Settings\David\My Documents\Registration of managers of care at home services.mht
[2009/08/13 10:16:05 | 000,512,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\jscript.dll
[2009/08/13 10:16:05 | 000,512,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jscript.dll
[2009/08/13 01:12:23 | 000,001,577 | ---- | M] () -- C:\Documents and Settings\David\Desktop\DVD Flick.lnk
[2009/08/11 07:15:08 | 000,244,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msflxgrd.ocx
[2009/08/10 11:04:48 | 004,112,856 | ---- | M] (Two Pilots) -- C:\WINDOWS\PDFCreatorPilot.dll
[2009/08/06 14:24:18 | 000,327,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wucltui.dll
[2009/08/06 14:24:18 | 000,021,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wucltui.dll.mui
[2009/08/06 14:24:10 | 000,044,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wups2.dll
[2009/08/06 14:24:10 | 000,035,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wups.dll
[2009/08/06 14:24:06 | 000,015,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wuapi.dll.mui
[2009/08/06 14:24:04 | 000,096,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cdm.dll
[2009/08/06 14:24:04 | 000,096,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cdm.dll
[2009/08/06 14:23:54 | 000,575,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wuapi.dll
[2009/08/06 14:23:46 | 000,274,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mucltui.dll
[2009/08/06 14:23:46 | 000,016,736 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mucltui.dll.mui
[2009/08/04 13:52:22 | 001,193,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\FM20.DLL
[2009/08/03 09:07:42 | 000,403,816 | ---- | M] () -- C:\WINDOWS\System32\OGACheckControl.dll
[2009/08/03 09:07:42 | 000,322,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\OGAAddin.dll
[2009/08/03 09:07:42 | 000,230,768 | ---- | M] () -- C:\WINDOWS\System32\OGAEXEC.exe
[2009/07/28 18:32:42 | 000,009,543 | ---- | M] () -- C:\Documents and Settings\David\My Documents\raten.ods
[2009/07/24 04:14:57 | 000,000,417 | ---- | M] () -- C:\Documents and Settings\David\Desktop\TalkTalk Connect & Go V6.lnk
[2009/07/23 07:33:52 | 017,777,408 | ---- | M] (TuneUp Software) -- C:\Documents and Settings\David\My Documents\TU2009TrialEN-US.exe
[2009/07/14 09:56:02 | 099,550,188 | ---- | M] () -- C:\Documents and Settings\David\My Documents\regedit_reset.reg
[2009/07/14 04:35:16 | 000,037,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\wdfldr.sys
[2009/07/10 06:15:46 | 000,306,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WLXPGSS.SCR
[2009/06/29 03:33:41 | 002,452,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ieapfltr.dat
[2009/06/29 03:33:41 | 002,452,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieapfltr.dat
[2009/06/16 09:05:28 | 000,000,796 | ---- | M] () -- C:\Documents and Settings\David\Desktop\Iconomize.lnk
[2009/06/11 12:51:38 | 000,049,254 | ---- | M] () -- C:\lxceunst.000
[2009/06/11 00:35:42 | 000,496,128 | ---- | M] ( datenhaus GmbH) -- C:\WINDOWS\System32\dhRichClient3.dll
[2009/06/10 09:30:10 | 000,009,839 | ---- | M] () -- C:\Documents and Settings\David\My Documents\vollmacht doris amberg 11.05.09.odt
[2009/06/01 00:44:24 | 000,010,818 | ---- | M] () -- C:\Documents and Settings\David\My Documents\allocation of duties 2.odt
[2009/05/29 17:42:20 | 000,309,248 | ---- | M] () -- C:\WINDOWS\System32\sqlite36_engine.dll
[2009/05/26 08:47:03 | 000,991,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieframe.dll.mui
[2009/05/24 18:24:06 | 000,350,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mssph.dll
[2009/05/21 11:02:57 | 002,622,551 | ---- | M] () -- C:\WINDOWS\System32\IP_192.212.5.15
[2009/05/21 04:32:21 | 000,000,687 | ---- | M] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\Dictionary.lnk
[2009/05/21 04:31:48 | 000,000,687 | ---- | M] () -- C:\Documents and Settings\David\Desktop\Dictionary.lnk
[2009/05/11 12:32:52 | 000,009,609 | ---- | M] () -- C:\Documents and Settings\David\My Documents\Fr. Cremer Sozi amt 11.05.09.odt
[2009/04/23 03:05:05 | 000,000,985 | ---- | M] () -- C:\Documents and Settings\David\Desktop\Wondershare DVD to Flash Converter.lnk
[2009/04/23 03:05:05 | 000,000,935 | ---- | M] () -- C:\Documents and Settings\David\Desktop\Wondershare Navigator.lnk
[2009/04/22 03:13:18 | 000,001,706 | ---- | M] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\Zoner Photo Studio 11.lnk
[2009/04/21 08:48:20 | 000,017,920 | ---- | M] () -- C:\Documents and Settings\David\My Documents\TENANCY APPLICATION FORM.doc
[2009/04/20 07:56:28 | 000,031,232 | ---- | M] (NirSoft) -- C:\WINDOWS\NIRCMD.exe
[2009/04/20 05:38:39 | 000,000,064 | ---- | M] () -- C:\WINDOWS\System32\Wucom.ucs
[2009/04/20 05:38:20 | 000,000,126 | ---- | M] () -- C:\WINDOWS\Compall.INI
[2009/04/20 05:33:52 | 000,000,009 | ---- | M] () -- C:\WINDOWS\Convsn.d11
[2009/04/15 01:47:21 | 000,009,713 | ---- | M] () -- C:\Documents and Settings\David\My Documents\allocation of daily duities.odt
[2009/04/03 08:12:55 | 000,000,794 | ---- | M] () -- C:\Documents and Settings\David\Desktop\3D Covers Extreme.lnk
[2009/03/25 16:00:05 | 000,013,959 | ---- | M] () -- C:\Documents and Settings\David\My Documents\wirtz.odt
[2009/03/25 07:20:21 | 000,014,057 | ---- | M] () -- C:\Documents and Settings\David\My Documents\arbeitsagentur_david_jun.odt
[2009/03/16 08:18:32 | 000,517,448 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_4.dll
[2009/03/16 08:18:32 | 000,235,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_4.dll
[2009/03/16 08:18:32 | 000,022,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\X3DAudio1_6.dll
[2009/03/11 14:01:28 | 000,023,552 | ---- | M] () -- C:\WINDOWS\System32\DirectCOM.dll
[2009/03/11 06:00:12 | 000,000,655 | ---- | M] () -- C:\Documents and Settings\David\Desktop\AWicons Pro.lnk
[2009/03/10 16:18:14 | 000,934,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\WgaTray.exe
[2009/03/09 09:27:22 | 004,178,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_41.dll
[2009/03/09 09:27:22 | 001,846,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_41.dll
[2009/03/09 09:27:22 | 000,453,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_41.dll
[2009/03/07 22:32:52 | 000,036,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ieudinit.exe
[2009/03/05 07:17:58 | 000,000,091 | -H-- | M] () -- C:\Documents and Settings\David\Application Data\xpy.ini
[2009/03/05 07:16:15 | 000,087,801 | ---- | M] () -- C:\Documents and Settings\Administrator\My Documents\xpy-0.10.9-bin.zip
[2009/02/26 14:25:44 | 000,442,368 | ---- | M] (blinkx) -- C:\WINDOWS\System32\ssblinkx.scr
[2009/02/04 20:49:06 | 000,451,072 | ---- | M] () -- C:\WINDOWS\System32\ISSRemoveSP.exe
[2009/01/29 10:45:23 | 000,009,842 | ---- | M] () -- C:\Documents and Settings\David\My Documents\Glasgow letter 29.01.09.odt
[2009/01/23 06:08:46 | 000,002,495 | ---- | M] () -- C:\Documents and Settings\David\Desktop\Microsoft Office Excel 2003.lnk
[2009/01/22 09:23:29 | 000,000,376 | ---- | M] () -- C:\WINDOWS\ODBC.INI
[2009/01/16 13:16:24 | 000,937,800 | ---- | M] (AceBIT GmbH) -- C:\WINDOWS\System32\acebitaw.dll
[2009/01/14 08:18:04 | 000,014,268 | ---- | M] () -- C:\Documents and Settings\David\My Documents\untitled_0_1.odt
[2009/01/14 08:03:34 | 000,014,313 | ---- | M] () -- C:\Documents and Settings\David\My Documents\untitled_0.odt
[2009/01/14 08:03:33 | 000,009,773 | ---- | M] () -- C:\Documents and Settings\David\My Documents\untitled_1.ods
[2009/01/07 12:20:38 | 000,024,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\nlsdl.dll
[2009/01/07 12:20:36 | 000,026,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\idndl.dll
[2009/01/07 12:20:20 | 000,008,798 | ---- | M] () -- C:\WINDOWS\System32\icrav03.rat
[2009/01/07 12:20:18 | 000,265,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msdbg2.dll
[2008/12/30 06:42:13 | 000,000,721 | ---- | M] () -- C:\Documents and Settings\David\Desktop\FlashPeak SlimBrowser.lnk
[2008/12/18 11:58:01 | 000,000,744 | ---- | M] () -- C:\Documents and Settings\David\Application Data\wklnhst.dat
[2008/12/16 06:07:43 | 000,000,678 | ---- | M] () -- C:\Documents and Settings\David\Desktop\Extra CD DVD Burner.lnk
[2008/12/12 05:18:16 | 000,087,336 | ---- | M] (Apple Inc.) -- C:\WINDOWS\System32\dns-sd.exe
[2008/12/12 05:11:46 | 000,065,536 | ---- | M] (Apple Inc.) -- C:\WINDOWS\System32\jdns_sd.dll
[2008/12/12 05:11:46 | 000,061,440 | ---- | M] (Apple Inc.) -- C:\WINDOWS\System32\dnssd.dll
[2008/12/10 06:58:46 | 000,000,774 | ---- | M] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\InfraRecorder.lnk
[2008/12/04 16:13:02 | 000,094,428 | ---- | M] () -- C:\Documents and Settings\Administrator\My Documents\xpy.exe
[2008/12/03 08:41:35 | 000,037,407 | ---- | M] () -- C:\Documents and Settings\David\My Documents\castle2.gif
[2008/12/03 08:38:03 | 000,048,356 | ---- | M] () -- C:\Documents and Settings\David\My Documents\castle.gif
[2008/12/03 08:35:03 | 000,086,182 | ---- | M] () -- C:\Documents and Settings\David\My Documents\tattoo_2007.gif
[2008/12/03 08:30:54 | 000,144,138 | ---- | M] () -- C:\Documents and Settings\David\My Documents\tattoo_piper.gif
[2008/12/03 08:30:00 | 000,045,900 | ---- | M] () -- C:\Documents and Settings\David\My Documents\tattoo_header.gif
[2008/12/02 08:10:54 | 000,132,865 | ---- | M] () -- C:\Documents and Settings\David\My Documents\tattoo2.gif
[2008/12/02 08:07:33 | 000,318,827 | ---- | M] () -- C:\Documents and Settings\David\My Documents\tattoo.gif
[2008/11/27 12:16:15 | 000,075,776 | ---- | M] () -- C:\Documents and Settings\David\My Documents\contract.doc
[2008/11/18 07:02:32 | 000,016,600 | ---- | M] () -- C:\mvstcdxx.lst
[2008/11/18 07:02:29 | 000,142,128 | ---- | M] () -- C:\Documents and Settings\David\My Documents\mvstcdxx.lst
[2008/11/18 06:13:51 | 000,014,000 | ---- | M] () -- C:\Documents and Settings\David\My Documents\ebay_complaint_181108.odt
[2008/11/18 05:25:40 | 000,012,552 | ---- | M] () -- C:\Documents and Settings\David\My Documents\BBC_complaint.odt
[2008/11/07 12:55:30 | 000,026,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\spupdsvc.exe
[2008/11/07 12:55:30 | 000,016,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsgXP_2k3.dll
[2008/11/06 18:27:34 | 001,081,616 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mscomctl.ocx
[2008/11/06 18:27:08 | 000,067,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\SYSINFO.OCX
[2008/11/06 18:26:32 | 000,212,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\richtx32.ocx
[2008/11/06 18:26:06 | 000,647,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mscomct2.ocx
[2008/11/06 18:26:04 | 000,132,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msinet.ocx
[2008/10/30 19:09:29 | 001,174,471 | ---- | M] () -- C:\Documents and Settings\David\My Documents\recovery.hst
[2008/10/30 06:00:40 | 000,000,674 | ---- | M] () -- C:\Documents and Settings\David\Desktop\WinUtilities.lnk
[2008/10/29 14:19:33 | 000,000,713 | ---- | M] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\Intrusion Detection System - Sax2.lnk
[2008/10/27 04:04:18 | 000,514,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_3.dll
[2008/10/27 04:04:16 | 000,235,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_3.dll
[2008/10/27 04:04:16 | 000,023,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\X3DAudio1_5.dll
[2008/10/27 04:04:14 | 000,070,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\XAPOFX1_2.dll
[2008/10/23 08:21:36 | 000,000,935 | ---- | M] () -- C:\Documents and Settings\David\Desktop\Batch Image Watermarker.lnk
[2008/10/19 16:47:20 | 000,008,743 | ---- | M] () -- C:\Documents and Settings\David\My Documents\Colostoma bag changing record.odt
[2008/10/09 22:52:38 | 004,379,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_40.dll
[2008/10/09 22:52:38 | 002,036,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_40.dll
[2008/10/09 22:52:38 | 000,452,440 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_40.dll
[2008/09/24 07:32:42 | 002,255,133 | ---- | M] () -- C:\Documents and Settings\David\My Documents\cash_book_pro_2008.zip
[2008/09/24 07:23:58 | 000,016,384 | ---- | M] () -- C:\Documents and Settings\David\My Documents\DailyCashFillIn.xls
[2008/09/19 08:30:33 | 000,000,070 | ---- | M] () -- C:\WINDOWS\forbes.ini
[2008/09/19 07:38:27 | 000,000,078 | ---- | M] () -- C:\WINDOWS\fsp.bin
[2008/09/19 07:34:30 | 000,000,000 | ---- | M] () -- C:\WINDOWS\forbes
[2008/09/19 06:56:17 | 013,704,240 | ---- | M] () -- C:\Documents and Settings\David\My Documents\light08.exe
[2008/09/04 08:24:56 | 000,009,718 | ---- | M] () -- C:\Documents and Settings\David\My Documents\t-shirt.odt
[2008/08/31 06:27:26 | 000,028,672 | ---- | M] (-) -- C:\WINDOWS\System32\mousewheel.ocx
[2008/08/26 05:26:12 | 000,018,816 | ---- | M] (Nokia) -- C:\WINDOWS\System32\drivers\pccsmcfd.sys
[2008/08/24 17:29:52 | 000,000,887 | ---- | M] () -- C:\Documents and Settings\David\Desktop\BusinessCardsMX3.lnk
[2008/08/18 02:16:10 | 001,042,598 | ---- | M] () -- C:\Documents and Settings\David\My Documents\musicofsco_jewel.odg
[2008/08/16 03:48:44 | 000,275,158 | ---- | M] () -- C:\Documents and Settings\David\My Documents\Red_Hot_Chilli_Pipers_-_Bagrock_To_The_Masses_(2007)-[Cd]-[www.FreeCovers.net].jpg
[2008/08/16 03:30:14 | 000,259,999 | ---- | M] () -- C:\Documents and Settings\David\My Documents\Red_Hot_Chilli_Pipers_-_Bagrock_To_The_Masses_(2007)-[Front]-[www.FreeCovers.net].jpg
[2008/08/16 03:29:45 | 000,484,242 | ---- | M] () -- C:\Documents and Settings\David\My Documents\Red_Hot_Chilli_Pipers_-_Bagrock_To_The_Masses_(2007)-[Back]-[www.FreeCovers.net].jpg
[2008/07/31 04:41:54 | 000,238,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_2.dll
[2008/07/31 04:41:52 | 000,068,616 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\XAPOFX1_1.dll
[2008/07/31 04:40:32 | 000,509,448 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_2.dll
[2008/07/29 16:10:04 | 000,026,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\TsWpfWrp.exe
[2008/07/29 14:59:58 | 000,781,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\PresentationNative_v0300.dll
[2008/07/29 14:59:58 | 000,105,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\PresentationCFFRasterizerNative_v0300.dll
[2008/07/29 14:24:50 | 000,622,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\icardagt.exe
[2008/07/29 14:24:50 | 000,097,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\infocardapi.dll
[2008/07/29 14:24:50 | 000,037,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\infocardcpl.cpl
[2008/07/29 14:24:50 | 000,011,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\icardres.dll
[2008/07/29 00:49:58 | 000,586,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\icardres.dll.mui
[2008/07/25 06:16:58 | 000,083,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mscories.dll
[2008/07/20 15:06:24 | 000,087,040 | ---- | M] () -- C:\Documents and Settings\David\My Documents\4 Evidence Gathering Form[1].doc
Part three:
[2008/07/17 10:48:02 | 000,250,048 | RHS- | M] () -- C:\ntldr
[2008/07/14 18:31:02 | 000,008,353 | ---- | M] () -- C:\Documents and Settings\David\My Documents\item_list.odt
[2008/07/14 04:16:21 | 000,912,896 | ---- | M] () -- C:\Documents and Settings\David\My Documents\SUPPORT_APPLICATION_FORM_Filled.doc
[2008/07/14 02:41:58 | 000,008,693 | ---- | M] () -- C:\Documents and Settings\David\My Documents\HR Department.odt
[2008/07/11 07:02:01 | 000,858,112 | ---- | M] () -- C:\Documents and Settings\David\My Documents\SUPPORT_APPLICATION_FORM.doc
[2008/07/11 03:55:41 | 000,712,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\windowscodecs.dll
[2008/07/11 03:55:41 | 000,347,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\windowscodecsext.dll
[2008/07/10 05:01:00 | 000,467,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_39.dll
[2008/07/10 05:00:58 | 003,851,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_39.dll
[2008/07/10 05:00:58 | 001,493,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_39.dll
[2008/07/09 02:38:24 | 000,017,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsg.dll
[2008/07/06 07:06:10 | 001,676,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\xpssvcs.dll
[2008/07/06 07:06:10 | 000,117,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\prntvpt.dll
[2008/06/27 18:51:37 | 727,433,216 | ---- | M] () -- C:\Documents and Settings\David\My Documents\OpenDisc08.07.iso
[2008/06/24 12:12:58 | 000,295,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wmpeffects.dll
[2008/06/19 12:26:19 | 000,008,471 | ---- | M] () -- C:\Documents and Settings\David\My Documents\statement cook 19.06.08.odt
[2008/06/16 17:51:00 | 000,013,657 | ---- | M] () -- C:\Documents and Settings\David\My Documents\citibank_160608.odt
[2008/06/12 09:23:32 | 000,956,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtctm.dll
[2008/06/12 09:23:32 | 000,428,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtcprx.dll
[2008/06/12 09:23:32 | 000,161,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtcuiu.dll
[2008/06/12 09:23:32 | 000,091,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxoci.dll
[2008/06/12 09:23:32 | 000,058,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtclog.dll
[2008/06/10 03:19:34 | 002,319,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_27.dll
[2008/06/10 03:19:14 | 002,682,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\vcredist_x86.exe
[2008/06/10 03:19:14 | 000,000,819 | ---- | M] () -- C:\WINDOWS\System32\regpackages.bat
[2008/06/06 09:54:26 | 000,095,600 | ---- | M] (Ahead Software AG
im Stoeckmaedle 18
76307 Karlsbad, Germany
Fax: ++49-7248-911-888
e-mail: info@nero.com) -- C:\WINDOWS\System32\NeroCo.dll
[2008/06/06 09:54:16 | 000,972,072 | ---- | M] (Nero AG) -- C:\WINDOWS\UNRecode.exe
[2008/06/02 05:49:21 | 000,000,650 | ---- | M] () -- C:\Documents and Settings\David\Desktop\HTTrack Website Copier.lnk
[2008/05/31 15:28:43 | 000,401,345 | ---- | M] () -- C:\Documents and Settings\David\My Documents\Remoteobserver.zip
[2008/05/30 17:54:56 | 000,027,361 | ---- | M] () -- C:\Documents and Settings\David\My Documents\synfig_back.odt
[2008/05/30 08:19:18 | 000,507,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_1.dll
[2008/05/30 08:18:52 | 000,238,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_1.dll
[2008/05/30 08:17:30 | 000,065,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\XAPOFX1_0.dll
[2008/05/30 08:17:00 | 000,025,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\X3DAudio1_4.dll
[2008/05/30 08:11:46 | 003,850,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_38.dll
[2008/05/30 08:11:46 | 001,491,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_38.dll
[2008/05/30 08:11:46 | 000,467,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_38.dll
[2008/05/26 16:21:26 | 001,418,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mssrch.dll
[2008/05/26 16:21:08 | 001,582,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\tquery.dll
[2008/05/26 16:19:36 | 000,273,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\oeph.dll
[2008/05/26 16:19:28 | 000,131,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\UncPH.dll
[2008/05/26 16:19:28 | 000,108,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\UncNE.dll
[2008/05/26 16:19:26 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\UncRes.dll
[2008/05/26 16:19:22 | 000,143,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\UncDMS.dll
[2008/05/26 16:19:20 | 000,097,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\UncCplExt.dll
[2008/05/26 16:19:16 | 000,011,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\oephRes.dll
[2008/05/26 16:18:56 | 000,203,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mssphtb.dll
[2008/05/26 16:18:44 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mssphtb.dll.mui
[2008/05/26 16:18:42 | 000,044,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msstrc.dll
[2008/05/26 16:18:34 | 000,231,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msshsq.dll
[2008/05/26 16:18:34 | 000,056,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\xmlfilter.dll
[2008/05/26 16:18:32 | 000,038,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rtffilt.dll
[2008/05/26 16:18:08 | 000,071,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\propdefs.dll
[2008/05/26 16:17:58 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mssrch.dll.mui
[2008/05/26 16:17:54 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mssph.dll.mui
[2008/05/26 16:17:44 | 000,034,816 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msscb.dll
[2008/05/26 16:17:38 | 000,011,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msshooks.dll
[2008/05/26 16:17:36 | 000,221,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\tquery.dll.mui
[2008/05/26 16:17:30 | 000,301,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\srchadmin.dll
[2008/05/26 16:17:28 | 000,032,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mssprxy.dll
[2008/05/26 16:17:26 | 000,087,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mssitlb.dll
[2008/05/26 16:17:26 | 000,060,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msscntrs.dll
[2008/05/26 16:17:12 | 000,135,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\srchadmin.dll.mui
[2008/05/26 15:59:42 | 000,018,904 | ---- | M] () -- C:\WINDOWS\System32\structuredqueryschematrivial.bin
[2008/05/26 15:59:40 | 000,106,605 | ---- | M] () -- C:\WINDOWS\System32\structuredqueryschema.bin
[2008/05/09 05:53:40 | 000,430,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\vbscript.dll
[2008/05/09 05:53:40 | 000,430,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\vbscript.dll
[2008/05/07 03:52:03 | 004,274,402 | ---- | M] () -- C:\Documents and Settings\David\attidavescotti_edited-1.png
[2008/05/07 03:52:03 | 000,541,809 | ---- | M] () -- C:\Documents and Settings\David\kilt1.jpg
[2008/05/06 09:08:38 | 000,243,999 | ---- | M] () -- C:\Documents and Settings\David\My Documents\games_front.odg
[2008/05/02 04:24:47 | 000,000,924 | ---- | M] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\TweakRAM.lnk
[2008/05/02 04:24:47 | 000,000,912 | ---- | M] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\Applications Startup Wizard.lnk
[2008/04/26 10:23:41 | 000,152,403 | ---- | M] () -- C:\Documents and Settings\David\My Documents\quasar_install-1.4.5.pdf
[2008/04/26 10:10:17 | 000,187,300 | ---- | M] () -- C:\Documents and Settings\David\My Documents\wamp_2_user_manual.pdf
[2008/04/26 10:09:19 | 000,005,957 | ---- | M] () -- C:\WINDOWS\php_old.ini
[2008/04/26 10:01:32 | 000,000,606 | ---- | M] () -- C:\Documents and Settings\David\Desktop\Quasar Accounting.lnk
[2008/04/25 17:42:06 | 685,389,545 | ---- | M] () -- C:\Creative Suite Master Collection Alternative.zip
[2008/04/24 03:09:19 | 000,390,490 | ---- | M] () -- C:\Documents and Settings\David\My Documents\receipt2.jpg
[2008/04/24 03:07:45 | 000,683,764 | ---- | M] () -- C:\Documents and Settings\David\My Documents\receipt1.jpg
[2008/04/24 03:05:29 | 000,078,911 | ---- | M] () -- C:\Documents and Settings\David\My Documents\receipt.gif
[2008/04/23 11:22:33 | 448,466,944 | ---- | M] () -- C:\Documents and Settings\David\My Documents\opensource_games21.iso
[2008/04/23 11:04:01 | 000,140,383 | ---- | M] () -- C:\Documents and Settings\David\My Documents\opensource_dvd_label.zip
[2008/04/21 03:09:49 | 000,033,250 | ---- | M] () -- C:\Documents and Settings\David\My Documents\web_design_sw.odt
[2008/04/15 10:27:28 | 000,037,084 | ---- | M] () -- C:\Documents and Settings\David\My Documents\synfig_front.odt
[2008/04/13 19:13:22 | 000,087,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpwsx.dll
[2008/04/13 19:12:42 | 000,129,536 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ksproxy.ax
[2008/04/13 19:12:42 | 000,091,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\kswdmcap.ax
[2008/04/13 19:12:42 | 000,091,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\kswdmcap.ax
[2008/04/13 19:12:42 | 000,061,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\kstvtune.ax
[2008/04/13 19:12:42 | 000,061,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\kstvtune.ax
[2008/04/13 19:12:42 | 000,043,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ksxbar.ax
[2008/04/13 19:12:42 | 000,043,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\ksxbar.ax
[2008/04/13 19:12:42 | 000,028,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\vidcap.ax
[2008/04/13 19:12:42 | 000,028,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\vidcap.ax
[2008/04/13 19:12:42 | 000,023,040 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ativmvxx.ax
[2008/04/13 19:12:42 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dshowext.ax
[2008/04/13 19:12:42 | 000,009,728 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ativdaxx.ax
[2008/04/13 19:12:41 | 000,165,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wuauclt1.exe
[2008/04/13 19:12:41 | 000,068,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\access.cpl
[2008/04/13 19:12:38 | 000,028,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\verclsid.exe
[2008/04/13 19:12:36 | 000,538,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\spider.exe
[2008/04/13 19:12:36 | 000,131,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\sndrec32.exe
[2008/04/13 19:12:36 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\spupdwxp.exe
[2008/04/13 19:12:36 | 000,007,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\spdwnwxp.exe
[2008/04/13 19:12:35 | 000,073,796 | ---- | M] (Smart Link) -- C:\WINDOWS\System32\slserv.exe
[2008/04/13 19:12:35 | 000,032,866 | ---- | M] (Smart Link) -- C:\WINDOWS\System32\slrundll.exe
[2008/04/13 19:12:35 | 000,032,866 | ---- | M] (Smart Link) -- C:\WINDOWS\slrundll.exe
[2008/04/13 19:12:35 | 000,032,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\setupn.exe
[2008/04/13 19:12:32 | 000,067,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rdshost.exe
[2008/04/13 19:12:32 | 000,062,976 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpclip.exe
[2008/04/13 19:12:32 | 000,019,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\qprocess.exe
[2008/04/13 19:12:32 | 000,013,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rdsaddin.exe
[2008/04/13 19:12:29 | 000,176,640 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\napstat.exe
[2008/04/13 19:12:29 | 000,012,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mstinit.exe
[2008/04/13 19:12:27 | 000,123,392 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mplay32.exe
[2008/04/13 19:12:25 | 000,033,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcperf.exe
[2008/04/13 19:12:21 | 000,229,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\fxscover.exe
[2008/04/13 19:12:21 | 000,142,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\fxsclnt.exe
[2008/04/13 19:12:20 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\fltmc.exe
[2008/04/13 19:12:20 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\faxpatch.exe
[2008/04/13 19:12:16 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dcomcnfg.exe
[2008/04/13 19:12:14 | 000,102,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\clipbrd.exe
[2008/04/13 19:12:11 | 000,184,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\accwiz.exe
[2008/04/13 19:12:11 | 000,183,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wuaueng1.dll
[2008/04/13 19:12:11 | 000,011,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\xolehlp.dll
[2008/04/13 19:12:09 | 000,276,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wmphoto.dll
[2008/04/13 19:12:09 | 000,069,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wlanapi.dll
[2008/04/13 19:12:08 | 000,053,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\vfwwdm32.dll
[2008/04/13 19:12:08 | 000,053,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\vfwwdm32.dll
[2008/04/13 19:12:08 | 000,011,325 | ---- | M] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\vchnt5.dll
[2008/04/13 19:12:07 | 000,239,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\srrstr.dll
[2008/04/13 19:12:07 | 000,093,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\tscfgwmi.dll
[2008/04/13 19:12:07 | 000,059,392 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\stclient.dll
[2008/04/13 19:12:07 | 000,053,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\tsgqec.dll
[2008/04/13 19:12:06 | 000,286,792 | ---- | M] (Smart Link) -- C:\WINDOWS\System32\slextspk.dll
[2008/04/13 19:12:06 | 000,188,508 | ---- | M] (Smart Link) -- C:\WINDOWS\System32\slgen.dll
[2008/04/13 19:12:06 | 000,073,832 | ---- | M] (Smart Link) -- C:\WINDOWS\System32\slcoinst.dll
[2008/04/13 19:12:06 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\smtpapi.dll
[2008/04/13 19:12:05 | 000,056,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\servdeps.dll
[2008/04/13 19:12:05 | 000,003,901 | ---- | M] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\siint5.dll
[2008/04/13 19:12:04 | 000,397,056 | ---- | M] (S3 Graphics, Inc.) -- C:\WINDOWS\System32\s3gnb.dll
[2008/04/13 19:12:04 | 000,290,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rhttpaa.dll
[2008/04/13 19:12:04 | 000,159,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ptpusd.dll
[2008/04/13 19:12:04 | 000,045,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\safrslv.dll
[2008/04/13 19:12:04 | 000,043,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\safrcdlg.dll
[2008/04/13 19:12:04 | 000,029,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\safrdm.dll
[2008/04/13 19:12:04 | 000,019,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpsnd.dll
[2008/04/13 19:12:04 | 000,009,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rwnh.dll
[2008/04/13 19:12:03 | 000,150,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\qagent.dll
[2008/04/13 19:12:03 | 000,147,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rdchost.dll
[2008/04/13 19:12:03 | 000,076,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\qutil.dll
[2008/04/13 19:12:03 | 000,062,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\qcliprov.dll
[2008/04/13 19:12:03 | 000,061,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rasqec.dll
[2008/04/13 19:12:03 | 000,043,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\racpldlg.dll
[2008/04/13 19:12:03 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\qmgrprxy.dll
[2008/04/13 19:12:02 | 000,412,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\photometadatahandler.dll
[2008/04/13 19:12:02 | 000,144,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\onex.dll
[2008/04/13 19:12:02 | 000,028,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\nmmkcert.dll
[2008/04/13 19:12:01 | 001,737,856 | ---- | M] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\mtxparhd.dll
[2008/04/13 19:12:01 | 000,193,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\napmontr.dll
[2008/04/13 19:12:01 | 000,034,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxlegih.dll
[2008/04/13 19:12:01 | 000,030,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxdm.dll
[2008/04/13 19:12:01 | 000,030,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\napipsec.dll
[2008/04/13 19:12:01 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxex.dll
[2008/04/13 19:12:00 | 000,252,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msoeacct.dll
[2008/04/13 19:12:00 | 000,155,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mssha.dll
[2008/04/13 19:12:00 | 000,105,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msoert2.dll
[2008/04/13 19:11:58 | 000,069,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msconf.dll
[2008/04/13 19:11:57 | 000,397,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcex.dll
[2008/04/13 19:11:57 | 000,184,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\microsoft.managementconsole.dll
[2008/04/13 19:11:57 | 000,106,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcfxcommon.dll
[2008/04/13 19:11:57 | 000,034,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mnmdd.dll
[2008/04/13 19:11:57 | 000,017,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mmfutil.dll
[2008/04/13 19:11:56 | 000,086,016 | ---- | M] (Conexant) -- C:\WINDOWS\System32\mdmxsdk.dll
[2008/04/13 19:11:56 | 000,058,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\licwmi.dll
[2008/04/13 19:11:56 | 000,037,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\l2gpstore.dll
[2008/04/13 19:11:56 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ksuser.dll
[2008/04/13 19:11:55 | 000,032,768 | ---- | M] (Intel Corporation) -- C:\WINDOWS\System32\isrdbg32.dll
[2008/04/13 19:11:54 | 000,562,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\fxsst.dll
[2008/04/13 19:11:54 | 000,400,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\fxsxp32.dll
[2008/04/13 19:11:54 | 000,397,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\fxstiff.dll
[2008/04/13 19:11:54 | 000,347,136 | ---- | M] (Hilgraeve, Inc.) -- C:\WINDOWS\System32\hypertrm.dll
[2008/04/13 19:11:54 | 000,285,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\fxscomex.dll
[2008/04/13 19:11:54 | 000,274,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\inetcfg.dll
[2008/04/13 19:11:54 | 000,246,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\fxst30.dll
[2008/04/13 19:11:54 | 000,192,512 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\fxswzrd.dll
[2008/04/13 19:11:54 | 000,154,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\fxsui.dll
[2008/04/13 19:11:54 | 000,081,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ils.dll
[2008/04/13 19:11:54 | 000,073,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\icwdial.dll
[2008/04/13 19:11:54 | 000,072,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\fxscom.dll
[2008/04/13 19:11:54 | 000,065,536 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\icwphbk.dll
[2008/04/13 19:11:54 | 000,055,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\fxsevent.dll
[2008/04/13 19:11:54 | 000,032,285 | ---- | M] (Conexant Systems, Inc.) -- C:\WINDOWS\System32\hsfcisp2.dll
[2008/04/13 19:11:54 | 000,026,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\fxsdrv.dll
[2008/04/13 19:11:54 | 000,023,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\fxsmon.dll
[2008/04/13 19:11:54 | 000,023,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\fxsext32.dll
[2008/04/13 19:11:54 | 000,011,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\icaapi.dll
[2008/04/13 19:11:54 | 000,008,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\fxsperf.dll
[2008/04/13 19:11:53 | 000,451,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\fxsapi.dll
[2008/04/13 19:11:52 | 000,650,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3ui.dll
[2008/04/13 19:11:52 | 000,184,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\eapp3hst.dll
[2008/04/13 19:11:52 | 000,180,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\eapphost.dll
[2008/04/13 19:11:52 | 000,126,976 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\eappcfg.dll
[2008/04/13 19:11:52 | 000,094,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\eappgnui.dll
[2008/04/13 19:11:52 | 000,059,392 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\eapqec.dll
[2008/04/13 19:11:52 | 000,057,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3cfg.dll
[2008/04/13 19:11:52 | 000,056,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3msm.dll
[2008/04/13 19:11:52 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dhcpqec.dll
[2008/04/13 19:11:52 | 000,040,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\eappprxy.dll
[2008/04/13 19:11:52 | 000,039,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3gpclnt.dll
[2008/04/13 19:11:52 | 000,039,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dimsroam.dll
[2008/04/13 19:11:52 | 000,030,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\eapolqec.dll
[2008/04/13 19:11:52 | 000,026,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3api.dll
[2008/04/13 19:11:52 | 000,009,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3dlg.dll
[2008/04/13 19:11:51 | 001,267,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\comsvcs.dll
[2008/04/13 19:11:51 | 000,539,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\comuid.dll
[2008/04/13 19:11:51 | 000,167,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\comsnap.dll
[2008/04/13 19:11:51 | 000,097,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\comrepl.dll
[2008/04/13 19:11:51 | 000,060,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\colbact.dll
[2008/04/13 19:11:51 | 000,028,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\comaddin.dll
[2008/04/13 19:11:50 | 001,888,992 | ---- | M] (ATI Technologies Inc. ) -- C:\WINDOWS\System32\ati3duag.dll
[2008/04/13 19:11:50 | 000,625,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\catsrvut.dll
[2008/04/13 19:11:50 | 000,516,768 | ---- | M] (ATI Technologies Inc. ) -- C:\WINDOWS\System32\ativvaxx.dll
[2008/04/13 19:11:50 | 000,233,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\azroles.dll
[2008/04/13 19:11:50 | 000,226,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\catsrv.dll
[2008/04/13 19:11:50 | 000,218,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\c_g18030.dll
[2008/04/13 19:11:50 | 000,185,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cmprops.dll
[2008/04/13 19:11:50 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\clbcatex.dll
[2008/04/13 19:11:50 | 000,085,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\catsrvps.dll
[2008/04/13 19:11:50 | 000,038,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cfgbkend.dll
[2008/04/13 19:11:50 | 000,032,768 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ativtmxx.dll
[2008/04/13 19:11:50 | 000,025,471 | ---- | M] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\atv04nt5.dll
[2008/04/13 19:11:50 | 000,021,183 | ---- | M] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\atv01nt5.dll
[2008/04/13 19:11:50 | 000,017,279 | ---- | M] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\atv10nt5.dll
[2008/04/13 19:11:50 | 000,015,423 | ---- | M] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\ch7xxnt5.dll
[2008/04/13 19:11:50 | 000,014,143 | ---- | M] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\atv06nt5.dll
[2008/04/13 19:11:50 | 000,011,359 | ---- | M] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\atv02nt5.dll
[2008/04/13 19:11:50 | 000,008,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx2.dll
[2008/04/13 19:11:50 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx4.dll
[2008/04/13 19:11:50 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx3.dll
[2008/04/13 19:11:49 | 000,870,784 | ---- | M] (ATI Technologies Inc. ) -- C:\WINDOWS\System32\ati3d1ag.dll
[2008/04/13 19:11:49 | 000,377,984 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ati2dvaa.dll
[2008/04/13 19:11:49 | 000,229,376 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ati2cqag.dll
[2008/04/13 19:11:49 | 000,201,728 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ati2dvag.dll
[2008/04/13 19:11:48 | 000,136,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\aaclient.dll
[2008/04/13 19:11:48 | 000,004,255 | ---- | M] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv01nt5.dll
[2008/04/13 19:11:48 | 000,003,967 | ---- | M] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv02nt5.dll
[2008/04/13 19:11:48 | 000,003,775 | ---- | M] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv11nt5.dll
[2008/04/13 19:11:48 | 000,003,711 | ---- | M] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv09nt5.dll
[2008/04/13 19:11:48 | 000,003,647 | ---- | M] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv07nt5.dll
[2008/04/13 19:11:48 | 000,003,615 | ---- | M] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv05nt5.dll
[2008/04/13 19:11:48 | 000,003,135 | ---- | M] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv08nt5.dll
[2008/04/13 19:11:37 | 000,065,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\unicdime.ime
[2008/04/13 19:11:33 | 000,079,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\phon.ime
[2008/04/13 19:11:33 | 000,078,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dayi.ime
[2008/04/13 19:11:33 | 000,065,536 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\winime.ime
[2008/04/13 19:11:33 | 000,026,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\romanime.ime
[2008/04/13 19:11:30 | 000,079,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\winar30.ime
[2008/04/13 19:11:30 | 000,077,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\quick.ime
[2008/04/13 19:11:29 | 000,078,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\chajei.ime
[2008/04/13 19:11:13 | 000,156,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\winzm.ime
[2008/04/13 19:11:13 | 000,156,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\winsp.ime
[2008/04/13 19:11:12 | 000,156,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\winpy.ime
[2008/04/13 19:11:09 | 000,072,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wingb.ime
[2008/04/13 19:11:01 | 000,076,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\uniime.dll
[2008/04/13 19:09:55 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdpash.dll
[2008/04/13 19:09:55 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdnepr.dll
[2008/04/13 19:09:55 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdiultn.dll
[2008/04/13 19:09:55 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdbhc.dll
[2008/04/13 19:09:44 | 000,811,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\imjp81k.dll
[2008/04/13 19:09:44 | 000,340,023 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\imjp81.ime
[2008/04/13 19:09:33 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\fxsres.dll
[2008/04/13 13:56:49 | 000,030,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\rndismpx.sys
[2008/04/13 13:45:34 | 000,046,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\irbus.sys
[2008/04/13 13:45:12 | 000,060,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\USBAUDIO.sys
[2008/04/13 13:43:55 | 000,012,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\mutohpen.sys
[2008/04/13 13:43:32 | 000,009,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\comsdupd.exe
[2008/04/13 13:40:03 | 000,011,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\miniime.tpl
[2008/04/13 13:39:47 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mouclass.sys
[2008/04/13 13:36:39 | 000,043,008 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\WINDOWS\System32\drivers\amdagp.sys
[2008/04/13 13:36:39 | 000,040,960 | ---- | M] (Silicon Integrated Systems Corporation) -- C:\WINDOWS\System32\drivers\sisagp.sys
[2008/04/13 13:14:58 | 000,076,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msshavmsg.dll
[2008/04/13 12:39:26 | 000,689,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\xpsp3res.dll
[2008/04/13 12:27:18 | 000,079,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msxml6r.dll
[2008/04/13 11:44:38 | 000,192,085 | ---- | M] () -- C:\Documents and Settings\David\My Documents\35 Programs.odt
[2008/04/13 11:36:05 | 000,144,384 | ---- | M] (Windows ® Server 2003 DDK provider) -- C:\WINDOWS\System32\drivers\hdaudbus.sys
[2008/04/13 11:22:12 | 000,048,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\inetres.dll
[2008/04/08 16:23:08 | 000,106,717 | ---- | M] () -- C:\Documents and Settings\David\My Documents\blender_front_new.odg
[2008/04/08 07:26:02 | 298,557,760 | ---- | M] (Intuit, Inc. ) -- C:\Documents and Settings\David\Desktop\QuickBooksSimpleStartDirect2008.exe
[2008/04/08 07:19:20 | 000,525,072 | ---- | M] () -- C:\Documents and Settings\David\My Documents\Setup_QuickBooks_SimpleStart_Direct_2008.exe
[2008/04/04 09:37:31 | 000,033,114 | ---- | M] () -- C:\Documents and Settings\David\My Documents\blender_front.odt
[2008/04/03 09:13:24 | 000,000,073 | ---- | M] () -- C:\Documents and Settings\David\.gtk-bookmarks
[2008/03/27 09:05:39 | 000,000,043 | ---- | M] () -- C:\WINDOWS\gswin32.ini
[2008/03/27 05:42:41 | 000,026,249 | ---- | M] () -- C:\Documents and Settings\David\My Documents\graphic_front.gif.cdx
[2008/03/27 05:22:59 | 000,002,447 | ---- | M] () -- C:\Documents and Settings\David\Desktop\CDInterface Studio 2.lnk
[2008/03/26 11:25:30 | 000,000,487 | ---- | M] () -- C:\Documents and Settings\David\jdraw.v1.1.5.dat
[2008/03/05 10:03:54 | 000,479,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_0.dll
[2008/03/05 10:03:20 | 000,238,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_0.dll
[2008/03/05 10:00:06 | 000,025,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\X3DAudio1_3.dll
[2008/03/05 09:56:58 | 003,786,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_37.dll
[2008/03/05 09:56:58 | 001,420,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_37.dll
[2008/02/29 12:03:18 | 000,082,719 | ---- | M] () -- C:\Documents and Settings\David\My Documents\zanox1.gif
[2008/02/26 08:21:22 | 000,832,896 | ---- | M] (Indigo Rose Corporation) -- C:\WINDOWS\System32\ButtonThumbnailExtractor.dll
[2008/02/25 05:44:02 | 000,568,712 | ---- | M] () -- C:\Documents and Settings\David\My Documents\WMIDiag.exe
[2008/02/11 09:26:02 | 000,057,344 | ---- | M] (Marvell Semiconductor, Inc.) -- C:\WINDOWS\System32\CP1215EWS.dll
[2008/02/07 04:05:18 | 000,163,840 | ---- | M] () -- C:\WINDOWS\System32\hppatusg01.dll
[2008/02/05 17:07:36 | 000,462,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_37.dll
[2008/02/04 13:37:28 | 000,008,289 | ---- | M] () -- C:\Documents and Settings\David\My Documents\Keep clear.odt
[2008/01/26 09:29:16 | 000,516,096 | ---- | M] () -- C:\WINDOWS\System32\rtl4.dat
[2008/01/26 09:29:16 | 000,434,176 | ---- | M] (Gabest) -- C:\WINDOWS\System32\rtl2.dat
[2008/01/26 09:29:16 | 000,016,384 | ---- | M] () -- C:\WINDOWS\System32\rtl3.dat
[2008/01/20 13:36:56 | 000,035,840 | ---- | M] (Sax software company) -- C:\WINDOWS\System32\drivers\SAXNDIS.sys
[2008/01/17 08:04:26 | 000,000,666 | ---- | M] () -- C:\Documents and Settings\David\Desktop\CDox.lnk
[2008/01/17 08:04:11 | 000,992,466 | ---- | M] () -- C:\Documents and Settings\David\My Documents\cdox1.0.3.exe
[2008/01/17 07:49:55 | 000,000,689 | ---- | M] () -- C:\Documents and Settings\David\Desktop\MediaFood Designer Tools.lnk
[2008/01/15 04:54:42 | 000,010,537 | ---- | M] () -- C:\WINDOWS\System32\drivers\COH_Mon.cat
[2008/01/15 00:28:00 | 000,000,706 | ---- | M] () -- C:\WINDOWS\System32\drivers\COH_Mon.inf
[2008/01/14 10:54:42 | 224,840,964 | ---- | M] () -- C:\Documents and Settings\David\My Documents\OOo_2.3.1_071211_Win32Intel_install.exe
[2008/01/12 13:32:00 | 000,023,904 | ---- | M] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\COH_Mon.sys
[2008/01/04 10:25:21 | 001,268,370 | ---- | M] () -- C:\Documents and Settings\David\My Documents\personal.odg
[2008/01/04 10:13:22 | 000,609,153 | ---- | M] () -- C:\Documents and Settings\David\My Documents\personal02.jpg
[2008/01/04 10:11:51 | 000,613,226 | ---- | M] () -- C:\Documents and Settings\David\My Documents\personal01.jpg
[2007/12/21 11:44:45 | 000,626,993 | ---- | M] () -- C:\Documents and Settings\David\My Documents\tran_hearing2.jpg
[2007/12/21 11:42:40 | 001,374,805 | ---- | M] () -- C:\Documents and Settings\David\My Documents\tran_hearing1.jpg
[2007/12/20 12:16:39 | 000,013,283 | ---- | M] () -- C:\Documents and Settings\David\My Documents\ebaybuyers_note.odt
[2007/12/19 03:31:06 | 001,008,261 | ---- | M] () -- C:\Documents and Settings\David\My Documents\atti_sick02.jpg
[2007/12/19 03:24:37 | 000,848,523 | ---- | M] () -- C:\Documents and Settings\David\My Documents\atti_sick01.jpg
[2007/12/14 07:06:06 | 000,121,440 | ---- | M] (Intel Corporation) -- C:\WINDOWS\System32\e1000msg.dll
[2007/12/11 01:55:40 | 002,359,296 | ---- | M] (OpenOffice.org) -- C:\Documents and Settings\David\Desktop\soffice.exe
[2007/11/30 07:08:27 | 000,421,987 | ---- | M] () -- C:\Documents and Settings\David\My Documents\pol_31_10_07.jpg
[2007/11/30 07:02:16 | 000,447,228 | ---- | M] () -- C:\Documents and Settings\David\.fonts.cache-1
[2007/11/30 07:01:16 | 000,000,750 | ---- | M] () -- C:\Documents and Settings\David\Desktop\GIMPshop.lnk
[2007/11/30 05:24:48 | 006,094,818 | ---- | M] () -- C:\Documents and Settings\David\My Documents\poliz_31_10_07.jpg
[2007/11/23 06:52:33 | 000,012,076 | ---- | M] () -- C:\Documents and Settings\David\My Documents\jenny konto antwort.odt
[2007/11/02 07:46:43 | 019,728,820 | ---- | M] () -- C:\Documents and Settings\David\My Documents\setup.zip
[2007/10/30 08:46:16 | 000,002,905 | ---- | M] () -- C:\WINDOWS\System32\e1e5132.din
[2007/10/29 04:11:58 | 000,053,248 | ---- | M] (Marvell Semiconductor, Inc.) -- C:\WINDOWS\System32\HPEWSMX.dll
[2007/10/22 09:21:37 | 000,011,264 | ---- | M] () -- C:\Documents and Settings\David\My Documents\applie for dayshift.wps
[2007/10/21 21:39:54 | 000,267,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_10.dll
[2007/10/21 21:37:16 | 000,017,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\X3DAudio1_2.dll
[2007/10/15 06:57:37 | 000,013,312 | ---- | M] () -- C:\Documents and Settings\David\My Documents\Statement 15.10.07.wps
[2007/10/13 12:47:31 | 000,010,752 | ---- | M] () -- C:\Documents and Settings\David\My Documents\canan.wps
[2007/10/12 09:14:00 | 003,734,536 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_36.dll
[2007/10/12 09:14:00 | 001,374,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_36.dll
[2007/10/04 07:48:07 | 000,001,745 | ---- | M] () -- C:\Documents and Settings\David\Desktop\Blender.lnk
[2007/10/02 03:56:34 | 000,444,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_36.dll
[2007/09/27 04:51:02 | 000,020,698 | ---- | M] () -- C:\WINDOWS\System32\idxcntrs.ini
[2007/09/27 04:51:02 | 000,004,640 | ---- | M] () -- C:\WINDOWS\System32\idxcntrs.h
[2007/09/27 04:48:48 | 000,030,628 | ---- | M] () -- C:\WINDOWS\System32\gsrvctr.ini
[2007/09/27 04:48:48 | 000,002,590 | ---- | M] () -- C:\WINDOWS\System32\gsrvctr.h
[2007/09/27 04:48:28 | 000,031,698 | ---- | M] () -- C:\WINDOWS\System32\gthrctr.ini
[2007/09/27 04:48:28 | 000,003,100 | ---- | M] () -- C:\WINDOWS\System32\gthrctr.h
[2007/09/21 04:58:39 | 000,000,128 | ---- | M] () -- C:\Documents and Settings\David\Local Settings\Application Data\fusioncache.dat
[2007/09/20 18:14:26 | 001,727,776 | ---- | M] () -- C:\Documents and Settings\David\My Documents\alle_ottosounds.zip
[2007/09/20 18:13:51 | 000,067,849 | ---- | M] () -- C:\Documents and Settings\David\My Documents\ottofont.zip
[2007/09/20 09:37:34 | 000,117,419 | ---- | M] () -- C:\Documents and Settings\David\My Documents\Dafini_Web_Design.pdf
[2007/09/20 08:52:45 | 000,000,867 | ---- | M] () -- C:\lxceinst.000
[2007/09/20 08:52:30 | 000,000,275 | ---- | M] () -- C:\lxcefire.000
[2007/09/20 08:11:13 | 000,014,120 | ---- | M] () -- C:\Documents and Settings\David\My Documents\EMEA Order Status.htm
[2007/09/17 23:43:34 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf
[2007/09/17 22:11:07 | 000,000,630 | ---- | M] () -- C:\Documents and Settings\David\Desktop\PantsOff.lnk
[2007/09/17 02:07:00 | 008,491,008 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcpl.dll
[2007/09/17 02:07:00 | 005,783,040 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nv4_disp.dll
[2007/09/17 02:07:00 | 000,364,544 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvapi.dll
[2007/09/17 02:07:00 | 000,036,864 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcod.dll
[2007/09/16 20:10:36 | 000,356,352 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\NVUNINST.EXE
[2007/09/16 19:07:00 | 006,853,088 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\drivers\nv4_mini.sys
[2007/09/16 19:07:00 | 006,746,112 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvoglnt.dll
[2007/09/16 19:07:00 | 006,344,704 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvdisps.dll
[2007/09/16 19:07:00 | 005,509,120 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvdispsr.dll
[2007/09/16 19:07:00 | 003,629,056 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvvitvsr.dll
[2007/09/16 19:07:00 | 003,551,232 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvvitvs.dll
[2007/09/16 19:07:00 | 003,334,144 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvgames.dll
[2007/09/16 19:07:00 | 003,166,208 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvgamesr.dll
[2007/09/16 19:07:00 | 002,854,912 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvmoblsr.dll
[2007/09/16 19:07:00 | 002,441,216 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwssr.dll
[2007/09/16 19:07:00 | 002,371,584 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwss.dll
[2007/09/16 19:07:00 | 001,150,976 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvmobls.dll
[2007/09/16 19:07:00 | 001,073,152 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcpluir.dll
[2007/09/16 19:07:00 | 000,753,664 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcplui.exe
[2007/09/16 19:07:00 | 000,458,752 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvmccssr.dll
[2007/09/16 19:07:00 | 000,413,696 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcpl.cpl
[2007/09/16 19:07:00 | 000,335,872 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrses.dll
[2007/09/16 19:07:00 | 000,335,872 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsel.dll
[2007/09/16 19:07:00 | 000,327,680 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsfr.dll
[2007/09/16 19:07:00 | 000,327,680 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsesm.dll
[2007/09/16 19:07:00 | 000,327,680 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrshe.dll
[2007/09/16 19:07:00 | 000,327,680 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsar.dll
[2007/09/16 19:07:00 | 000,323,584 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrspt.dll
[2007/09/16 19:07:00 | 000,323,584 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsit.dll
[2007/09/16 19:07:00 | 000,319,488 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsptb.dll
[2007/09/16 19:07:00 | 000,319,488 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsnl.dll
[2007/09/16 19:07:00 | 000,315,392 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsru.dll
[2007/09/16 19:07:00 | 000,315,392 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrshu.dll
[2007/09/16 19:07:00 | 000,311,296 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsde.dll
[2007/09/16 19:07:00 | 000,307,200 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvexpbar.dll
[2007/09/16 19:07:00 | 000,303,104 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrstr.dll
[2007/09/16 19:07:00 | 000,303,104 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrssl.dll
[2007/09/16 19:07:00 | 000,303,104 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsfi.dll
[2007/09/16 19:07:00 | 000,299,008 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrssk.dll
[2007/09/16 19:07:00 | 000,299,008 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsno.dll
[2007/09/16 19:07:00 | 000,294,912 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrssv.dll
[2007/09/16 19:07:00 | 000,294,912 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrspl.dll
[2007/09/16 19:07:00 | 000,294,912 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsda.dll
[2007/09/16 19:07:00 | 000,290,816 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsth.dll
[2007/09/16 19:07:00 | 000,286,720 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrseng.dll
[2007/09/16 19:07:00 | 000,286,720 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrscs.dll
[2007/09/16 19:07:00 | 000,282,624 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsar.dll
[2007/09/16 19:07:00 | 000,282,624 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsfr.dll
[2007/09/16 19:07:00 | 000,282,624 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrses.dll
[2007/09/16 19:07:00 | 000,282,624 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsel.dll
[2007/09/16 19:07:00 | 000,278,528 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrshe.dll
[2007/09/16 19:07:00 | 000,278,528 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsit.dll
[2007/09/16 19:07:00 | 000,278,528 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsde.dll
[2007/09/16 19:07:00 | 000,274,432 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrspt.dll
[2007/09/16 19:07:00 | 000,274,432 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsnl.dll
[2007/09/16 19:07:00 | 000,274,432 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsesm.dll
[2007/09/16 19:07:00 | 000,270,336 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsru.dll
[2007/09/16 19:07:00 | 000,266,240 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsptb.dll
[2007/09/16 19:07:00 | 000,266,240 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsja.dll
[2007/09/16 19:07:00 | 000,258,048 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrstr.dll
[2007/09/16 19:07:00 | 000,258,048 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrssl.dll
[2007/09/16 19:07:00 | 000,258,048 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrssk.dll
[2007/09/16 19:07:00 | 000,258,048 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsko.dll
[2007/09/16 19:07:00 | 000,258,048 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrshu.dll
[2007/09/16 19:07:00 | 000,253,952 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsth.dll
[2007/09/16 19:07:00 | 000,253,952 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrssv.dll
[2007/09/16 19:07:00 | 000,253,952 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrspl.dll
[2007/09/16 19:07:00 | 000,253,952 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsno.dll
[2007/09/16 19:07:00 | 000,253,952 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsda.dll
[2007/09/16 19:07:00 | 000,249,856 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsfi.dll
[2007/09/16 19:07:00 | 000,249,856 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrscs.dll
[2007/09/16 19:07:00 | 000,245,760 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrseng.dll
[2007/09/16 19:07:00 | 000,229,376 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvmccs.dll
[2007/09/16 19:07:00 | 000,225,280 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrszhc.dll
[2007/09/16 19:07:00 | 000,212,992 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsja.dll
[2007/09/16 19:07:00 | 000,196,608 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsko.dll
[2007/09/16 19:07:00 | 000,188,416 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvmccss.dll
[2007/09/16 19:07:00 | 000,167,936 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrszht.dll
[2007/09/16 19:07:00 | 000,163,840 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrszhc.dll
[2007/09/16 19:07:00 | 000,134,270 | ---- | M] () -- C:\WINDOWS\System32\nvapps.nvb
[2007/09/16 19:07:00 | 000,126,976 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrszht.dll
[2007/09/16 19:07:00 | 000,081,920 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwddi.dll
[2007/09/16 19:07:00 | 000,081,920 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvmctray.dll
[2007/09/16 19:07:00 | 000,045,056 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvmccsrs.dll
[2007/09/16 19:07:00 | 000,036,864 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcodins.dll
[2007/09/16 19:07:00 | 000,017,525 | ---- | M] () -- C:\WINDOWS\System32\nvdisp.nvu
[2007/09/16 18:11:14 | 000,138,935 | ---- | M] () -- C:\Documents and Settings\David\My Documents\part244.zip
[2007/09/16 07:55:53 | 000,000,738 | ---- | M] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\Outlook Express.lnk
[2007/09/15 23:33:45 | 000,000,021 | ---- | M] () -- C:\WINDOWS\TemplateWizard.INI
[2007/09/15 16:15:28 | 000,496,085 | ---- | M] () -- C:\Documents and Settings\David\My Documents\Pivot.zip
[2007/09/15 16:10:38 | 002,196,352 | ---- | M] () -- C:\Documents and Settings\David\My Documents\pivot_1404_full.zip
[2007/09/15 15:07:42 | 000,000,102 | ---- | M] () -- C:\Documents and Settings\David\.gtkrc-2.0
[2007/09/15 14:42:17 | 001,502,767 | ---- | M] () -- C:\Documents and Settings\David\My Documents\f4l-0.2.1.tar.bz2
[2007/09/15 13:13:07 | 000,000,738 | ---- | M] () -- C:\Documents and Settings\David\Desktop\Outlook Express.lnk
[2007/09/15 07:42:54 | 000,000,883 | ---- | M] () -- C:\Documents and Settings\David\Desktop\Launch onlineTV 3.lnk
[2007/09/14 21:56:41 | 000,011,229 | ---- | M] () -- C:\Documents and Settings\David\My Documents\Gordon-Regular.zip
[2007/09/14 21:55:40 | 000,011,089 | ---- | M] () -- C:\Documents and Settings\David\My Documents\Gordon.zip
[2007/09/14 16:16:08 | 000,000,814 | ---- | M] () -- C:\Documents and Settings\David\Desktop\Microsoft Works.LNK
[2007/09/14 15:39:28 | 000,003,444 | ---- | M] () -- C:\WINDOWS\System32\OEMINFO.PNF
[2007/09/14 14:52:16 | 000,008,192 | ---- | M] () -- C:\WINDOWS\REGLOCS.OLD
[2007/09/11 06:53:11 | 000,000,061 | ---- | M] () -- C:\WINDOWS\smscfg.ini
[2007/09/11 06:53:06 | 000,000,333 | ---- | M] () -- C:\WINDOWS\System32\$ncsp$.inf
[2007/09/11 06:42:02 | 000,940,794 | ---- | M] () -- C:\WINDOWS\System32\LoopyMusic.wav
[2007/09/11 06:42:02 | 000,146,650 | ---- | M] () -- C:\WINDOWS\System32\BuzzingBee.wav
[2007/09/11 06:23:48 | 000,006,210 | RH-- | M] () -- C:\dell.sdr
[2007/09/11 06:21:32 | 000,006,210 | ---- | M] () -- C:\WINDOWS\System32\drivers\1028_Dell_VOS_VOSTRO_200.mrk
[2007/09/10 00:24:54 | 000,544,768 | ---- | M] (Stardock Corporation) -- C:\WINDOWS\System32\wbocx.ocx
[2007/08/31 11:36:28 | 000,036,864 | ---- | M] (Robdogg Inc.) -- C:\WINDOWS\System32\trayicon_handler.ocx
[2007/08/30 23:52:48 | 000,056,496 | ---- | M] (Stardock.Net, Inc) -- C:\WINDOWS\System32\wbhelp2.dll
[2007/08/30 23:52:48 | 000,033,968 | ---- | M] (Neil Banfield) -- C:\WINDOWS\System32\anim.dll
[2007/08/29 10:06:10 | 000,512,000 | ---- | M] (Marvell Semiconductor, Inc.) -- C:\WINDOWS\System32\HPIPMX.dll
[2007/08/29 10:06:10 | 000,237,568 | ---- | M] (Marvell Semiconductor, Inc.) -- C:\WINDOWS\System32\HPIPMXRes.dll
[2007/08/29 10:06:10 | 000,163,840 | ---- | M] (Marvell Semiconductor, Inc.) -- C:\WINDOWS\System32\CP1215LI.DLL
[2007/08/29 10:06:10 | 000,143,360 | ---- | M] (Marvell Semiconductor, Inc.) -- C:\WINDOWS\System32\CP1215LM.DLL
[2007/08/29 10:06:10 | 000,114,688 | ---- | M] (Marvell Semiconductor, Inc.) -- C:\WINDOWS\System32\HPMCoSetup.dll
[2007/08/29 10:06:10 | 000,106,496 | ---- | M] (Zenographics, Inc.) -- C:\WINDOWS\System32\ZSPOOL.DLL
[2007/08/29 10:06:10 | 000,061,440 | ---- | M] (Zenographics, Inc.) -- C:\WINDOWS\System32\ZIMF.DLL
[2007/08/29 10:06:10 | 000,053,248 | ---- | M] (Zenographics, Inc.) -- C:\WINDOWS\System32\ZTAG.DLL
[2007/08/13 03:36:39 | 000,471,040 | ---- | M] () -- C:\WINDOWS\ssndii.exe
[2007/08/06 19:28:34 | 000,028,272 | ---- | M] (Intel Corporation) -- C:\WINDOWS\System32\NicCo2.dll
[2007/07/30 08:44:36 | 003,518,464 | ---- | M] (Amyuni Technologies
http://www.amyuni.com) -- C:\WINDOWS\System32\cdintf300.dll
[2007/07/19 18:57:12 | 000,267,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_9.dll
[2007/07/19 12:14:42 | 003,727,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_35.dll
[2007/07/19 12:14:42 | 001,358,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_35.dll
[2007/07/19 12:14:42 | 000,444,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_35.dll
[2007/07/12 18:31:54 | 000,765,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\vgx.dll
[2007/06/29 00:24:58 | 000,065,536 | ---- | M] (Apple Inc.) -- C:\WINDOWS\System32\QuickTimeVR.qtx
[2007/06/29 00:24:58 | 000,049,152 | ---- | M] (Apple Inc.) -- C:\WINDOWS\System32\QuickTime.qts
[2007/06/28 08:09:26 | 001,843,200 | ---- | M] (Apache Software Foundation) -- C:\WINDOWS\System32\acXMLParser.dll
[2007/06/26 08:06:22 | 000,066,424 | ---- | M] (Intel Corporation) -- C:\WINDOWS\System32\NicEtCoE.dll
[2007/06/26 08:06:22 | 000,028,536 | ---- | M] (Intel Corporation) -- C:\WINDOWS\System32\NicCo.dll
[2007/06/22 11:59:24 | 000,479,232 | ---- | M] (eMPIA Technology, Inc.) -- C:\WINDOWS\System32\drivers\emBDA.sys
[2007/06/22 11:59:06 | 000,038,656 | ---- | M] (eMPIA Technology, Inc.) -- C:\WINDOWS\System32\drivers\emOEM.sys
[2007/06/22 11:57:22 | 000,106,496 | ---- | M] (eMPIA Technology, Inc.) -- C:\WINDOWS\System32\emPRP.ax
[2007/06/21 00:52:36 | 000,000,974 | ---- | M] () -- C:\WINDOWS\System32\pid.inf
[2007/06/20 14:46:04 | 000,266,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_8.dll
[2007/06/19 15:31:30 | 002,986,038 | ---- | M] () -- C:\WINDOWS\Dell.bmp
[2007/06/13 14:41:46 | 001,822,720 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SkyTel.exe
[2007/06/13 14:41:46 | 000,282,624 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\RTSndMgr.CPL
[2007/06/13 14:41:46 | 000,086,016 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SOUNDMAN.EXE
[2007/06/13 14:41:44 | 009,715,200 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RTLCPL.EXE
[2007/06/13 14:41:44 | 004,403,712 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\drivers\RtkHDAud.sys
[2007/06/13 14:41:44 | 001,191,936 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RtlUpd.exe
[2007/06/13 14:41:40 | 002,162,688 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\MicCal.exe
[2007/06/13 14:41:32 | 000,299,008 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\ALSNDMGR.CPL
[2007/06/13 14:41:30 | 002,808,832 | ---- | M] (RealTek Semicoductor Corp.) -- C:\WINDOWS\ALCWZRD.EXE
[2007/06/13 14:41:30 | 000,069,632 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\ALCMTR.EXE
[2007/05/27 16:08:30 | 000,356,352 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvudisp.exe
[2007/05/18 04:58:36 | 000,122,880 | ---- | M] () -- C:\WINDOWS\System32\FCSFORM.DLL
[2007/05/16 10:45:16 | 003,497,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_34.dll
[2007/05/16 10:45:16 | 001,124,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_34.dll
[2007/05/16 10:45:16 | 000,443,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_34.dll
[2007/05/10 10:25:22 | 000,000,777 | ---- | M] () -- C:\Documents and Settings\David\My Documents\example.htaccess
[2007/04/09 08:23:54 | 000,028,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mdimon.dll
[2007/04/04 12:55:00 | 000,261,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_7.dll
[2007/04/04 12:53:42 | 000,081,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\xinput1_3.dll
[2007/03/30 03:57:02 | 000,787,456 | ---- | M] () -- C:\WINDOWS\System32\BootMan.exe
[2007/03/27 04:45:22 | 000,038,567 | ---- | M] () -- C:\WINDOWS\System32\pcpbios.exe
[2007/03/27 04:45:22 | 000,004,096 | ---- | M] () -- C:\WINDOWS\System32\sysres.dll
[2007/03/22 14:17:04 | 000,035,440 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\FM20ENU.DLL
[2007/03/20 16:22:04 | 000,972,336 | ---- | M] (Nero AG) -- C:\WINDOWS\UNNeroBackItUp.exe
[2007/03/15 10:57:58 | 000,443,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_33.dll
[2007/03/12 10:42:30 | 003,495,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_33.dll
[2007/03/12 10:42:30 | 001,123,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_33.dll
[2007/03/05 06:42:18 | 000,015,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\x3daudio1_1.dll
[2007/02/25 06:10:48 | 000,005,376 | --S- | M] (Gteko Ltd.) -- C:\WINDOWS\System32\drivers\dsunidrv.sys
[2007/02/12 14:39:36 | 001,376,256 | ---- | M] () -- C:\Documents and Settings\David\My Documents\FCSCOMM.DLL
[2007/02/12 14:36:54 | 000,277,784 | ---- | M] (Intel Corporation) -- C:\WINDOWS\System32\drivers\iastor.sys
[2007/01/24 09:27:30 | 000,255,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_6.dll
[2007/01/22 10:06:52 | 000,754,688 | ---- | M] () -- C:\Documents and Settings\David\My Documents\WMIDiag.doc
[2007/01/22 10:04:22 | 000,510,464 | ---- | M] () -- C:\Documents and Settings\David\My Documents\WMIDiag.xls
[2007/01/16 10:34:32 | 004,345,133 | ---- | M] () -- C:\Documents and Settings\David\My Documents\WMIDiag.vbs
[2007/01/01 19:34:22 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2007/01/01 19:11:25 | 000,000,472 | ---- | M] () -- C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job
[2007/01/01 04:42:51 | 000,134,630 | ---- | M] () -- C:\WINDOWS\setupapi.old
[2007/01/01 00:53:23 | 001,768,236 | ---- | M] () -- C:\WINDOWS\System32\Windows6.0-KB942288-v2-x86.msu
[2007/01/01 00:15:39 | 000,647,728 | ---- | M] (Xceed Software Inc. 1-450-442-2626 info@xceedsoft.com www.xceedsoft.com) -- C:\R92578.EXE
[2006/12/31 21:03:02 | 000,000,330 | -H-- | M] () -- C:\WINDOWS\tasks\MP Scheduled Scan.job
[2006/12/31 20:39:21 | 000,000,340 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\fix2.bat
[2006/12/31 20:36:16 | 000,000,715 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\fix1.bat
[2006/12/31 19:45:21 | 000,050,688 | ---- | M] (Atribune.org) -- C:\Documents and Settings\Administrator\Desktop\ATF-Cleaner.exe
[2006/12/31 19:38:45 | 000,157,472 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
[2006/12/31 19:38:45 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
[2006/12/31 19:38:45 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
[2006/12/31 19:38:45 | 000,073,728 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javacpl.cpl
[2006/12/31 19:38:44 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\deployJava1.dll
[2006/12/31 19:14:57 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2006/12/31 19:11:45 | 000,000,880 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2006/12/31 19:11:45 | 000,000,486 | ---- | M] () -- C:\WINDOWS\tasks\1-Click Maintenance.job
[2006/12/31 19:08:53 | 000,004,128 | ---- | M] () -- C:\INFCACHE.1
[2006/12/31 19:04:48 | 000,000,008 | ---- | M] () -- C:\WINDOWS\System32\nvModes.dat
[2006/12/31 19:03:25 | 000,004,161 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI
[2006/12/31 19:01:49 | 000,000,358 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf
[2006/12/15 10:54:30 | 000,061,440 | ---- | M] (eMPIA Technology, Inc.) -- C:\WINDOWS\emMON.exe
[2006/12/08 06:02:00 | 000,251,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_5.dll
[25 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\*.tmp files -> C:\*.tmp -> ]
========== Files Created - No Company Name ==========
[2010/12/24 00:37:42 | 000,000,340 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\fix2.bat
[2010/12/24 00:35:53 | 000,000,715 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\fix1.bat
[2010/12/23 12:43:13 | 003,997,850 | R--- | C] () -- C:\Documents and Settings\Administrator\Desktop\ComboFix.exe
[2010/12/23 12:41:04 | 000,000,721 | ---- | C] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\FlashPeak SlimBrowser.lnk
[2010/12/23 10:50:42 | 000,000,210 | ---- | C] () -- C:\Boot.bak
[2010/12/23 10:50:39 | 000,260,272 | RHS- | C] () -- C:\cmldr
[2010/12/23 10:47:01 | 000,256,512 | ---- | C] () -- C:\WINDOWS\PEV.exe
[2010/12/23 10:47:01 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
[2010/12/23 10:47:01 | 000,089,088 | ---- | C] () -- C:\WINDOWS\MBR.exe
[2010/12/23 10:47:01 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
[2010/12/23 10:47:01 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
[2010/12/23 10:37:47 | 000,000,715 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\FlashPeak SlimBrowser.lnk
[2010/12/23 10:29:39 | 000,000,000 | ---- | C] () -- C:\autoexec.bat
[2010/12/23 10:24:43 | 000,000,330 | -H-- | C] () -- C:\WINDOWS\tasks\MP Scheduled Scan.job
[2010/12/16 20:57:23 | 003,992,266 | ---- | C] () -- C:\Documents and Settings\David\Desktop\ComboFix.exe
[2010/12/14 03:22:24 | 000,296,448 | ---- | C] () -- C:\Documents and Settings\David\My Documents\gmer.exe
[2010/12/14 02:53:10 | 000,050,477 | ---- | C] () -- C:\Documents and Settings\David\Desktop\Defogger.exe
[2010/12/10 12:10:25 | 097,909,064 | ---- | C] () -- C:\Documents and Settings\David\Desktop\Norman_Malware_Cleaner.exe
[2010/12/10 11:35:15 | 000,507,360 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\sdsetup_aff.exe
[2010/12/10 09:28:07 | 000,284,000 | ---- | C] () -- C:\Documents and Settings\Administrator\My Documents\Capture1.gif
[2010/12/10 07:28:41 | 000,001,598 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\True Sword.lnk
[2010/12/10 07:09:56 | 000,354,396 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\SysProt.zip
[2010/12/09 03:30:35 | 195,674,112 | ---- | C] () -- C:\Documents and Settings\Administrator\My Documents\'s.BootCD.10.0.iso
[2010/12/09 03:04:07 | 000,660,752 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\iExplore.exe
[2010/12/09 02:59:32 | 000,000,136 | ---- | C] () -- C:\Documents and Settings\Administrator\Local Settings\Application Data\fusioncache.dat
[2010/12/09 02:58:38 | 000,000,782 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\Windows Media Player.lnk
[2010/12/09 02:23:24 | 001,230,779 | ---- | C] () -- C:\Documents and Settings\David\Desktop\tdsskiller.zip
[2010/12/09 01:37:43 | 000,000,472 | ---- | C] () -- C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job
[2010/12/09 01:20:14 | 000,000,885 | ---- | C] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\Ad-Aware.lnk
[2010/12/09 00:35:09 | 000,009,830 | ---- | C] () -- C:\Documents and Settings\David\Desktop\exefix.reg
[2010/12/08 12:05:19 | 000,732,846 | ---- | C] () -- C:\WINDOWS\umcat_01.db
[2010/12/08 11:22:12 | 000,001,973 | ---- | C] () -- C:\Documents and Settings\David\Desktop\SpyHunter.lnk
[2010/12/08 10:49:37 | 000,002,600 | ---- | C] () -- C:\Documents and Settings\David\Desktop\xp_exe_fix.reg
[2010/12/08 10:49:27 | 000,000,745 | ---- | C] () -- C:\Documents and Settings\David\Desktop\xp_exe_fix.zip
[2010/12/08 08:51:05 | 000,296,448 | ---- | C] () -- C:\Documents and Settings\David\Desktop\gmer.exe
[2010/12/08 08:50:27 | 000,288,107 | ---- | C] () -- C:\Documents and Settings\David\Desktop\gmer.zip
[2010/12/08 08:48:39 | 000,624,128 | ---- | C] () -- C:\Documents and Settings\David\Desktop\dds.scr
[2010/12/08 08:38:32 | 000,000,128 | ---- | C] () -- C:\Documents and Settings\Guest\Local Settings\Application Data\fusioncache.dat
[2010/12/08 08:24:52 | 000,000,040 | ---- | C] () -- C:\Documents and Settings\David\defogger_reenable
[2010/12/08 05:12:26 | 000,000,782 | ---- | C] () -- C:\Documents and Settings\Guest\Desktop\Windows Media Player.lnk
[2010/12/08 05:12:17 | 000,001,791 | ---- | C] () -- C:\Documents and Settings\Guest\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2010/12/08 05:12:16 | 000,000,815 | ---- | C] () -- C:\Documents and Settings\Guest\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2010/12/08 05:12:16 | 000,000,079 | ---- | C] () -- C:\Documents and Settings\Guest\Application Data\Microsoft\Internet Explorer\Quick Launch\Show Desktop.scf
[2010/12/08 05:06:48 | 000,000,951 | ---- | C] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\Spybot - Search & Destroy.lnk
[2010/12/08 05:06:48 | 000,000,933 | ---- | C] () -- C:\Documents and Settings\David\Desktop\Spybot - Search & Destroy.lnk
[2010/12/08 04:46:01 | 000,507,360 | ---- | C] () -- C:\Documents and Settings\David\Desktop\sdsetup_aff.exe
[2010/12/08 04:32:56 | 000,000,490 | -H-- | C] () -- C:\WINDOWS\tasks\Norton Security Scan for Administrator.job
[2010/12/08 04:08:17 | 000,000,184 | ---- | C] () -- C:\Documents and Settings\David\Desktop\NPE.ctl
[2010/12/08 04:08:13 | 005,716,848 | ---- | C] () -- C:\Documents and Settings\David\Desktop\NPE.exe
[2010/12/08 03:35:06 | 000,000,329 | ---- | C] () -- C:\Documents and Settings\David\Desktop\fix.reg
[2010/12/08 03:34:58 | 000,000,349 | ---- | C] () -- C:\Documents and Settings\David\fix.reg
[2010/12/08 03:15:25 | 000,660,752 | ---- | C] () -- C:\Documents and Settings\David\Desktop\iExplore.exe
[2010/12/08 03:14:17 | 000,660,752 | ---- | C] () -- C:\Documents and Settings\David\Desktop\rkill.scr
[2010/12/08 03:12:37 | 000,660,752 | ---- | C] () -- C:\Documents and Settings\David\Desktop\rkill.exe
[2010/12/08 03:04:42 | 000,364,032 | ---- | C] () -- C:\Documents and Settings\David\Desktop\rkill.com
[2010/12/02 06:24:03 | 000,018,274 | ---- | C] () -- C:\Documents and Settings\David\My Documents\care_comm_02_12_10.odt
[2010/11/19 16:08:14 | 000,597,503 | ---- | C] () -- C:\Documents and Settings\David\Desktop\downloadhelper-4.8.xpi.zip
[2010/11/19 16:07:47 | 006,198,784 | ---- | C] () -- C:\Documents and Settings\David\Desktop\Softonic-de3.exe
[2010/11/19 16:07:47 | 000,597,503 | ---- | C] () -- C:\Documents and Settings\David\Desktop\downloadhelper-4.8.xpi
[2010/11/16 10:56:13 | 000,000,038 | ---- | C] () -- C:\WINDOWS\AviSplitter.INI
[2010/11/16 03:13:17 | 000,000,625 | ---- | C] () -- C:\Documents and Settings\David\Desktop\Shortcut to webid.pdf.lnk
[2010/11/07 14:29:06 | 000,000,167 | ---- | C] () -- C:\Documents and Settings\David\udownload.dat
[2010/11/07 05:48:21 | 000,001,546 | ---- | C] () -- C:\Documents and Settings\David\Desktop\Picture To Icon.lnk
[2010/11/07 05:48:21 | 000,000,022 | ---- | C] () -- C:\WINDOWS\System32\msxml.p2i
[2010/11/07 05:48:21 | 000,000,022 | ---- | C] () -- C:\WINDOWS\msxml.p2i
[2010/11/02 11:47:16 | 035,758,536 | ---- | C] () -- C:\Documents and Settings\David\mrt.exe
[2010/10/23 11:30:01 | 000,151,566 | ---- | C] () -- C:\WINDOWS\System32\UninstIPP.isu
[2010/10/23 11:30:01 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\IPPCPUID.DLL
[2010/10/14 08:21:36 | 000,000,486 | ---- | C] () -- C:\WINDOWS\tasks\1-Click Maintenance.job
[2010/10/06 13:26:19 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_ccdcmb_01009.Wdf
[2010/10/06 13:26:14 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\MsftWdf_Kernel_01009_Coinstaller_Critical.Wdf
[2010/10/05 07:09:56 | 000,010,508 | ---- | C] () -- C:\Documents and Settings\David\My Documents\cmykVerticalTest.pdf
[2010/09/30 23:50:46 | 000,000,450 | ---- | C] () -- C:\Documents and Settings\David\Desktop\Shortcut to Jewel Covers.lnk
[2010/09/28 03:04:50 | 000,001,475 | ---- | C] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\eBay Turbo Lister 2.lnk
[2010/09/24 07:46:50 | 000,000,472 | ---- | C] () -- C:\Documents and Settings\David\results.txt
[2010/09/24 07:45:32 | 000,376,832 | ---- | C] () -- C:\WINDOWS\System32\AegisI5Installer.exe
[2010/09/23 05:45:02 | 000,451,072 | ---- | C] () -- C:\WINDOWS\System32\ISSRemoveSP.exe
[2010/09/22 13:39:09 | 000,001,904 | ---- | C] () -- C:\WINDOWS\System32\SetupBD.din
[2010/09/22 12:39:40 | 000,134,630 | ---- | C] () -- C:\WINDOWS\setupapi.old
[2010/09/22 10:38:37 | 000,017,443 | ---- | C] () -- C:\Documents and Settings\David\activity.txt
[2010/09/21 18:30:07 | 000,001,409 | ---- | C] () -- C:\Documents and Settings\David\Desktop\truePlay.lnk
[2010/09/21 18:15:59 | 000,001,418 | ---- | C] () -- C:\Documents and Settings\David\Desktop\trueSpace7.61 Beta 8 Standalone.lnk
[2010/09/21 18:13:41 | 000,000,819 | ---- | C] () -- C:\WINDOWS\System32\regpackages.bat
[2010/09/21 18:12:47 | 000,000,065 | ---- | C] () -- C:\WINDOWS\Caligari.ini
[2010/09/20 17:31:02 | 000,048,439 | ---- | C] () -- C:\Documents and Settings\David\My Documents\kitchen_01.png
[2010/09/13 16:16:17 | 000,000,000 | -H-- | C] () -- C:\Documents and Settings\David\My Documents\1255.mpg.dls.bak
[2010/09/13 16:08:24 | 000,001,978 | ---- | C] () -- C:\Documents and Settings\David\Desktop\Media Player Classic - Home Cinema.lnk
[2010/09/12 14:40:20 | 000,651,264 | ---- | C] () -- C:\WINDOWS\System32\libeay32.dll
[2010/09/12 14:40:20 | 000,283,904 | ---- | C] () -- C:\WINDOWS\System32\drivers\ar5523.sys
[2010/09/12 14:40:20 | 000,143,632 | ---- | C] () -- C:\WINDOWS\System32\drivers\ar5523.bin
[2010/09/12 14:40:19 | 000,147,456 | ---- | C] () -- C:\WINDOWS\System32\ssleay32.dll
[2010/09/12 14:40:19 | 000,114,688 | ---- | C] () -- C:\WINDOWS\System32\AegisI2.exe
[2010/09/12 14:40:19 | 000,110,592 | ---- | C] () -- C:\WINDOWS\System32\AegisI5.exe
[2010/09/12 14:40:19 | 000,036,864 | ---- | C] () -- C:\WINDOWS\System32\acs.exe
[2010/09/12 14:40:19 | 000,002,655 | ---- | C] () -- C:\WINDOWS\System32\arccsel.dat
[2010/09/12 14:40:19 | 000,000,967 | ---- | C] () -- C:\WINDOWS\System32\acs.pif
[2010/09/12 14:01:36 | 011,630,887 | ---- | C] () -- C:\Documents and Settings\David\My Documents\HA311v12.zip
[2010/09/11 06:46:40 | 000,023,392 | ---- | C] () -- C:\WINDOWS\System32\nscompat.tlb
[2010/09/11 06:46:40 | 000,016,832 | ---- | C] () -- C:\WINDOWS\System32\amcompat.tlb
[2010/09/11 06:45:02 | 000,356,856 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\FontCache3.0.0.0.dat
[2010/09/10 12:36:38 | 000,000,474 | -H-- | C] () -- C:\WINDOWS\tasks\Norton Security Scan for David.job
[2010/09/10 12:36:31 | 000,000,172 | ---- | C] () -- C:\WINDOWS\System32\drivers\NSS\0207030.022\isolate.ini
[2010/09/10 09:09:01 | 017,267,848 | ---- | C] () -- C:\Documents and Settings\David\My Documents\R158511.exe
[2010/09/10 07:59:17 | 000,212,023 | ---- | C] () -- C:\Documents and Settings\David\My Documents\YourBTbill_30082010.pdf
[2010/09/10 07:43:25 | 000,075,927 | ---- | C] () -- C:\Documents and Settings\David\My Documents\ROWAN_JM-GF-Colour7-counc_tax-5035-OUTPUT_0370_001.pdf
[2010/09/09 10:35:00 | 000,082,704 | ---- | C] () -- C:\Documents and Settings\David\My Documents\ROWAN_JM-GF-Colour7-counc_tax-5035-OUTPUT_0368_001.pdf
[2010/09/08 11:30:55 | 000,014,283 | ---- | C] () -- C:\Documents and Settings\David\My Documents\bcw1.odt
[2010/09/08 11:30:42 | 000,016,896 | ---- | C] () -- C:\Documents and Settings\David\My Documents\talktalk2.doc
[2010/09/08 11:12:26 | 000,015,360 | ---- | C] () -- C:\Documents and Settings\David\My Documents\talktalk.doc
[2010/07/09 03:09:37 | 000,013,252 | ---- | C] () -- C:\Documents and Settings\David\My Documents\g4_docu.odt
[2010/07/02 09:22:04 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\UMDF\Msft_User_PCCSWpdDriver_01_05_00.Wdf
[2010/07/02 09:21:27 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_05_00.Wdf
[2010/07/02 07:45:01 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\UMDF\Msft_User_WpdMtpDr_01_00_00.Wdf
[2010/07/02 07:44:47 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_ccdcmb_01007.Wdf
[2010/07/02 07:44:44 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\MsftWdf_Kernel_01007_Coinstaller_Critical.Wdf
[2010/07/02 06:53:28 | 000,001,876 | ---- | C] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\Nokia Music.lnk
[2010/06/11 05:07:17 | 000,016,382 | ---- | C] () -- C:\WINDOWS\System32\drivers\merlinC.rom
[2010/06/07 09:15:14 | 000,019,724 | ---- | C] () -- C:\Documents and Settings\David\My Documents\morrisons.odt
[2010/05/27 04:55:49 | 000,103,176 | ---- | C] () -- C:\Documents and Settings\David\Local Settings\Application Data\c4u.log
[2010/05/27 04:55:27 | 000,000,177 | ---- | C] () -- C:\Documents and Settings\David\Local Settings\Application Data\LaunchHomeCenter.log
[2010/05/27 04:05:48 | 000,000,890 | ---- | C] () -- C:\WINDOWS\System32\InstallUtil.InstallLog
[2010/05/27 04:00:15 | 000,057,710 | ---- | C] () -- C:\Documents and Settings\David\Local Settings\Application Data\installer.log
[2010/05/27 03:14:20 | 000,001,668 | ---- | C] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\3Connect.lnk
[2010/05/27 03:13:07 | 000,071,259 | ---- | C] () -- C:\WINDOWS\Huawei ModemsUninstall.exe
[2010/05/27 03:12:29 | 000,010,240 | ---- | C] () -- C:\WINDOWS\System32\drivers\mdvrmng.sys
[2010/05/24 09:55:37 | 000,001,047 | ---- | C] () -- C:\Documents and Settings\David\Desktop\RadioSure.lnk
[2010/04/25 11:08:04 | 000,000,793 | ---- | C] () -- C:\Documents and Settings\David\Desktop\Hello Engines! Standard 6.lnk
[2010/04/11 14:15:28 | 000,001,565 | ---- | C] () -- C:\Documents and Settings\David\Desktop\IrfanView Thumbnails.lnk
[2010/04/11 14:15:28 | 000,000,685 | ---- | C] () -- C:\Documents and Settings\David\Desktop\IrfanView.lnk
[2010/04/08 04:21:41 | 000,134,270 | ---- | C] () -- C:\WINDOWS\System32\nvapps.nvb
[2010/03/31 08:22:35 | 000,000,008 | ---- | C] () -- C:\Documents and Settings\David\Desktop\New Rich Text Document.rtf
[2010/03/31 06:15:23 | 000,000,720 | ---- | C] () -- C:\Documents and Settings\David\Desktop\Audiobook Cutter FE.lnk
[2010/03/04 09:32:17 | 000,001,476 | ---- | C] () -- C:\Documents and Settings\David\Desktop\TONG!.lnk
[2010/03/04 09:04:40 | 000,001,848 | ---- | C] () -- C:\Documents and Settings\David\Desktop\Secret Maryo Chronicles.lnk
[2010/03/04 08:47:15 | 000,001,681 | ---- | C] () -- C:\Documents and Settings\David\Desktop\Bubble Train.lnk
[2010/02/28 08:52:54 | 008,118,438 | ---- | C] () -- C:\Documents and Settings\David\My Documents\veetle-0.9.16.exe
[2010/02/22 10:12:20 | 000,029,921 | ---- | C] () -- C:\Documents and Settings\David\My Documents\astrid_gov_02_10.odt
[2010/02/05 03:12:04 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2010/02/05 03:10:18 | 000,002,370 | ---- | C] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\Nero StartSmart Essentials.lnk
[2010/02/05 03:10:18 | 000,002,272 | ---- | C] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\Nero Home Essentials SE.lnk
[2010/02/05 03:08:30 | 000,001,024 | ---- | C] () -- C:\Documents and Settings\David\.rnd
[2010/01/27 06:00:53 | 558,369,298 | ---- | C] () -- C:\Documents and Settings\David\My Documents\OOo_3.1.1_090909_Win32Intel_install_en-US_de_hu_it_fr.exe
[2010/01/17 12:00:43 | 000,000,884 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2010/01/17 12:00:43 | 000,000,880 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2010/01/17 11:55:45 | 000,001,791 | ---- | C] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2010/01/14 06:09:28 | 000,011,773 | ---- | C] () -- C:\Documents and Settings\David\My Documents\post_office_monthly.odt
[2010/01/13 16:12:26 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\lxcevs.dll
[2010/01/13 16:12:25 | 000,001,552 | ---- | C] () -- C:\WINDOWS\System32\lxce.loc
[2010/01/13 16:00:24 | 000,011,141 | ---- | C] () -- C:\WINDOWS\System32\LexFiles.ulf
[2010/01/13 07:42:20 | 000,607,857 | ---- | C] () -- C:\Documents and Settings\David\My Documents\BX-6VP~1.PDF
[2010/01/13 07:42:14 | 000,556,639 | ---- | C] () -- C:\Documents and Settings\David\My Documents\bx6vp_1.exe
[2010/01/13 07:40:55 | 000,654,529 | ---- | C] () -- C:\Documents and Settings\David\My Documents\BX-6SP2.PDF
[2010/01/13 07:40:05 | 000,591,291 | ---- | C] () -- C:\Documents and Settings\David\My Documents\bx6sp2.exe
[2010/01/06 07:03:18 | 000,000,648 | ---- | C] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\LingoPad.lnk
[2009/12/31 04:28:13 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2009/12/27 17:00:48 | 000,114,243 | ---- | C] () -- C:\WINDOWS\System32\drivers\klin.dat
[2009/12/27 17:00:48 | 000,097,859 | ---- | C] () -- C:\WINDOWS\System32\drivers\klick.dat
[2009/12/19 09:16:15 | 000,000,041 | ---- | C] () -- C:\WLANCUGINA.TEXT
[2009/12/19 09:06:43 | 000,000,020 | ---- | C] () -- C:\GINA.TEXT
[2009/11/27 07:23:59 | 000,000,685 | ---- | C] () -- C:\Documents and Settings\David\Desktop\Simpo PDF Creator.lnk
[2009/11/27 04:57:10 | 000,000,730 | ---- | C] () -- C:\Documents and Settings\David\Desktop\Simpo PDF Merge & Split.lnk
[2009/11/27 04:28:47 | 000,105,472 | ---- | C] () -- C:\WINDOWS\PreConvert.dll
[2009/11/21 14:14:16 | 000,000,746 | ---- | C] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\Dev-PHP.lnk
[2009/11/05 07:11:15 | 002,270,797 | ---- | C] () -- C:\Documents and Settings\David\My Documents\ADSL-8000.pdf
[2009/11/04 12:37:22 | 000,000,685 | ---- | C] () -- C:\Documents and Settings\David\Desktop\Free CD Ripper.lnk
[2009/11/04 07:21:32 | 000,022,552 | ---- | C] () -- C:\Documents and Settings\David\My Documents\claimform.pdf
[2009/10/19 03:43:08 | 000,001,502 | ---- | C] () -- C:\Documents and Settings\David\Desktop\blinkx beat.lnk
[2009/10/19 03:42:47 | 000,001,613 | ---- | C] () -- C:\Documents and Settings\David\Desktop\Free Dolphins Screensaver.lnk
[2009/10/19 03:42:47 | 000,001,611 | ---- | C] () -- C:\Documents and Settings\David\Desktop\Free Whales ScreenSaver.lnk
[2009/10/19 03:42:47 | 000,001,609 | ---- | C] () -- C:\Documents and Settings\David\Desktop\Free Animated Desktop Wallpaper.lnk
[2009/10/07 03:54:06 | 000,000,851 | ---- | C] () -- C:\Documents and Settings\David\Desktop\Format Factory.lnk
[2009/10/07 03:52:13 | 000,000,705 | ---- | C] () -- C:\Documents and Settings\David\Desktop\Extra Video Creator.lnk
[2009/10/05 15:33:39 | 000,001,174 | ---- | C] () -- C:\WINDOWS\mozver.dat
[2009/10/05 01:50:29 | 000,001,860 | ---- | C] () -- C:\Documents and Settings\David\Desktop\Order Autoplay Menu Designer Online.lnk
[2009/10/05 01:50:29 | 000,000,891 | ---- | C] () -- C:\Documents and Settings\David\Desktop\Autoplay Menu Designer.lnk
[2009/09/25 02:20:52 | 000,000,404 | ---- | C] () -- C:\Documents and Settings\David\Desktop\eBay.lnk
[2009/09/25 02:20:52 | 000,000,404 | ---- | C] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\eBay.lnk
[2009/09/09 14:01:40 | 000,027,675 | ---- | C] () -- C:\WINDOWS\System32\drivers\klopp.dat
[2009/08/21 08:16:40 | 000,000,410 | -H-- | C] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{9453D5F3-28BC-47B0-BFC1-2C8D7B24ECB1}.job
[2009/08/21 07:52:09 | 000,009,563 | ---- | C] () -- C:\Documents and Settings\David\My Documents\holidaypark refund 1000.00.odt
[2009/08/18 00:35:20 | 000,001,952 | ---- | C] () -- C:\WINDOWS\System32\objsafe.tlb
[2009/08/14 05:05:24 | 000,083,343 | ---- | C] () -- C:\Documents and Settings\David\My Documents\Registration of managers of care at home services.mht
[2009/08/13 00:49:36 | 000,001,577 | ---- | C] () -- C:\Documents and Settings\David\Desktop\DVD Flick.lnk
[2009/08/03 09:07:42 | 000,403,816 | ---- | C] () -- C:\WINDOWS\System32\OGACheckControl.dll
[2009/08/03 09:07:42 | 000,230,768 | ---- | C] () -- C:\WINDOWS\System32\OGAEXEC.exe
[2009/07/28 18:32:42 | 000,009,543 | ---- | C] () -- C:\Documents and Settings\David\My Documents\raten.ods
[2009/07/24 04:14:57 | 000,000,417 | ---- | C] () -- C:\Documents and Settings\David\Desktop\TalkTalk Connect & Go V6.lnk
[2009/07/14 09:55:37 | 099,550,188 | ---- | C] () -- C:\Documents and Settings\David\My Documents\regedit_reset.reg
[2009/07/13 07:22:14 | 000,061,440 | ---- | C] () -- C:\WINDOWS\System32\ZDTRLib.DLL
[2009/07/13 07:22:14 | 000,057,344 | ---- | C] () -- C:\WINDOWS\System32\ZD12APP.dll
[2009/07/13 07:22:14 | 000,024,576 | ---- | C] () -- C:\WINDOWS\System32\ZyDelReg.exe
[2009/07/13 07:22:14 | 000,011,776 | ---- | C] () -- C:\WINDOWS\System32\InsDrvZD.dll
[2009/06/16 09:05:28 | 000,000,796 | ---- | C] () -- C:\Documents and Settings\David\Desktop\Iconomize.lnk
[2009/06/11 12:51:36 | 000,117,562 | ---- | C] () -- C:\lxceunst.csv
[2009/06/11 12:51:36 | 000,049,254 | ---- | C] () -- C:\lxceunst.000
[2009/05/29 17:42:20 | 000,309,248 | ---- | C] () -- C:\WINDOWS\System32\sqlite36_engine.dll
[2009/05/21 04:32:21 | 000,000,687 | ---- | C] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\Dictionary.lnk
[2009/05/21 04:31:48 | 000,000,687 | ---- | C] () -- C:\Documents and Settings\David\Desktop\Dictionary.lnk
[2009/05/11 12:47:43 | 000,009,839 | ---- | C] () -- C:\Documents and Settings\David\My Documents\vollmacht doris amberg 11.05.09.odt
[2009/05/11 12:32:51 | 000,009,609 | ---- | C] () -- C:\Documents and Settings\David\My Documents\Fr. Cremer Sozi amt 11.05.09.odt
[2009/04/23 03:05:05 | 000,000,985 | ---- | C] () -- C:\Documents and Settings\David\Desktop\Wondershare DVD to Flash Converter.lnk
[2009/04/23 03:05:05 | 000,000,935 | ---- | C] () -- C:\Documents and Settings\David\Desktop\Wondershare Navigator.lnk
[2009/04/22 03:13:18 | 000,001,706 | ---- | C] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\Zoner Photo Studio 11.lnk
[2009/04/21 03:09:23 | 000,017,920 | ---- | C] () -- C:\Documents and Settings\David\My Documents\TENANCY APPLICATION FORM.doc
[2009/04/20 05:38:20 | 000,000,064 | ---- | C] () -- C:\WINDOWS\System32\Wucom.ucs
[2009/04/20 05:38:17 | 000,000,126 | ---- | C] () -- C:\WINDOWS\Compall.INI
[2009/04/20 05:33:52 | 000,000,009 | ---- | C] () -- C:\WINDOWS\Convsn.d11
[2009/04/20 03:43:42 | 000,000,008 | ---- | C] () -- C:\WINDOWS\System32\nvModes.dat
[2009/04/19 15:12:19 | 000,162,304 | ---- | C] () -- C:\UNWISE.EXE
[2009/04/19 15:12:19 | 000,006,558 | ---- | C] () -- C:\UNWISE.INI
[2009/04/03 08:12:55 | 000,000,794 | ---- | C] () -- C:\Documents and Settings\David\Desktop\3D Covers Extreme.lnk
[2009/03/25 16:00:05 | 000,013,959 | ---- | C] () -- C:\Documents and Settings\David\My Documents\wirtz.odt
[2009/03/25 07:20:21 | 000,014,057 | ---- | C] () -- C:\Documents and Settings\David\My Documents\arbeitsagentur_david_jun.odt
[2009/03/19 08:15:27 | 000,001,546 | ---- | C] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\ImgBurn.lnk
[2009/03/19 08:15:27 | 000,001,528 | ---- | C] () -- C:\Documents and Settings\David\Desktop\ImgBurn.lnk
[2009/03/19 04:58:33 | 002,622,551 | ---- | C] () -- C:\WINDOWS\System32\IP_192.212.5.15
[2009/03/11 14:01:28 | 000,023,552 | ---- | C] () -- C:\WINDOWS\System32\DirectCOM.dll
[2009/03/11 06:00:12 | 000,000,655 | ---- | C] () -- C:\Documents and Settings\David\Desktop\AWicons Pro.lnk
[2009/03/05 07:16:53 | 000,000,091 | -H-- | C] () -- C:\Documents and Settings\David\Application Data\xpy.ini
[2009/03/05 07:16:24 | 000,094,428 | ---- | C] () -- C:\Documents and Settings\Administrator\My Documents\xpy.exe
[2009/03/05 07:16:13 | 000,087,801 | ---- | C] () -- C:\Documents and Settings\Administrator\My Documents\xpy-0.10.9-bin.zip
[2009/02/19 16:47:15 | 000,010,818 | ---- | C] () -- C:\Documents and Settings\David\My Documents\allocation of duties 2.odt
[2009/02/19 16:28:16 | 000,009,713 | ---- | C] () -- C:\Documents and Settings\David\My Documents\allocation of daily duities.odt
[2009/02/06 06:48:47 | 000,000,721 | ---- | C] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\FlashPeak SlimBrowser.lnk
[2009/01/29 10:45:23 | 000,009,842 | ---- | C] () -- C:\Documents and Settings\David\My Documents\Glasgow letter 29.01.09.odt
[2009/01/23 06:08:44 | 000,002,495 | ---- | C] () -- C:\Documents and Settings\David\Desktop\Microsoft Office Excel 2003.lnk
[2009/01/22 09:23:29 | 000,000,376 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2009/01/14 10:33:13 | 000,010,933 | ---- | C] () -- C:\Documents and Settings\David\My Documents\untitled_0_2.odt
[2009/01/14 08:18:21 | 000,014,268 | ---- | C] () -- C:\Documents and Settings\David\My Documents\untitled_0_1.odt
[2009/01/14 08:03:49 | 000,014,313 | ---- | C] () -- C:\Documents and Settings\David\My Documents\untitled_0.odt
[2009/01/14 08:03:49 | 000,009,773 | ---- | C] () -- C:\Documents and Settings\David\My Documents\untitled_1.ods
[2008/12/16 06:07:43 | 000,000,678 | ---- | C] () -- C:\Documents and Settings\David\Desktop\Extra CD DVD Burner.lnk
[2008/12/10 06:58:46 | 000,000,774 | ---- | C] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\InfraRecorder.lnk
[2008/12/03 08:41:35 | 000,037,407 | ---- | C] () -- C:\Documents and Settings\David\My Documents\castle2.gif
[2008/12/03 08:38:03 | 000,048,356 | ---- | C] () -- C:\Documents and Settings\David\My Documents\castle.gif
[2008/12/03 08:35:03 | 000,086,182 | ---- | C] () -- C:\Documents and Settings\David\My Documents\tattoo_2007.gif
[2008/12/03 08:30:54 | 000,144,138 | ---- | C] () -- C:\Documents and Settings\David\My Documents\tattoo_piper.gif
[2008/12/03 08:30:00 | 000,045,900 | ---- | C] () -- C:\Documents and Settings\David\My Documents\tattoo_header.gif
[2008/12/02 08:10:54 | 000,132,865 | ---- | C] () -- C:\Documents and Settings\David\My Documents\tattoo2.gif
[2008/12/02 08:02:17 | 000,318,827 | ---- | C] () -- C:\Documents and Settings\David\My Documents\tattoo.gif
[2008/11/27 11:37:50 | 000,075,776 | ---- | C] () -- C:\Documents and Settings\David\My Documents\contract.doc
[2008/11/18 06:12:39 | 000,014,000 | ---- | C] () -- C:\Documents and Settings\David\My Documents\ebay_complaint_181108.odt
[2008/11/18 05:25:39 | 000,012,552 | ---- | C] () -- C:\Documents and Settings\David\My Documents\BBC_complaint.odt
[2008/10/30 19:09:29 | 001,174,471 | ---- | C] () -- C:\Documents and Settings\David\My Documents\recovery.hst
[2008/10/30 07:12:54 | 000,006,200 | ---- | C] () -- C:\WINDOWS\System32\INT13EXT.VXD
[2008/10/30 06:00:47 | 000,000,137 | ---- | C] () -- C:\WINDOWS\System32\09wutili.sys
[2008/10/30 06:00:40 | 000,000,674 | ---- | C] () -- C:\Documents and Settings\David\Desktop\WinUtilities.lnk
[2008/10/29 14:19:33 | 000,000,713 | ---- | C] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\Intrusion Detection System - Sax2.lnk
[2008/10/23 08:21:36 | 000,000,935 | ---- | C] () -- C:\Documents and Settings\David\Desktop\Batch Image Watermarker.lnk
[2008/10/19 16:47:20 | 000,008,743 | ---- | C] () -- C:\Documents and Settings\David\My Documents\Colostoma bag changing record.odt
[2008/10/09 06:31:51 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\null
[2008/09/24 07:32:33 | 002,255,133 | ---- | C] () -- C:\Documents and Settings\David\My Documents\cash_book_pro_2008.zip
[2008/09/24 07:23:54 | 000,016,384 | ---- | C] () -- C:\Documents and Settings\David\My Documents\DailyCashFillIn.xls
[2008/09/19 07:37:08 | 000,000,078 | ---- | C] () -- C:\WINDOWS\fsp.bin
[2008/09/19 07:34:30 | 000,000,000 | ---- | C] () -- C:\WINDOWS\forbes
[2008/09/19 07:33:52 | 001,376,256 | ---- | C] () -- C:\Documents and Settings\David\My Documents\FCSCOMM.DLL
[2008/09/19 06:56:07 | 013,704,240 | ---- | C] () -- C:\Documents and Settings\David\My Documents\light08.exe
[2008/09/18 09:06:36 | 000,000,070 | ---- | C] () -- C:\WINDOWS\forbes.ini
[2008/09/04 08:03:19 | 000,009,718 | ---- | C] () -- C:\Documents and Settings\David\My Documents\t-shirt.odt
[2008/08/24 17:29:52 | 000,000,887 | ---- | C] () -- C:\Documents and Settings\David\Desktop\BusinessCardsMX3.lnk
[2008/08/18 02:16:08 | 001,042,598 | ---- | C] () -- C:\Documents and Settings\David\My Documents\musicofsco_jewel.odg
[2008/08/16 03:51:00 | 000,142,128 | ---- | C] () -- C:\Documents and Settings\David\My Documents\mvstcdxx.lst
[2008/08/16 03:48:39 | 000,275,158 | ---- | C] () -- C:\Documents and Settings\David\My Documents\Red_Hot_Chilli_Pipers_-_Bagrock_To_The_Masses_(2007)-[Cd]-[www.FreeCovers.net].jpg
[2008/08/16 03:30:12 | 000,259,999 | ---- | C] () -- C:\Documents and Settings\David\My Documents\Red_Hot_Chilli_Pipers_-_Bagrock_To_The_Masses_(2007)-[Front]-[www.FreeCovers.net].jpg
[2008/08/16 03:29:33 | 000,484,242 | ---- | C] () -- C:\Documents and Settings\David\My Documents\Red_Hot_Chilli_Pipers_-_Bagrock_To_The_Masses_(2007)-[Back]-[www.FreeCovers.net].jpg
[2008/07/30 14:50:00 | 000,516,096 | ---- | C] () -- C:\WINDOWS\System32\rtl4.dat
[2008/07/30 14:50:00 | 000,016,384 | ---- | C] () -- C:\WINDOWS\System32\rtl3.dat
[2008/07/20 15:06:22 | 000,087,040 | ---- | C] () -- C:\Documents and Settings\David\My Documents\4 Evidence Gathering Form[1].doc
[2008/07/17 10:16:53 | 000,067,866 | ---- | C] () -- C:\WINDOWS\System32\drivers\netwlan5.img
[2008/07/17 10:16:36 | 000,000,974 | ---- | C] () -- C:\WINDOWS\System32\pid.inf
[2008/07/17 10:16:28 | 000,129,045 | ---- | C] () -- C:\WINDOWS\System32\drivers\cxthsfs2.cty
[2008/07/17 10:16:24 | 000,064,352 | ---- | C] () -- C:\WINDOWS\System32\drivers\ativmc20.cod
[2008/07/14 18:31:02 | 000,008,353 | ---- | C] () -- C:\Documents and Settings\David\My Documents\item_list.odt
[2008/07/14 02:41:57 | 000,008,693 | ---- | C] () -- C:\Documents and Settings\David\My Documents\HR Department.odt
[2008/07/11 09:49:30 | 000,912,896 | ---- | C] () -- C:\Documents and Settings\David\My Documents\SUPPORT_APPLICATION_FORM_Filled.doc
[2008/07/11 07:01:57 | 000,858,112 | ---- | C] () -- C:\Documents and Settings\David\My Documents\SUPPORT_APPLICATION_FORM.doc
[2008/06/27 18:51:04 | 727,433,216 | ---- | C] () -- C:\Documents and Settings\David\My Documents\OpenDisc08.07.iso
[2008/06/26 06:12:49 | 000,016,600 | ---- | C] () -- C:\mvstcdxx.lst
[2008/06/19 12:26:19 | 000,008,471 | ---- | C] () -- C:\Documents and Settings\David\My Documents\statement cook 19.06.08.odt
[2008/06/16 07:08:25 | 000,013,657 | ---- | C] () -- C:\Documents and Settings\David\My Documents\citibank_160608.odt
[2008/06/02 05:49:21 | 000,000,650 | ---- | C] () -- C:\Documents and Settings\David\Desktop\HTTrack Website Copier.lnk
[2008/05/31 15:28:41 | 000,401,345 | ---- | C] () -- C:\Documents and Settings\David\My Documents\Remoteobserver.zip
[2008/05/28 13:29:49 | 000,001,620 | ---- | C] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2008/05/26 15:59:42 | 000,018,904 | ---- | C] () -- C:\WINDOWS\System32\structuredqueryschematrivial.bin
[2008/05/26 15:59:40 | 000,106,605 | ---- | C] () -- C:\WINDOWS\System32\structuredqueryschema.bin
[2008/05/07 03:52:03 | 000,541,809 | ---- | C] () -- C:\Documents and Settings\David\kilt1.jpg
[2008/05/07 03:52:00 | 004,274,402 | ---- | C] () -- C:\Documents and Settings\David\attidavescotti_edited-1.png
[2008/05/06 09:08:37 | 000,243,999 | ---- | C] () -- C:\Documents and Settings\David\My Documents\games_front.odg
[2008/05/02 04:24:47 | 000,000,924 | ---- | C] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\TweakRAM.lnk
[2008/05/02 04:24:47 | 000,000,912 | ---- | C] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\Applications Startup Wizard.lnk
[2008/04/28 10:31:20 | 685,389,545 | ---- | C] () -- C:\Creative Suite Master Collection Alternative.zip
[2008/04/26 10:23:41 | 000,152,403 | ---- | C] () -- C:\Documents and Settings\David\My Documents\quasar_install-1.4.5.pdf
[2008/04/26 10:10:17 | 000,187,300 | ---- | C] () -- C:\Documents and Settings\David\My Documents\wamp_2_user_manual.pdf
[2008/04/26 10:09:18 | 000,005,957 | ---- | C] () -- C:\WINDOWS\php_old.ini
[2008/04/26 10:01:32 | 000,000,606 | ---- | C] () -- C:\Documents and Settings\David\Desktop\Quasar Accounting.lnk
[2008/04/24 03:09:19 | 000,390,490 | ---- | C] () -- C:\Documents and Settings\David\My Documents\receipt2.jpg
[2008/04/24 03:07:45 | 000,683,764 | ---- | C] () -- C:\Documents and Settings\David\My Documents\receipt1.jpg
[2008/04/24 03:05:29 | 000,078,911 | ---- | C] () -- C:\Documents and Settings\David\My Documents\receipt.gif
[2008/04/23 11:22:03 | 448,466,944 | ---- | C] () -- C:\Documents and Settings\David\My Documents\opensource_games21.iso
[2008/04/23 11:03:59 | 000,140,383 | ---- | C] () -- C:\Documents and Settings\David\My Documents\opensource_dvd_label.zip
[2008/04/21 03:09:49 | 000,033,250 | ---- | C] () -- C:\Documents and Settings\David\My Documents\web_design_sw.odt
[2008/04/08 18:59:56 | 000,001,393 | ---- | C] () -- C:\WINDOWS\imsins.BAK
[2008/04/08 16:19:43 | 000,106,717 | ---- | C] () -- C:\Documents and Settings\David\My Documents\blender_front_new.odg
[2008/04/08 07:19:10 | 000,525,072 | ---- | C] () -- C:\Documents and Settings\David\My Documents\Setup_QuickBooks_SimpleStart_Direct_2008.exe
[2008/04/04 09:37:30 | 000,033,114 | ---- | C] () -- C:\Documents and Settings\David\My Documents\blender_front.odt
[2008/03/30 11:27:59 | 000,027,361 | ---- | C] () -- C:\Documents and Settings\David\My Documents\synfig_back.odt
[2008/03/30 11:26:26 | 000,037,084 | ---- | C] () -- C:\Documents and Settings\David\My Documents\synfig_front.odt
[2008/03/27 09:05:39 | 000,000,043 | ---- | C] () -- C:\WINDOWS\gswin32.ini
[2008/03/27 05:42:41 | 000,026,249 | ---- | C] () -- C:\Documents and Settings\David\My Documents\graphic_front.gif.cdx
[2008/03/26 11:25:30 | 000,000,487 | ---- | C] () -- C:\Documents and Settings\David\jdraw.v1.1.5.dat
[2008/02/29 11:59:35 | 000,082,719 | ---- | C] () -- C:\Documents and Settings\David\My Documents\zanox1.gif
[2008/02/25 05:43:58 | 000,568,712 | ---- | C] () -- C:\Documents and Settings\David\My Documents\WMIDiag.exe
[2008/02/21 11:04:14 | 000,471,040 | ---- | C] () -- C:\WINDOWS\ssndii.exe
[2008/02/21 11:02:39 | 000,011,502 | ---- | C] () -- C:\WINDOWS\Dr. Printer Icon.ico
[2008/02/21 10:53:45 | 000,000,555 | ---- | C] () -- C:\WINDOWS\System32\SUGG1LMK.SMT
[2008/02/07 04:05:18 | 000,163,840 | ---- | C] () -- C:\WINDOWS\System32\hppatusg01.dll
[2008/02/05 07:28:20 | 000,000,051 | ---- | C] () -- C:\Documents and Settings\David\Local Settings\Application Data\setup.txt
[2008/02/04 13:37:27 | 000,008,289 | ---- | C] () -- C:\Documents and Settings\David\My Documents\Keep clear.odt
[2008/01/17 08:04:26 | 000,000,666 | ---- | C] () -- C:\Documents and Settings\David\Desktop\CDox.lnk
[2008/01/17 08:03:39 | 000,992,466 | ---- | C] () -- C:\Documents and Settings\David\My Documents\cdox1.0.3.exe
[2008/01/17 07:49:55 | 000,000,689 | ---- | C] () -- C:\Documents and Settings\David\Desktop\MediaFood Designer Tools.lnk
[2008/01/17 07:43:22 | 000,036,864 | ---- | C] () -- C:\WINDOWS\System32\ODBCSTF.DLL
[2008/01/17 07:24:30 | 000,050,326 | ---- | C] () -- C:\WINDOWS\dbetdf04.ini
[2008/01/14 10:54:00 | 224,840,964 | ---- | C] () -- C:\Documents and Settings\David\My Documents\OOo_2.3.1_071211_Win32Intel_install.exe
[2008/01/04 10:25:20 | 001,268,370 | ---- | C] () -- C:\Documents and Settings\David\My Documents\personal.odg
[2008/01/04 10:13:22 | 000,609,153 | ---- | C] () -- C:\Documents and Settings\David\My Documents\personal02.jpg
[2008/01/04 10:11:51 | 000,613,226 | ---- | C] () -- C:\Documents and Settings\David\My Documents\personal01.jpg
[2007/12/26 14:29:27 | 000,192,085 | ---- | C] () -- C:\Documents and Settings\David\My Documents\35 Programs.odt
[2007/12/21 11:44:45 | 000,626,993 | ---- | C] () -- C:\Documents and Settings\David\My Documents\tran_hearing2.jpg
[2007/12/21 11:42:40 | 001,374,805 | ---- | C] () -- C:\Documents and Settings\David\My Documents\tran_hearing1.jpg
[2007/12/19 03:31:05 | 001,008,261 | ---- | C] () -- C:\Documents and Settings\David\My Documents\atti_sick02.jpg
[2007/12/19 03:24:36 | 000,848,523 | ---- | C] () -- C:\Documents and Settings\David\My Documents\atti_sick01.jpg
[2007/12/19 03:22:15 | 000,013,283 | ---- | C] () -- C:\Documents and Settings\David\My Documents\ebaybuyers_note.odt
[2007/11/30 07:08:26 | 000,421,987 | ---- | C] () -- C:\Documents and Settings\David\My Documents\pol_31_10_07.jpg
[2007/11/30 07:03:23 | 000,000,073 | ---- | C] () -- C:\Documents and Settings\David\.gtk-bookmarks
[2007/11/30 07:02:16 | 000,447,228 | ---- | C] () -- C:\Documents and Settings\David\.fonts.cache-1
[2007/11/30 07:01:16 | 000,000,750 | ---- | C] () -- C:\Documents and Settings\David\Desktop\GIMPshop.lnk
[2007/11/30 05:24:48 | 006,094,818 | ---- | C] () -- C:\Documents and Settings\David\My Documents\poliz_31_10_07.jpg
[2007/11/23 06:52:32 | 000,012,076 | ---- | C] () -- C:\Documents and Settings\David\My Documents\jenny konto antwort.odt
[2007/11/02 07:47:02 | 019,791,496 | ---- | C] () -- C:\Documents and Settings\David\My Documents\setup.exe
[2007/11/02 07:42:16 | 019,728,820 | ---- | C] () -- C:\Documents and Settings\David\My Documents\setup.zip
[2007/10/22 09:21:37 | 000,011,264 | ---- | C] () -- C:\Documents and Settings\David\My Documents\applie for dayshift.wps
[2007/10/15 06:57:36 | 000,013,312 | ---- | C] () -- C:\Documents and Settings\David\My Documents\Statement 15.10.07.wps
[2007/10/13 11:13:19 | 000,010,752 | ---- | C] () -- C:\Documents and Settings\David\My Documents\canan.wps
[2007/10/04 07:48:07 | 000,001,745 | ---- | C] () -- C:\Documents and Settings\David\Desktop\Blender.lnk
[2007/09/28 07:46:49 | 000,047,120 | ---- | C] () -- C:\Documents and Settings\David\My Documents\Floyd.ttf
[2007/09/27 04:51:02 | 000,020,698 | ---- | C] () -- C:\WINDOWS\System32\idxcntrs.ini
[2007/09/27 04:51:02 | 000,004,640 | ---- | C] () -- C:\WINDOWS\System32\idxcntrs.h
[2007/09/27 04:48:48 | 000,030,628 | ---- | C] () -- C:\WINDOWS\System32\gsrvctr.ini
[2007/09/27 04:48:48 | 000,002,590 | ---- | C] () -- C:\WINDOWS\System32\gsrvctr.h
[2007/09/27 04:48:28 | 000,031,698 | ---- | C] () -- C:\WINDOWS\System32\gthrctr.ini
[2007/09/27 04:48:28 | 000,003,100 | ---- | C] () -- C:\WINDOWS\System32\gthrctr.h
[2007/09/21 04:58:39 | 000,000,128 | ---- | C] () -- C:\Documents and Settings\David\Local Settings\Application Data\fusioncache.dat
[2007/09/21 04:58:05 | 000,002,447 | ---- | C] () -- C:\Documents and Settings\David\Desktop\CDInterface Studio 2.lnk
[2007/09/20 18:14:21 | 001,727,776 | ---- | C] () -- C:\Documents and Settings\David\My Documents\alle_ottosounds.zip
[2007/09/20 18:13:49 | 000,067,849 | ---- | C] () -- C:\Documents and Settings\David\My Documents\ottofont.zip
[2007/09/20 09:37:31 | 000,117,419 | ---- | C] () -- C:\Documents and Settings\David\My Documents\Dafini_Web_Design.pdf
[2007/09/20 08:52:30 | 000,000,867 | ---- | C] () -- C:\lxceinst.csv
[2007/09/20 08:52:30 | 000,000,867 | ---- | C] () -- C:\lxceinst.000
[2007/09/20 08:52:30 | 000,000,139 | ---- | C] () -- C:\lxceinst.001
[2007/09/20 08:52:28 | 000,000,275 | ---- | C] () -- C:\lxcefire.csv
[2007/09/20 08:52:28 | 000,000,275 | ---- | C] () -- C:\lxcefire.001
[2007/09/20 08:52:28 | 000,000,275 | ---- | C] () -- C:\lxcefire.000
[2007/09/20 08:11:13 | 000,014,120 | ---- | C] () -- C:\Documents and Settings\David\My Documents\EMEA Order Status.htm
[2007/09/18 11:21:58 | 002,999,821 | ---- | C] () -- C:\Documents and Settings\David\My Documents\Mainboard.pdf
[2007/09/17 23:43:34 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf
[2007/09/17 22:11:07 | 000,000,630 | ---- | C] () -- C:\Documents and Settings\David\Desktop\PantsOff.lnk
[2007/09/17 16:19:31 | 000,787,456 | ---- | C] () -- C:\WINDOWS\System32\BootMan.exe
[2007/09/16 18:11:07 | 000,138,935 | ---- | C] () -- C:\Documents and Settings\David\My Documents\part244.zip
[2007/09/16 07:55:53 | 000,000,738 | ---- | C] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\Outlook Express.lnk
[2007/09/15 23:33:45 | 000,000,021 | ---- | C] () -- C:\WINDOWS\TemplateWizard.INI
[2007/09/15 22:53:53 | 001,158,818 | ---- | C] () -- C:\WINDOWS\System32\korwbrkr.lex
[2007/09/15 22:53:53 | 000,002,060 | ---- | C] () -- C:\WINDOWS\System32\noise.jpn
[2007/09/15 22:53:53 | 000,001,486 | ---- | C] () -- C:\WINDOWS\System32\noise.kor
[2007/09/15 22:53:47 | 000,211,938 | ---- | C] () -- C:\WINDOWS\System32\lcphrase.tbl
[2007/09/15 22:53:47 | 000,146,126 | ---- | C] () -- C:\WINDOWS\System32\array30.tab
[2007/09/15 22:53:47 | 000,116,285 | ---- | C] () -- C:\WINDOWS\System32\msdayi.tbl
[2007/09/15 22:53:47 | 000,110,566 | ---- | C] () -- C:\WINDOWS\System32\arphr.tbl
[2007/09/15 22:53:47 | 000,043,242 | ---- | C] () -- C:\WINDOWS\System32\phoncode.tbl
[2007/09/15 22:53:47 | 000,024,114 | ---- | C] () -- C:\WINDOWS\System32\lcptr.tbl
[2007/09/15 22:53:47 | 000,018,600 | ---- | C] () -- C:\WINDOWS\System32\arrayhw.tab
[2007/09/15 22:53:47 | 000,016,312 | ---- | C] () -- C:\WINDOWS\System32\arptr.tbl
[2007/09/15 22:53:47 | 000,004,071 | ---- | C] () -- C:\WINDOWS\System32\phon.tbl
[2007/09/15 22:53:47 | 000,002,714 | ---- | C] () -- C:\WINDOWS\System32\phonptr.tbl
[2007/09/15 22:53:47 | 000,000,700 | ---- | C] () -- C:\WINDOWS\System32\dayiptr.tbl
[2007/09/15 22:53:47 | 000,000,520 | ---- | C] () -- C:\WINDOWS\System32\dayiphr.tbl
[2007/09/15 22:53:46 | 000,044,370 | ---- | C] () -- C:\WINDOWS\System32\acode.tbl
[2007/09/15 22:53:46 | 000,044,370 | ---- | C] () -- C:\WINDOWS\System32\a234.tbl
[2007/09/15 22:53:46 | 000,001,460 | ---- | C] () -- C:\WINDOWS\System32\a15.tbl
[2007/09/15 22:53:42 | 001,223,500 | ---- | C] () -- C:\WINDOWS\System32\WINZM.MB
[2007/09/15 22:53:41 | 001,783,864 | ---- | C] () -- C:\WINDOWS\System32\WINPY.MB
[2007/09/15 22:53:41 | 001,564,868 | ---- | C] () -- C:\WINDOWS\System32\WINSP.MB
[2007/09/15 16:15:19 | 000,496,085 | ---- | C] () -- C:\Documents and Settings\David\My Documents\Pivot.zip
[2007/09/15 16:10:49 | 000,000,777 | ---- | C] () -- C:\Documents and Settings\David\My Documents\example.htaccess
[2007/09/15 16:10:13 | 002,196,352 | ---- | C] () -- C:\Documents and Settings\David\My Documents\pivot_1404_full.zip
[2007/09/15 15:28:27 | 000,000,800 | ---- | C] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk
[2007/09/15 15:06:26 | 000,000,102 | ---- | C] () -- C:\Documents and Settings\David\.gtkrc-2.0
[2007/09/15 14:41:54 | 001,502,767 | ---- | C] () -- C:\Documents and Settings\David\My Documents\f4l-0.2.1.tar.bz2
[2007/09/15 13:13:07 | 000,000,738 | ---- | C] () -- C:\Documents and Settings\David\Desktop\Outlook Express.lnk
[2007/09/15 07:42:54 | 000,000,883 | ---- | C] () -- C:\Documents and Settings\David\Desktop\Launch onlineTV 3.lnk
[2007/09/15 07:42:51 | 000,237,568 | ---- | C] () -- C:\WINDOWS\System32\lame_enc.dll
[2007/09/14 21:56:40 | 000,011,229 | ---- | C] () -- C:\Documents and Settings\David\My Documents\Gordon-Regular.zip
[2007/09/14 21:55:38 | 000,011,089 | ---- | C] () -- C:\Documents and Settings\David\My Documents\Gordon.zip
[2007/09/14 19:19:26 | 000,016,384 | ---- | C] () -- C:\WINDOWS\System32\FileOps.exe
[2007/09/14 17:20:23 | 000,136,704 | ---- | C] () -- C:\Documents and Settings\David\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2007/09/14 16:16:09 | 000,000,744 | ---- | C] () -- C:\Documents and Settings\David\Application Data\wklnhst.dat
[2007/09/14 16:16:08 | 000,000,814 | ---- | C] () -- C:\Documents and Settings\David\Desktop\Microsoft Works.LNK
[2007/09/14 15:59:02 | 000,000,721 | ---- | C] () -- C:\Documents and Settings\David\Desktop\FlashPeak SlimBrowser.lnk
[2007/09/14 15:39:28 | 000,003,444 | ---- | C] () -- C:\WINDOWS\System32\OEMINFO.PNF
[2007/09/14 15:34:53 | 000,010,537 | ---- | C] () -- C:\WINDOWS\System32\drivers\COH_Mon.cat
[2007/09/14 15:34:53 | 000,000,706 | ---- | C] () -- C:\WINDOWS\System32\drivers\COH_Mon.inf
[2007/09/14 15:12:42 | 000,004,128 | ---- | C] () -- C:\INFCACHE.1
[2007/09/14 14:58:56 | 000,000,782 | ---- | C] () -- C:\Documents and Settings\David\Desktop\Windows Media Player.lnk
[2007/09/14 14:58:19 | 000,000,815 | ---- | C] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2007/09/14 14:58:19 | 000,000,079 | ---- | C] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\Show Desktop.scf
[2007/09/14 14:52:16 | 000,008,192 | ---- | C] () -- C:\WINDOWS\REGLOCS.OLD
[2007/09/11 06:53:11 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2007/09/11 06:45:27 | 000,056,056 | ---- | C] () -- C:\WINDOWS\System32\DLAAPI_W.DLL
[2007/09/11 06:45:27 | 000,000,292 | ---- | C] () -- C:\WINDOWS\wininit.ini
[2007/09/11 06:42:02 | 000,146,650 | ---- | C] () -- C:\WINDOWS\System32\BuzzingBee.wav
[2007/09/11 06:42:01 | 000,940,794 | ---- | C] () -- C:\WINDOWS\System32\LoopyMusic.wav
[2007/09/11 06:26:08 | 000,119,828 | ---- | C] () -- C:\WINDOWS\System32\nvapps.xml
[2007/09/11 06:26:04 | 000,017,525 | ---- | C] () -- C:\WINDOWS\System32\nvdisp.nvu
[2007/09/11 06:23:47 | 000,006,210 | RH-- | C] () -- C:\dell.sdr
[2007/09/11 06:21:47 | 000,002,905 | ---- | C] () -- C:\WINDOWS\System32\e1e5132.din
[2007/09/11 06:21:46 | 000,077,824 | ---- | C] () -- C:\WINDOWS\setpwr32.exe
[2007/09/11 06:21:45 | 002,986,038 | ---- | C] () -- C:\WINDOWS\Dell.bmp
[2007/09/11 06:21:30 | 000,006,210 | ---- | C] () -- C:\WINDOWS\System32\drivers\1028_Dell_VOS_VOSTRO_200.mrk
[2007/09/11 06:20:36 | 000,787,356 | ---- | C] () -- C:\WINDOWS\System32\OEMBKGN1.BMP
[2007/09/11 06:20:36 | 000,096,310 | ---- | C] () -- C:\WINDOWS\System32\DELLWALL.BMP
[2007/09/11 06:20:36 | 000,005,134 | ---- | C] () -- C:\WINDOWS\System32\OEMLOGO.BMP
[2007/05/18 04:58:36 | 000,122,880 | ---- | C] () -- C:\WINDOWS\System32\FCSFORM.DLL
[2007/03/27 04:45:22 | 000,038,567 | ---- | C] () -- C:\WINDOWS\System32\pcpbios.exe
[2007/03/27 04:45:22 | 000,004,096 | ---- | C] () -- C:\WINDOWS\System32\sysres.dll
[2007/01/22 10:06:52 | 000,754,688 | ---- | C] () -- C:\Documents and Settings\David\My Documents\WMIDiag.doc
[2007/01/22 10:04:22 | 000,510,464 | ---- | C] () -- C:\Documents and Settings\David\My Documents\WMIDiag.xls
[2007/01/16 10:34:32 | 004,345,133 | ---- | C] () -- C:\Documents and Settings\David\My Documents\WMIDiag.vbs
[2007/01/01 04:13:14 | 000,141,702 | ---- | C] () -- C:\WINDOWS\System32\dllcache\netfx.cat
[2007/01/01 04:13:14 | 000,110,116 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tabletpc.cat
[2007/01/01 04:13:14 | 000,037,484 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MW770.CAT
[2007/01/01 04:13:14 | 000,031,965 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mediactr.cat
[2007/01/01 04:13:14 | 000,024,209 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msn7.cat
[2007/01/01 04:13:14 | 000,013,472 | ---- | C] () -- C:\WINDOWS\System32\dllcache\HPCRDP.CAT
[2007/01/01 04:13:14 | 000,011,651 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msn9.cat
[2007/01/01 04:13:14 | 000,008,574 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IASNT4.CAT
[2007/01/01 04:13:14 | 000,007,710 | ---- | C] () -- C:\WINDOWS\System32\dllcache\OEMBIOS.CAT
[2007/01/01 04:13:14 | 000,007,334 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmerrenu.cat
[2007/01/01 04:13:14 | 000,007,245 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSTSWEB.CAT
[2007/01/01 04:13:13 | 002,012,670 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5.CAT
[2007/01/01 04:13:13 | 001,042,903 | ---- | C] () -- C:\WINDOWS\System32\dllcache\SP2.CAT
[2007/01/01 04:13:13 | 000,797,189 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5IIS.CAT
[2007/01/01 04:13:13 | 000,502,724 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5INF.CAT
[2007/01/01 04:13:13 | 000,399,645 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MAPIMIG.CAT
[2007/01/01 04:13:13 | 000,031,281 | ---- | C] () -- C:\WINDOWS\System32\dllcache\FP4.CAT
[2007/01/01 04:13:13 | 000,013,753 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IMS.CAT
[2007/01/01 04:13:13 | 000,009,581 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSMSGS.CAT
[2007/01/01 00:57:03 | 018,738,937 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\sp2.cab
[2007/01/01 00:51:05 | 001,768,236 | ---- | C] () -- C:\WINDOWS\System32\Windows6.0-KB942288-v2-x86.msu
[2006/09/16 17:36:50 | 000,520,192 | ---- | C] () -- C:\WINDOWS\System32\CddbPlaylist2Roxio.dll
[2006/09/16 17:36:50 | 000,204,800 | ---- | C] () -- C:\WINDOWS\System32\CddbFileTaggerRoxio.dll
[2005/06/11 06:47:00 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\fpprintmon.dll
[2005/05/19 13:05:24 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\px.ini
[2005/02/01 07:36:12 | 001,323,080 | ---- | C] () -- C:\WINDOWS\DVBTBandDll.dll
[2005/01/27 08:10:08 | 000,045,056 | ---- | C] () -- C:\WINDOWS\SWBW.dll
[2004/08/11 11:24:19 | 000,000,791 | ---- | C] () -- C:\WINDOWS\orun32.ini
[2004/08/11 11:11:31 | 000,001,793 | ---- | C] () -- C:\WINDOWS\System32\fxsperf.ini
[2004/08/11 11:07:24 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2004/08/04 05:00:00 | 002,637,824 | RHS- | C] () -- C:\WINDOWS\System32\bjqeulfx.dll
[2004/08/04 05:00:00 | 000,027,440 | ---- | C] () -- C:\WINDOWS\System32\drivers\secdrv.sys
[2004/08/03 19:56:46 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
========== LOP Check ==========
[2010/05/27 03:14:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Application Data\Birdstep Technology
[2009/10/30 03:20:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Application Data\BOM
[2009/03/09 01:08:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Application Data\Trusteer
[2009/10/30 14:00:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Application Data\TuneUp Software
[2006/12/31 19:43:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Birdstep Technology
[2010/12/09 02:59:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\eBay
[2010/12/09 03:33:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\InfraRecorder
[2006/12/31 19:32:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\SlimBrowser
[2010/12/09 02:58:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Trusteer
[2010/12/08 04:16:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\TuneUp Software
[2010/12/09 02:59:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\vShare
[2010/12/09 02:59:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Windows Desktop Search
[2010/12/10 05:29:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Windows Search
[2007/09/16 19:27:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\David\Application Data\.trackballs
[2007/09/14 19:08:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\David\Application Data\AceBIT
[2009/10/05 01:50:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\David\Application Data\Autoplay Menu Designer
[2010/05/27 03:15:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\David\Application Data\Birdstep Technology
[2009/10/19 03:43:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\David\Application Data\blinkx
[2010/11/25 17:04:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\David\Application Data\BOM
[2007/09/15 08:07:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\David\Application Data\concept design
[2010/02/10 04:21:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\David\Application Data\DAEMON Tools Lite
[2010/12/10 13:53:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\David\Application Data\Desktopicon
[2009/11/21 14:15:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\David\Application Data\DevPHP
[2009/10/16 12:05:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\David\Application Data\DisplayTune
[2009/10/30 12:43:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\David\Application Data\Downloaded Installations
[2007/12/09 12:35:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\David\Application Data\eBay
[2010/12/16 21:00:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\David\Application Data\Free Download Manager
[2009/10/07 03:59:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\David\Application Data\Iconomize
[2009/03/19 08:43:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\David\Application Data\ImgBurn
[2009/10/30 12:47:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\David\Application Data\IndigoRose
[2008/12/12 05:50:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\David\Application Data\InfraRecorder
[2010/10/22 06:48:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\David\Application Data\IObit
[2009/11/17 06:40:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\David\Application Data\kompozer.net
[2010/01/06 07:03:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\David\Application Data\Lingo4u
[2009/07/16 11:29:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\David\Application Data\Marvell
[2009/11/30 12:25:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\David\Application Data\Mikogo
[2008/08/24 17:29:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\David\Application Data\mojosoft
[2008/07/30 14:49:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\David\Application Data\Moyea
[2010/10/08 07:09:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\David\Application Data\Nokia
[2010/07/16 08:39:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\David\Application Data\Nseries
[2009/01/13 13:48:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\David\Application Data\OpenOffice.org
[2010/07/16 08:34:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\David\Application Data\PC Suite
[2010/11/20 16:12:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\David\Application Data\PCDr
[2010/12/09 01:49:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\David\Application Data\PriceGong
[2010/12/16 20:59:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\David\Application Data\SlimBrowser
[2007/01/02 16:06:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\David\Application Data\Software Informer
[2010/10/05 09:40:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\David\Application Data\Temp
[2007/09/14 22:01:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\David\Application Data\Template
[2009/03/04 12:38:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\David\Application Data\Trusteer
[2007/09/16 18:01:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\David\Application Data\TuneUp Software
[2010/12/12 09:11:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\David\Application Data\vShare
[2010/04/09 10:00:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\David\Application Data\Windows Desktop Search
[2010/06/11 07:37:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\David\Application Data\Windows Search
[2009/04/22 03:13:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\David\Application Data\Zoner
[2010/12/08 08:36:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Guest\Application Data\eBay
[2010/12/08 05:12:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Guest\Application Data\PC Suite
[2009/11/05 02:51:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Guest\Application Data\Trusteer
[2010/12/08 08:38:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Guest\Application Data\vShare
[2010/12/08 08:37:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Guest\Application Data\Windows Desktop Search
[2009/04/15 03:01:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Application Data\Trusteer
[2006/12/31 19:11:45 | 000,000,486 | ---- | M] () -- C:\WINDOWS\Tasks\1-Click Maintenance.job
[2007/01/01 19:11:25 | 000,000,472 | ---- | M] () -- C:\WINDOWS\Tasks\Ad-Aware Update (Weekly).job
[2006/12/31 21:03:02 | 000,000,330 | -H-- | M] () -- C:\WINDOWS\Tasks\MP Scheduled Scan.job
[2010/12/24 00:56:00 | 000,000,410 | -H-- | M] () -- C:\WINDOWS\Tasks\User_Feed_Synchronization-{9453D5F3-28BC-47B0-BFC1-2C8D7B24ECB1}.job
========== Purity Check ==========
< End of report >
[2007/09/16 18:01:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\TuneUp Software
[2007/09/16 10:50:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\Sun
[2007/09/16 10:50:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\Sun
[2007/09/15 23:00:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Flash Alternatives
[2007/09/15 22:53:53 | 001,875,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msir3jp.lex
[2007/09/15 22:53:53 | 001,677,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\chsbrkr.dll
[2007/09/15 22:53:53 | 000,838,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\chtbrkr.dll
[2007/09/15 22:53:53 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msir3jp.dll
[2007/09/15 22:53:53 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\korwbrkr.dll
[2007/09/15 22:53:41 | 000,218,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\c_g18030.dll
[2007/09/15 22:53:41 | 000,072,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wingb.ime
[2007/09/15 22:53:26 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\c_is2022.dll
[2007/09/15 22:53:24 | 000,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winar30.ime
[2007/09/15 22:53:24 | 000,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\phon.ime
[2007/09/15 22:53:24 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dayi.ime
[2007/09/15 22:53:24 | 000,078,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\chajei.ime
[2007/09/15 22:53:24 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\quick.ime
[2007/09/15 22:53:24 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\uniime.dll
[2007/09/15 22:53:24 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winime.ime
[2007/09/15 22:53:24 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\unicdime.ime
[2007/09/15 22:53:24 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\romanime.ime
[2007/09/15 22:53:24 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\miniime.tpl
[2007/09/15 22:53:23 | 000,811,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\imjp81k.dll
[2007/09/15 22:53:23 | 000,340,023 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\imjp81.ime
[2007/09/15 22:53:23 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winzm.ime
[2007/09/15 22:53:23 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winsp.ime
[2007/09/15 22:53:23 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winpy.ime
[2007/09/15 18:42:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\.trackballs
[2007/09/15 18:41:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Trackballs
[2007/09/15 16:15:47 | 000,000,000 | ---D | C] -- C:\Program Files\Pivot Stickfigure Animator
[2007/09/15 16:10:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\images
[2007/09/15 16:10:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\extensions
[2007/09/15 15:45:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Local Settings\Application Data\Apple Computer
[2007/09/15 15:40:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\Media Player Classic
[2007/09/15 15:40:02 | 000,065,536 | ---- | C] (Apple Inc.) -- C:\WINDOWS\System32\QuickTimeVR.qtx
[2007/09/15 15:40:02 | 000,049,152 | ---- | C] (Apple Inc.) -- C:\WINDOWS\System32\QuickTime.qts
[2007/09/15 15:39:58 | 000,000,000 | ---D | C] -- C:\Program Files\QuickTime Alternative
[2007/09/15 15:27:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\test
[2007/09/15 15:22:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Synfig
[2007/09/15 15:18:01 | 000,000,000 | ---D | C] -- C:\GTK
[2007/09/15 15:06:25 | 000,000,000 | ---D | C] -- C:\Program Files\Synfig
[2007/09/15 10:28:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\TVU Networks
[2007/09/15 10:27:54 | 000,000,000 | ---D | C] -- C:\Program Files\TVUPlayer
[2007/09/15 08:07:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Podcast Studio
[2007/09/15 08:07:00 | 000,000,000 | ---D | C] -- C:\Program Files\Real
[2007/09/15 08:06:59 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Real
[2007/09/15 08:06:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\Real
[2007/09/15 07:42:52 | 001,040,384 | ---- | C] (NCT Company Ltd.) -- C:\WINDOWS\System32\NCTAudioInformation2.dll
[2007/09/15 07:42:52 | 000,634,880 | ---- | C] (Online Media Technologies Ltd.) -- C:\WINDOWS\System32\NCTAudioEditor2.dll
[2007/09/15 07:42:52 | 000,450,560 | ---- | C] (NCT Company Ltd.) -- C:\WINDOWS\System32\NCTAudioTransform2.dll
[2007/09/15 07:42:52 | 000,315,392 | ---- | C] (NCT Company Ltd.) -- C:\WINDOWS\System32\NCTAudioPlayer2.dll
[2007/09/15 07:42:52 | 000,311,296 | ---- | C] (NCT Company Ltd.) -- C:\WINDOWS\System32\NCTAudioRecord2.dll
[2007/09/15 07:42:51 | 001,843,200 | ---- | C] (NCT Company Ltd.) -- C:\WINDOWS\System32\NCTAudioFile2.dll
[2007/09/15 07:42:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\onlineTV 3
[2007/09/15 07:42:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\concept design
[2007/09/15 07:42:50 | 000,000,000 | ---D | C] -- C:\Program Files\concept design
[2007/09/14 22:04:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\Fonts\g
[2007/09/14 22:01:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\Template
[2007/09/14 19:19:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Adobe
[2007/09/14 19:18:16 | 000,000,000 | ---D | C] -- C:\Program Files\Namo
[2007/09/14 19:14:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\Hello Engines! Standard 6
[2007/09/14 19:08:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\AceBIT
[2007/09/14 19:08:23 | 000,937,800 | ---- | C] (AceBIT GmbH) -- C:\WINDOWS\System32\acebitaw.dll
[2007/09/14 19:08:22 | 000,000,000 | ---D | C] -- C:\Program Files\AceBIT
[2007/09/14 17:45:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Local Settings\Application Data\Identities
[2007/09/14 17:41:36 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\David\UserData
[2007/09/14 16:59:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\My Documents\From other
[2007/09/14 16:57:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\WinRAR
[2007/09/14 16:56:40 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR
[2007/09/14 16:54:51 | 000,000,000 | ---D | C] -- C:\Program Files\7-Zip
[2007/09/14 16:32:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\Adobe
[2007/09/14 16:28:43 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Macromedia Shared
[2007/09/14 16:28:42 | 000,974,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mfc70.dll
[2007/09/14 16:28:42 | 000,487,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msvcp70.dll
[2007/09/14 16:28:42 | 000,344,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msvcr70.dll
[2007/09/14 16:28:29 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Macromedia
[2007/09/14 16:27:48 | 000,000,000 | ---D | C] -- C:\Program Files\Macromedia
[2007/09/14 16:16:55 | 000,000,000 | -HSD | C] -- C:\WINDOWS\ftpcache
[2007/09/14 15:59:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\SlimBrowser
[2007/09/14 15:59:01 | 000,000,000 | ---D | C] -- C:\Program Files\SlimBrowser
[2007/09/14 15:48:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\NtmsData
[2007/09/14 15:41:04 | 000,000,000 | ---D | C] -- C:\Program Files\MSXML 4.0
[2007/09/14 15:34:53 | 000,023,904 | ---- | C] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\COH_Mon.sys
[2007/09/14 15:27:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\PreInstall
[2007/09/14 15:19:31 | 000,466,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\capicom.dll
[2007/09/14 15:19:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\SoftwareDistribution
[2007/09/14 15:19:20 | 000,000,000 | ---D | C] -- C:\Program Files\Symantec
[2007/09/14 15:17:32 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Symantec Shared
[2007/09/14 15:16:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Local Settings\Application Data\SupportSoft
[2007/09/14 15:14:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\Macromedia
[2007/09/14 15:14:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\Google
[2007/09/14 14:58:18 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\David\Application Data\GTek
[2007/09/14 14:58:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\InstallShield
[2007/09/14 14:58:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\Identities
[2007/09/14 14:58:17 | 000,000,000 | --SD | C] -- C:\Documents and Settings\David\Application Data\Microsoft
[2007/09/14 14:58:17 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\David\SendTo
[2007/09/14 14:58:17 | 000,000,000 | R--D | C] -- C:\Documents and Settings\David\My Documents\My Videos
[2007/09/14 14:58:17 | 000,000,000 | R--D | C] -- C:\Documents and Settings\David\My Documents\My Pictures
[2007/09/14 14:58:17 | 000,000,000 | R--D | C] -- C:\Documents and Settings\David\My Documents\My Music
[2007/09/14 14:58:17 | 000,000,000 | R--D | C] -- C:\Documents and Settings\David\My Documents
[2007/09/14 14:58:17 | 000,000,000 | R--D | C] -- C:\Documents and Settings\David\Favorites
[2007/09/14 14:58:17 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\David\Cookies
[2007/09/14 14:58:17 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\David\PrintHood
[2007/09/14 14:58:17 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\David\NetHood
[2007/09/14 14:58:17 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\David\Local Settings
[2007/09/14 14:58:17 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\David\Application Data
[2007/09/14 14:58:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Local Settings\Application Data\Roxio
[2007/09/14 14:58:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Application Data\Roxio
[2007/09/14 14:58:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Local Settings\Application Data\PowerDVD DX
[2007/09/14 14:58:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Local Settings\Application Data\Microsoft
[2007/09/14 14:58:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Local Settings\Application Data\Google
[2007/09/14 14:58:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Desktop
[2007/09/14 14:58:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Local Settings\Application Data\ApplicationHistory
[2007/09/14 14:58:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Local Settings\Application Data\Adobe
[2007/09/14 14:58:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Local Settings\Application Data\{3248F0A6-6813-11D6-A77B-00B0D0150060}
[2007/09/14 14:58:16 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\David\Templates
[2007/09/14 14:58:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\David\Start Menu
[2007/09/11 06:53:13 | 000,000,000 | -HSD | C] -- C:\RECYCLER
[2007/09/11 06:52:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Application Data\Roxio
[2007/09/11 06:52:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\Roxio
[2007/09/11 06:52:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\My Documents\My Google Gadgets
[2007/09/11 06:52:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\Roxio
[2007/09/11 06:52:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\Google
[2007/09/11 06:50:07 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office
[2007/09/11 06:50:05 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Works
[2007/09/11 06:49:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\Adobe
[2007/09/11 06:49:41 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe
[2007/09/11 06:49:41 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe
[2007/09/11 06:49:30 | 000,000,000 | ---D | C] -- C:\Program Files\Google
[2007/09/11 06:49:00 | 000,000,000 | ---D | C] -- C:\Program Files\Dell
[2007/09/11 06:48:45 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Administrator\Application Data\GTek
[2007/09/11 06:48:41 | 000,000,000 | ---D | C] -- C:\Program Files\DellSupport
[2007/09/11 06:45:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\PowerDVD DX
[2007/09/11 06:45:44 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Administrator\My Documents\My Videos
[2007/09/11 06:45:42 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msxml4a.dll
[2007/09/11 06:45:36 | 000,000,000 | ---D | C] -- C:\Program Files\CyberLink
[2007/09/11 06:45:27 | 000,099,176 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\drivers\DRVMCDB.SYS
[2007/09/11 06:45:27 | 000,092,920 | ---- | C] (Roxio) -- C:\WINDOWS\DLA.EXE
[2007/09/11 06:45:27 | 000,051,768 | ---- | C] (Roxio) -- C:\WINDOWS\System32\drivers\DRVNDDM.SYS
[2007/09/11 06:45:27 | 000,028,184 | ---- | C] (Roxio) -- C:\WINDOWS\System32\drivers\DLARTL_M.SYS
[2007/09/11 06:45:27 | 000,012,920 | ---- | C] (Roxio) -- C:\WINDOWS\System32\drivers\DLACDBHM.SYS
[2007/09/11 06:45:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DLA
[2007/09/11 06:43:39 | 000,000,000 | ---D | C] -- C:\WINDOWS\RegisteredPackages
[2007/09/11 06:42:56 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SureThing Shared
[2007/09/11 06:42:53 | 000,000,000 | ---D | C] -- C:\Program Files\Roxio
[2007/09/11 06:42:53 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield
[2007/09/11 06:42:41 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Sonic Shared
[2007/09/11 06:42:28 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Roxio Shared
[2007/09/11 06:42:08 | 000,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information
[2007/09/11 06:42:08 | 000,000,000 | ---D | C] -- C:\Program Files\Intel
[2007/09/11 06:42:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\InstallShield
[2007/09/11 06:41:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Lang
[2007/09/11 06:40:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\RTCOM
[2007/09/11 06:40:24 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksuser.dll
[2007/09/11 06:40:23 | 000,129,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksproxy.ax
[2007/09/11 06:39:55 | 000,026,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spupdsvc.exe
[2007/09/11 06:39:42 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\verclsid.exe
[2007/09/11 06:37:55 | 000,000,000 | ---D | C] -- C:\Program Files\Java
[2007/09/11 06:37:54 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2007/09/11 06:37:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\{3248F0A6-6813-11D6-A77B-00B0D0150060}
[2007/09/11 06:34:29 | 000,689,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xpsp3res.dll
[2007/09/11 06:34:21 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$hf_mig$
[2007/09/11 06:26:04 | 000,356,352 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvudisp.exe
[2007/09/11 06:25:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ReinstallBackups
[2007/09/11 06:22:03 | 002,441,216 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwssr.dll
[2007/09/11 06:22:02 | 003,629,056 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvvitvsr.dll
[2007/09/11 06:22:02 | 003,551,232 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvvitvs.dll
[2007/09/11 06:22:02 | 002,371,584 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwss.dll
[2007/09/11 06:22:02 | 000,335,872 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrses.dll
[2007/09/11 06:22:02 | 000,335,872 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsel.dll
[2007/09/11 06:22:02 | 000,327,680 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsfr.dll
[2007/09/11 06:22:02 | 000,327,680 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsesm.dll
[2007/09/11 06:22:02 | 000,323,584 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrspt.dll
[2007/09/11 06:22:02 | 000,323,584 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsit.dll
[2007/09/11 06:22:02 | 000,319,488 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsptb.dll
[2007/09/11 06:22:02 | 000,319,488 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsnl.dll
[2007/09/11 06:22:02 | 000,315,392 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsru.dll
[2007/09/11 06:22:02 | 000,315,392 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrshu.dll
[2007/09/11 06:22:02 | 000,311,296 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsde.dll
[2007/09/11 06:22:02 | 000,303,104 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsfi.dll
[2007/09/11 06:22:02 | 000,299,008 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsno.dll
[2007/09/11 06:22:02 | 000,294,912 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrspl.dll
[2007/09/11 06:22:02 | 000,294,912 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsda.dll
[2007/09/11 06:22:02 | 000,286,720 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrseng.dll
[2007/09/11 06:22:02 | 000,286,720 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrscs.dll
[2007/09/11 06:22:02 | 000,282,624 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsar.dll
[2007/09/11 06:22:02 | 000,278,528 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrshe.dll
[2007/09/11 06:22:02 | 000,274,432 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrspt.dll
[2007/09/11 06:22:02 | 000,270,336 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsru.dll
[2007/09/11 06:22:02 | 000,266,240 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsptb.dll
[2007/09/11 06:22:02 | 000,253,952 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrspl.dll
[2007/09/11 06:22:02 | 000,212,992 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsja.dll
[2007/09/11 06:22:02 | 000,196,608 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsko.dll
[2007/09/11 06:22:02 | 000,081,920 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwddi.dll
[2007/09/11 06:22:01 | 006,746,112 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvoglnt.dll
[2007/09/11 06:22:01 | 003,166,208 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvgamesr.dll
[2007/09/11 06:22:01 | 002,854,912 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvmoblsr.dll
[2007/09/11 06:22:01 | 001,150,976 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvmobls.dll
[2007/09/11 06:22:01 | 000,458,752 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvmccssr.dll
[2007/09/11 06:22:01 | 000,327,680 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrshe.dll
[2007/09/11 06:22:01 | 000,327,680 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsar.dll
[2007/09/11 06:22:01 | 000,282,624 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsfr.dll
[2007/09/11 06:22:01 | 000,282,624 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrses.dll
[2007/09/11 06:22:01 | 000,282,624 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsel.dll
[2007/09/11 06:22:01 | 000,278,528 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsit.dll
[2007/09/11 06:22:01 | 000,278,528 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsde.dll
[2007/09/11 06:22:01 | 000,274,432 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsnl.dll
[2007/09/11 06:22:01 | 000,274,432 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsesm.dll
[2007/09/11 06:22:01 | 000,266,240 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsja.dll
[2007/09/11 06:22:01 | 000,258,048 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsko.dll
[2007/09/11 06:22:01 | 000,258,048 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrshu.dll
[2007/09/11 06:22:01 | 000,253,952 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsno.dll
[2007/09/11 06:22:01 | 000,253,952 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsda.dll
[2007/09/11 06:22:01 | 000,249,856 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsfi.dll
[2007/09/11 06:22:01 | 000,249,856 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrscs.dll
[2007/09/11 06:22:01 | 000,245,760 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrseng.dll
[2007/09/11 06:22:01 | 000,229,376 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvmccs.dll
[2007/09/11 06:22:01 | 000,188,416 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvmccss.dll
[2007/09/11 06:22:01 | 000,081,920 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvmctray.dll
[2007/09/11 06:22:01 | 000,045,056 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvmccsrs.dll
[2007/09/11 06:22:00 | 003,334,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvgames.dll
[2007/09/11 06:22:00 | 000,307,200 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvexpbar.dll
[2007/09/11 06:21:59 | 006,344,704 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvdisps.dll
[2007/09/11 06:21:59 | 005,509,120 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvdispsr.dll
[2007/09/11 06:21:58 | 008,491,008 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcpl.dll
[2007/09/11 06:21:58 | 001,073,152 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcpluir.dll
[2007/09/11 06:21:58 | 000,753,664 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcplui.exe
[2007/09/11 06:21:58 | 000,413,696 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcpl.cpl
[2007/09/11 06:21:57 | 000,364,544 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvapi.dll
[2007/09/11 06:21:57 | 000,036,864 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcodins.dll
[2007/09/11 06:21:57 | 000,036,864 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcod.dll
[2007/09/11 06:21:47 | 000,265,416 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\Prounstl.exe
[2007/09/11 06:21:47 | 000,243,928 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\drivers\e1e5132.sys
[2007/09/11 06:21:47 | 000,121,440 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\e1000msg.dll
[2007/09/11 06:21:47 | 000,074,944 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\NicInstE.dll
[2007/09/11 06:21:47 | 000,066,424 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\NicEtCoE.dll
[2007/09/11 06:21:47 | 000,028,536 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\NicCo.dll
[2007/09/11 06:21:41 | 009,715,200 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RTLCPL.EXE
[2007/09/11 06:21:41 | 001,822,720 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SkyTel.exe
[2007/09/11 06:21:41 | 001,191,936 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RtlUpd.exe
[2007/09/11 06:21:41 | 000,282,624 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\RTSndMgr.CPL
[2007/09/11 06:21:41 | 000,086,016 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SOUNDMAN.EXE
[2007/09/11 06:21:40 | 004,403,712 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\drivers\RtkHDAud.sys
[2007/09/11 06:21:39 | 002,808,832 | ---- | C] (RealTek Semicoductor Corp.) -- C:\WINDOWS\ALCWZRD.EXE
[2007/09/11 06:21:39 | 002,162,688 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\MicCal.exe
[2007/09/11 06:21:39 | 000,299,008 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\ALSNDMGR.CPL
[2007/09/11 06:21:39 | 000,069,632 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\ALCMTR.EXE
[2007/09/11 06:21:36 | 000,000,000 | ---D | C] -- C:\drivers
[2007/09/10 00:24:54 | 000,544,768 | ---- | C] (Stardock Corporation) -- C:\WINDOWS\System32\wbocx.ocx
[2007/08/30 23:52:48 | 000,056,496 | ---- | C] (Stardock.Net, Inc) -- C:\WINDOWS\System32\wbhelp2.dll
[2007/08/30 23:52:48 | 000,033,968 | ---- | C] (Neil Banfield) -- C:\WINDOWS\System32\anim.dll
[2007/08/06 19:28:34 | 000,028,272 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\NicCo2.dll
[2007/07/30 13:19:12 | 000,044,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wups2.dll
[2007/07/30 13:19:02 | 000,015,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuapi.dll.mui
[2007/07/30 13:18:44 | 000,021,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wucltui.dll.mui
[2007/03/22 14:17:04 | 000,035,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\FM20ENU.DLL
[2007/03/20 16:22:04 | 000,972,336 | ---- | C] (Nero AG) -- C:\WINDOWS\UNNeroBackItUp.exe
[2007/02/25 06:10:48 | 000,005,376 | --S- | C] (Gteko Ltd.) -- C:\WINDOWS\System32\drivers\dsunidrv.sys
[2007/02/12 14:36:54 | 000,277,784 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\drivers\iastor.sys
[2007/01/02 17:48:35 | 000,000,000 | ---D | C] -- C:\msdownld.tmp
[2007/01/02 11:30:32 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mouclass.sys
[2007/01/02 11:30:32 | 000,012,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mouhid.sys
[2007/01/01 17:12:43 | 000,000,000 | ---D | C] -- C:\Program Files\Active Data Recovery Software
[2007/01/01 04:59:46 | 000,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\spxcoins.dll
[2007/01/01 04:59:46 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\irclass.dll
[2007/01/01 04:00:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\dell
[2007/01/01 03:39:27 | 000,000,000 | ---D | C] -- C:\found.001
[2007/01/01 00:15:34 | 000,647,728 | ---- | C] (Xceed Software Inc. 1-450-442-2626 info@xceedsoft.com www.xceedsoft.com) -- C:\R92578.EXE
[2006/12/31 19:45:20 | 000,050,688 | ---- | C] (Atribune.org) -- C:\Documents and Settings\Administrator\Desktop\ATF-Cleaner.exe
[2006/12/31 19:43:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\Birdstep Technology
[2006/12/31 19:39:05 | 000,157,472 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
[2006/12/31 19:39:05 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
[2006/12/31 19:39:05 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
[2006/12/31 19:39:05 | 000,073,728 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javacpl.cpl
[25 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\*.tmp files -> C:\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2010/12/24 00:56:00 | 000,000,410 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{9453D5F3-28BC-47B0-BFC1-2C8D7B24ECB1}.job
[2010/12/24 00:44:59 | 016,561,952 | ---- | M] (Sun Microsystems, Inc.) -- C:\Documents and Settings\Administrator\Desktop\jre-6u23-windows-i586.exe
[2010/12/23 17:20:00 | 000,000,884 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2010/12/23 17:07:35 | 000,000,815 | ---- | M] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2010/12/23 15:08:42 | 003,997,850 | R--- | M] () -- C:\Documents and Settings\Administrator\Desktop\ComboFix.exe
[2010/12/23 12:58:12 | 000,000,490 | -H-- | M] () -- C:\WINDOWS\tasks\Norton Security Scan for Administrator.job
[2010/12/23 12:58:12 | 000,000,474 | -H-- | M] () -- C:\WINDOWS\tasks\Norton Security Scan for David.job
[2010/12/23 12:41:04 | 000,000,721 | ---- | M] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\FlashPeak SlimBrowser.lnk
[2010/12/23 10:50:42 | 000,000,327 | RHS- | M] () -- C:\boot.ini
[2010/12/23 10:37:47 | 000,000,715 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\FlashPeak SlimBrowser.lnk
[2010/12/23 10:30:31 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\null
[2010/12/23 10:29:39 | 000,000,000 | ---- | M] () -- C:\autoexec.bat
[2010/12/23 10:29:17 | 000,512,314 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010/12/23 10:29:16 | 000,090,732 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010/12/23 10:21:04 | 000,693,664 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010/12/23 08:45:25 | 000,000,210 | ---- | M] () -- C:\Boot.bak
[2010/12/20 13:09:00 | 000,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2010/12/20 13:08:40 | 000,020,952 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2010/12/17 07:24:05 | 000,000,098 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\Hosts
[2010/12/16 20:57:34 | 003,992,266 | ---- | M] () -- C:\Documents and Settings\David\Desktop\ComboFix.exe
[2010/12/16 20:45:31 | 001,230,779 | ---- | M] () -- C:\Documents and Settings\David\Desktop\tdsskiller.zip
[2010/12/14 03:19:04 | 000,288,107 | ---- | M] () -- C:\Documents and Settings\David\Desktop\gmer.zip
[2010/12/14 02:59:46 | 000,624,128 | ---- | M] () -- C:\Documents and Settings\David\Desktop\dds.scr
[2010/12/14 02:53:37 | 000,000,040 | ---- | M] () -- C:\Documents and Settings\David\defogger_reenable
[2010/12/14 02:53:13 | 000,050,477 | ---- | M] () -- C:\Documents and Settings\David\Desktop\Defogger.exe
[2010/12/13 11:44:55 | 015,492,608 | ---- | M] (Luis Cobian, CobianSoft) -- C:\Documents and Settings\David\Desktop\cbSetup.exe
[2010/12/10 12:11:22 | 097,909,064 | ---- | M] () -- C:\Documents and Settings\David\Desktop\Norman_Malware_Cleaner.exe
[2010/12/10 09:29:11 | 000,284,000 | ---- | M] () -- C:\Documents and Settings\Administrator\My Documents\Capture1.gif
[2010/12/10 07:28:41 | 000,001,598 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\True Sword.lnk
[2010/12/10 07:09:59 | 000,354,396 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\SysProt.zip
[2010/12/10 06:59:57 | 000,660,752 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\iExplore.exe
[2010/12/09 07:59:28 | 011,843,016 | ---- | M] (Microsoft Corporation) -- C:\Documents and Settings\David\goal-kb890830-v3.13.exe
[2010/12/09 03:30:44 | 195,674,112 | ---- | M] () -- C:\Documents and Settings\Administrator\My Documents\'s.BootCD.10.0.iso
[2010/12/09 03:03:55 | 007,622,112 | ---- | M] (Malwarebytes Corporation ) -- C:\Documents and Settings\Administrator\Desktop\mbam-setup-1.50.0.0.exe
[2010/12/09 02:59:32 | 000,000,136 | ---- | M] () -- C:\Documents and Settings\Administrator\Local Settings\Application Data\fusioncache.dat
[2010/12/09 02:58:38 | 000,000,782 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\Windows Media Player.lnk
[2010/12/09 01:30:54 | 000,098,392 | ---- | M] (Sunbelt Software) -- C:\WINDOWS\System32\drivers\SBREDrv.sys
[2010/12/09 01:20:14 | 000,000,885 | ---- | M] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\Ad-Aware.lnk
[2010/12/09 00:58:56 | 000,092,672 | ---- | M] (Option^Explicit Software vbtechcd@gmail.com) -- C:\Documents and Settings\David\Desktop\KillBox.exe
[2010/12/09 00:34:36 | 000,009,830 | ---- | M] () -- C:\Documents and Settings\David\Desktop\exefix.reg
[2010/12/08 12:05:35 | 000,732,846 | ---- | M] () -- C:\WINDOWS\umcat_01.db
[2010/12/08 11:22:12 | 000,001,973 | ---- | M] () -- C:\Documents and Settings\David\Desktop\SpyHunter.lnk
[2010/12/08 11:20:45 | 000,663,960 | ---- | M] (Enigma Software Group USA, LLC.) -- C:\Documents and Settings\David\Desktop\SpyHunter-Installer.exe
[2010/12/08 10:49:29 | 000,000,745 | ---- | M] () -- C:\Documents and Settings\David\Desktop\xp_exe_fix.zip
[2010/12/08 09:48:08 | 001,344,600 | ---- | M] (Kaspersky Lab ZAO) -- C:\Documents and Settings\David\Desktop\TDSSKiller.exe
[2010/12/08 08:38:32 | 000,000,128 | ---- | M] () -- C:\Documents and Settings\Guest\Local Settings\Application Data\fusioncache.dat
[2010/12/08 08:36:27 | 000,000,815 | ---- | M] () -- C:\Documents and Settings\Guest\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2010/12/08 08:12:03 | 000,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2010/12/08 08:11:39 | 000,136,704 | ---- | M] () -- C:\Documents and Settings\David\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/12/08 05:12:26 | 000,000,782 | ---- | M] () -- C:\Documents and Settings\Guest\Desktop\Windows Media Player.lnk
[2010/12/08 05:06:48 | 000,000,951 | ---- | M] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\Spybot - Search & Destroy.lnk
[2010/12/08 05:06:48 | 000,000,933 | ---- | M] () -- C:\Documents and Settings\David\Desktop\Spybot - Search & Destroy.lnk
[2010/12/08 05:03:10 | 000,000,329 | ---- | M] () -- C:\Documents and Settings\David\Desktop\fix.reg
[2010/12/08 04:51:42 | 006,872,936 | ---- | M] (PC Tools Research Pty. Ltd. ) -- C:\Documents and Settings\David\Desktop\sdtrial-regnow.exe
[2010/12/08 04:08:17 | 000,000,184 | ---- | M] () -- C:\Documents and Settings\David\Desktop\NPE.ctl
[2010/12/08 04:08:13 | 005,716,848 | ---- | M] () -- C:\Documents and Settings\David\Desktop\NPE.exe
[2010/12/08 03:34:58 | 000,000,349 | ---- | M] () -- C:\Documents and Settings\David\fix.reg
[2010/12/08 03:15:29 | 000,660,752 | ---- | M] () -- C:\Documents and Settings\David\Desktop\iExplore.exe
[2010/12/08 03:14:33 | 000,660,752 | ---- | M] () -- C:\Documents and Settings\David\Desktop\rkill.scr
[2010/12/08 03:12:41 | 000,660,752 | ---- | M] () -- C:\Documents and Settings\David\Desktop\rkill.exe
[2010/12/08 01:37:27 | 000,114,243 | ---- | M] () -- C:\WINDOWS\System32\drivers\klin.dat
[2010/12/08 01:37:27 | 000,097,859 | ---- | M] () -- C:\WINDOWS\System32\drivers\klick.dat
[2010/12/04 20:21:12 | 000,001,791 | ---- | M] () -- C:\Documents and Settings\Guest\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2010/12/03 04:05:34 | 000,064,288 | ---- | M] (Lavasoft AB) -- C:\WINDOWS\System32\drivers\Lbd.sys
[2010/12/02 06:51:29 | 000,018,274 | ---- | M] () -- C:\Documents and Settings\David\My Documents\care_comm_02_12_10.odt
[2010/12/01 05:35:55 | 000,001,047 | ---- | M] () -- C:\Documents and Settings\David\Desktop\RadioSure.lnk
[2010/11/25 02:56:37 | 000,000,721 | ---- | M] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\FlashPeak SlimBrowser.lnk
[2010/11/19 16:09:58 | 000,001,620 | ---- | M] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2010/11/19 16:08:50 | 006,198,784 | ---- | M] () -- C:\Documents and Settings\David\Desktop\Softonic-de3.exe
[2010/11/19 16:07:53 | 000,597,503 | ---- | M] () -- C:\Documents and Settings\David\Desktop\downloadhelper-4.8.xpi.zip
[2010/11/19 16:07:53 | 000,597,503 | ---- | M] () -- C:\Documents and Settings\David\Desktop\downloadhelper-4.8.xpi
[2010/11/18 13:12:44 | 000,081,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\isign32.dll
[2010/11/16 10:56:19 | 000,000,038 | ---- | M] () -- C:\WINDOWS\AviSplitter.INI
[2010/11/16 03:13:17 | 000,000,625 | ---- | M] () -- C:\Documents and Settings\David\Desktop\Shortcut to webid.pdf.lnk
[2010/11/12 15:50:40 | 000,507,360 | ---- | M] () -- C:\Documents and Settings\David\Desktop\sdsetup_aff.exe
[2010/11/12 15:50:40 | 000,507,360 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\sdsetup_aff.exe
[2010/11/08 05:32:38 | 000,296,448 | ---- | M] () -- C:\Documents and Settings\David\My Documents\gmer.exe
[2010/11/08 05:32:38 | 000,296,448 | ---- | M] () -- C:\Documents and Settings\David\Desktop\gmer.exe
[2010/11/07 20:20:24 | 000,089,088 | ---- | M] () -- C:\WINDOWS\MBR.exe
[2010/11/07 14:29:06 | 000,000,167 | ---- | M] () -- C:\Documents and Settings\David\udownload.dat
[2010/11/07 05:48:21 | 000,001,546 | ---- | M] () -- C:\Documents and Settings\David\Desktop\Picture To Icon.lnk
[2010/11/07 05:48:21 | 000,000,022 | ---- | M] () -- C:\WINDOWS\System32\msxml.p2i
[2010/11/07 05:48:21 | 000,000,022 | ---- | M] () -- C:\WINDOWS\msxml.p2i
[2010/11/02 11:47:16 | 035,758,536 | ---- | M] () -- C:\Documents and Settings\David\mrt.exe
[2010/11/02 11:47:12 | 000,082,376 | ---- | M] (Microsoft Corporation) -- C:\Documents and Settings\David\mrtstub.exe
[2010/10/23 12:55:39 | 000,553,984 | R--- | M] (OldTimer Tools) -- C:\OTLPE.exe
[2010/10/23 11:30:02 | 000,151,566 | ---- | M] () -- C:\WINDOWS\System32\UninstIPP.isu
[2010/10/19 05:41:44 | 000,222,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\MpSigStub.exe
[2010/10/14 05:19:13 | 000,356,856 | ---- | M] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\FontCache3.0.0.0.dat
[2010/10/14 04:11:03 | 000,000,020 | ---- | M] () -- C:\GINA.TEXT
[2010/10/13 13:15:55 | 000,001,393 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2010/10/11 14:35:50 | 000,364,032 | ---- | M] () -- C:\Documents and Settings\David\Desktop\rkill.com
[2010/10/06 13:26:19 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_ccdcmb_01009.Wdf
[2010/10/06 13:26:14 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\MsftWdf_Kernel_01009_Coinstaller_Critical.Wdf
[2010/10/05 07:09:56 | 000,010,508 | ---- | M] () -- C:\Documents and Settings\David\My Documents\cmykVerticalTest.pdf
[2010/10/05 06:32:38 | 000,000,890 | ---- | M] () -- C:\WINDOWS\System32\InstallUtil.InstallLog
[2010/10/03 17:43:44 | 000,059,240 | ---- | M] (Trusteer Ltd.) -- C:\WINDOWS\System32\drivers\RapportKELL.sys
[2010/09/30 23:50:46 | 000,000,450 | ---- | M] () -- C:\Documents and Settings\David\Desktop\Shortcut to Jewel Covers.lnk
[2010/09/28 03:04:50 | 000,001,475 | ---- | M] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\eBay Turbo Lister 2.lnk
[2010/09/24 07:45:33 | 000,376,832 | ---- | M] () -- C:\WINDOWS\System32\AegisI5Installer.exe
[2010/09/23 04:30:35 | 000,000,041 | ---- | M] () -- C:\WLANCUGINA.TEXT
[2010/09/21 18:30:07 | 000,001,409 | ---- | M] () -- C:\Documents and Settings\David\Desktop\truePlay.lnk
[2010/09/21 18:15:59 | 000,001,418 | ---- | M] () -- C:\Documents and Settings\David\Desktop\trueSpace7.61 Beta 8 Standalone.lnk
[2010/09/21 18:12:47 | 000,000,065 | ---- | M] () -- C:\WINDOWS\Caligari.ini
[2010/09/20 17:31:02 | 000,048,439 | ---- | M] () -- C:\Documents and Settings\David\My Documents\kitchen_01.png
[2010/09/15 12:49:06 | 001,044,480 | R--- | M] (eHelp Corporation.) -- C:\WINDOWS\System32\roboex32.dll
[2010/09/15 12:49:06 | 000,049,152 | R--- | M] (Blue Sky Software Corporation.) -- C:\WINDOWS\System32\inetwh32.dll
[2010/09/14 02:08:30 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb
[2010/09/14 02:08:30 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb
[2010/09/13 16:18:39 | 000,000,000 | -H-- | M] () -- C:\Documents and Settings\David\My Documents\1255.mpg.dls.bak
[2010/09/13 16:08:24 | 000,001,978 | ---- | M] () -- C:\Documents and Settings\David\Desktop\Media Player Classic - Home Cinema.lnk
[2010/09/13 16:07:46 | 005,165,571 | ---- | M] (MPC-HC Team ) -- C:\Documents and Settings\David\My Documents\MPC-HomeCinema.1.4.2499.0.x86.exe
[2010/09/13 15:57:12 | 000,000,800 | ---- | M] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk
[2010/09/13 15:57:12 | 000,000,782 | ---- | M] () -- C:\Documents and Settings\David\Desktop\Windows Media Player.lnk
[2010/09/12 14:40:27 | 000,015,781 | ---- | M] (Meetinghouse Data Communications) -- C:\WINDOWS\System32\drivers\mdc8021x.sys
[2010/09/12 14:02:41 | 011,630,887 | ---- | M] () -- C:\Documents and Settings\David\My Documents\HA311v12.zip
[2010/09/12 09:56:49 | 005,229,582 | ---- | M] ( ) -- C:\Documents and Settings\David\My Documents\DRV - XWL-11GUAR.exe
[2010/09/10 12:36:31 | 000,000,172 | ---- | M] () -- C:\WINDOWS\System32\drivers\NSS\0207030.022\isolate.ini
[2010/09/10 09:32:55 | 000,850,200 | ---- | M] (DivX, Inc. ) -- C:\Documents and Settings\David\My Documents\DivXInstaller.exe
[2010/09/10 09:10:54 | 017,267,848 | ---- | M] () -- C:\Documents and Settings\David\My Documents\R158511.exe
[2010/09/10 09:07:04 | 067,071,024 | ---- | M] (Xceed Software Inc. 1-450-442-2626 info@xceedsoft.com www.xceedsoft.com) -- C:\Documents and Settings\David\My Documents\R170352.EXE
[2010/09/10 07:59:19 | 000,212,023 | ---- | M] () -- C:\Documents and Settings\David\My Documents\YourBTbill_30082010.pdf
[2010/09/10 07:43:25 | 000,075,927 | ---- | M] () -- C:\Documents and Settings\David\My Documents\ROWAN_JM-GF-Colour7-counc_tax-5035-OUTPUT_0370_001.pdf
[2010/09/09 10:35:00 | 000,082,704 | ---- | M] () -- C:\Documents and Settings\David\My Documents\ROWAN_JM-GF-Colour7-counc_tax-5035-OUTPUT_0368_001.pdf
[2010/09/08 11:30:55 | 000,014,283 | ---- | M] () -- C:\Documents and Settings\David\My Documents\bcw1.odt
[2010/09/08 11:30:44 | 000,016,896 | ---- | M] () -- C:\Documents and Settings\David\My Documents\talktalk2.doc
[2010/09/08 11:12:26 | 000,015,360 | ---- | M] () -- C:\Documents and Settings\David\My Documents\talktalk.doc
[2010/09/02 02:21:14 | 000,131,072 | ---- | M] (Eastman Kodak Company) -- C:\WINDOWS\System32\EKIJCOINST09.dll
[2010/09/02 02:17:46 | 000,421,888 | ---- | M] (Eastman Kodak Company) -- C:\WINDOWS\System32\EKIJ5000MON.dll
[2010/08/27 05:47:33 | 000,000,375 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts.ics
[2010/08/24 09:22:26 | 000,001,791 | ---- | M] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2010/08/11 23:07:46 | 002,120,176 | ---- | M] (Sonic Solutions) -- C:\WINDOWS\System32\PxSFS.DLL
[2010/08/11 23:07:46 | 000,698,864 | ---- | M] (Sonic Solutions) -- C:\WINDOWS\System32\Px.dll
[2010/08/11 23:07:46 | 000,567,792 | ---- | M] (Sonic Solutions) -- C:\WINDOWS\System32\pxdrv.dll
[2010/08/11 23:07:46 | 000,440,816 | ---- | M] (Sonic Solutions) -- C:\WINDOWS\System32\PxWave.dll
[2010/08/11 23:07:46 | 000,219,632 | ---- | M] (Sonic Solutions) -- C:\WINDOWS\System32\PxMas.dll
[2010/08/11 23:07:46 | 000,133,616 | ---- | M] (Sonic Solutions) -- C:\WINDOWS\System32\PxAFS.DLL
[2010/08/11 23:07:46 | 000,126,448 | ---- | M] (Sonic Solutions) -- C:\WINDOWS\System32\pxinsi64.exe
[2010/08/11 23:07:46 | 000,123,888 | ---- | M] (Sonic Solutions) -- C:\WINDOWS\System32\pxcpyi64.exe
[2010/08/11 23:07:46 | 000,100,848 | ---- | M] (Sonic Solutions) -- C:\WINDOWS\System32\VXBLOCK.dll
[2010/08/11 23:07:46 | 000,072,176 | ---- | M] (Sonic Solutions) -- C:\WINDOWS\System32\pxhpinst.exe
[2010/08/11 23:07:46 | 000,068,592 | ---- | M] (Sonic Solutions) -- C:\WINDOWS\System32\pxinsa64.exe
[2010/08/11 23:07:46 | 000,068,080 | ---- | M] (Sonic Solutions) -- C:\WINDOWS\System32\pxcpya64.exe
[2010/07/15 05:23:38 | 000,654,456 | ---- | M] (Intel® Corporation) -- C:\WINDOWS\System32\ncs2dmix.dll
[2010/07/15 05:23:38 | 000,506,488 | ---- | M] (Intel® Corporation) -- C:\WINDOWS\System32\accesor.dll
[2010/07/14 04:16:44 | 000,182,784 | ---- | M] (Intel® Corporation) -- C:\WINDOWS\System32\Ncs2Setp.dll
[2010/07/14 03:39:00 | 000,134,264 | ---- | M] (Intel® Corporation) -- C:\WINDOWS\System32\ncs2instutility.dll
[2010/07/14 03:20:10 | 001,813,112 | ---- | M] (Intel® Corporation) -- C:\WINDOWS\System32\ncscolib.dll
[2010/07/09 03:09:38 | 000,013,252 | ---- | M] () -- C:\Documents and Settings\David\My Documents\g4_docu.odt
[2010/07/02 09:22:04 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\UMDF\Msft_User_PCCSWpdDriver_01_05_00.Wdf
[2010/07/02 09:21:27 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_05_00.Wdf
[2010/07/02 07:45:01 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\UMDF\Msft_User_WpdMtpDr_01_00_00.Wdf
[2010/07/02 07:44:47 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_ccdcmb_01007.Wdf
[2010/07/02 07:44:44 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\MsftWdf_Kernel_01007_Coinstaller_Critical.Wdf
[2010/07/02 06:53:28 | 000,001,876 | ---- | M] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\Nokia Music.lnk
[2010/06/21 08:43:16 | 000,030,880 | ---- | M] (Intel Corporation ) -- C:\WINDOWS\System32\drivers\iqvw32.sys
[2010/06/10 00:48:38 | 000,239,768 | ---- | M] (Intel Corporation) -- C:\WINDOWS\System32\PRONtObj.dll
[2010/06/07 09:45:25 | 000,019,724 | ---- | M] () -- C:\Documents and Settings\David\My Documents\morrisons.odt
[2010/06/01 22:55:30 | 000,527,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_7.dll
[2010/06/01 22:55:30 | 000,239,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_7.dll
[2010/06/01 22:55:30 | 000,074,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\XAPOFX1_5.dll
[2010/05/27 03:14:20 | 000,001,668 | ---- | M] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\3Connect.lnk
[2010/05/27 03:13:07 | 000,071,259 | ---- | M] () -- C:\WINDOWS\Huawei ModemsUninstall.exe
[2010/05/27 03:05:10 | 000,000,292 | ---- | M] () -- C:\WINDOWS\wininit.ini
[2010/05/26 05:41:02 | 002,106,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_43.dll
[2010/05/26 05:41:02 | 001,998,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_43.dll
[2010/05/26 05:41:02 | 001,868,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dcsx_43.dll
[2010/05/26 05:41:02 | 000,470,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_43.dll
[2010/05/26 05:41:02 | 000,248,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx11_43.dll
[2010/05/25 07:24:08 | 000,356,352 | ---- | M] (eSellerate Inc.) -- C:\WINDOWS\eSellerateEngine.dll
[2010/05/25 07:24:08 | 000,081,920 | ---- | M] (eSellerate Inc.) -- C:\WINDOWS\eSellerateControl350.dll
[2010/05/07 11:41:40 | 000,265,416 | ---- | M] (Intel Corporation) -- C:\WINDOWS\System32\Prounstl.exe
[2010/04/27 01:52:04 | 000,117,456 | ---- | M] (Intel Corporation) -- C:\WINDOWS\System32\drivers\ianswxp.sys
[2010/04/26 17:04:42 | 000,353,592 | ---- | M] (DivX, Inc.) -- C:\WINDOWS\System32\DivXControlPanelApplet.cpl
[2010/04/26 10:58:12 | 000,256,512 | ---- | M] () -- C:\WINDOWS\PEV.exe
[2010/04/25 11:08:04 | 000,000,793 | ---- | M] () -- C:\Documents and Settings\David\Desktop\Hello Engines! Standard 6.lnk
[2010/04/13 18:45:14 | 000,074,944 | ---- | M] (Intel Corporation) -- C:\WINDOWS\System32\NicInstE.dll
[2010/04/11 14:15:28 | 000,001,565 | ---- | M] () -- C:\Documents and Settings\David\Desktop\IrfanView Thumbnails.lnk
[2010/04/11 14:15:28 | 000,000,685 | ---- | M] () -- C:\Documents and Settings\David\Desktop\IrfanView.lnk
[2010/04/10 09:18:28 | 000,119,828 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml
[2010/04/09 09:57:32 | 000,000,815 | ---- | M] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2010/03/31 08:22:35 | 000,000,008 | ---- | M] () -- C:\Documents and Settings\David\Desktop\New Rich Text Document.rtf
[2010/03/31 06:15:24 | 000,000,720 | ---- | M] () -- C:\Documents and Settings\David\Desktop\Audiobook Cutter FE.lnk
[2010/03/30 18:16:34 | 000,099,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\PresentationHostProxy.dll
[2010/03/30 18:10:40 | 000,295,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\PresentationHost.exe
[2010/03/30 06:24:40 | 000,317,440 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mp4sdecd.dll
[2010/03/25 18:59:22 | 000,243,928 | ---- | M] (Intel Corporation) -- C:\WINDOWS\System32\drivers\e1e5132.sys
[2010/03/25 04:27:09 | 000,604,488 | ---- | M] (TuneUp Software) -- C:\WINDOWS\System32\TUProgSt.exe
[2010/03/25 04:27:06 | 000,361,288 | ---- | M] (TuneUp Software) -- C:\WINDOWS\System32\TuneUpDefragService.exe
[2010/03/18 07:16:28 | 000,771,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msvcr100_clr0400.dll
[2010/03/18 07:16:28 | 000,486,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\evr.dll
[2010/03/18 07:16:28 | 000,070,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dxva2.dll
[2010/03/11 07:38:54 | 001,168,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\urlmon.dll
[2010/03/11 07:38:54 | 000,832,512 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wininet.dll
[2010/03/11 07:38:54 | 000,233,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\webcheck.dll
[2010/03/11 07:38:53 | 003,599,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mshtml.dll
[2010/03/11 07:38:53 | 000,671,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mstime.dll
[2010/03/11 07:38:53 | 000,671,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstime.dll
[2010/03/11 07:38:53 | 000,477,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mshtmled.dll
[2010/03/11 07:38:53 | 000,459,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msfeeds.dll
[2010/03/11 07:38:53 | 000,459,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeeds.dll
[2010/03/11 07:38:53 | 000,193,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msrating.dll
[2010/03/11 07:38:53 | 000,193,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msrating.dll
[2010/03/11 07:38:53 | 000,105,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\url.dll
[2010/03/11 07:38:53 | 000,105,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\url.dll
[2010/03/11 07:38:53 | 000,102,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\occache.dll
[2010/03/11 07:38:53 | 000,052,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msfeedsbs.dll
[2010/03/11 07:38:53 | 000,052,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeedsbs.dll
[2010/03/11 07:38:53 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\pngfilt.dll
[2010/03/11 07:38:53 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pngfilt.dll
[2010/03/11 07:38:52 | 006,067,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieframe.dll
[2010/03/11 07:38:52 | 001,830,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\inetcpl.cpl
[2010/03/11 07:38:52 | 001,830,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetcpl.cpl
[2010/03/11 07:38:52 | 000,268,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iertutil.dll
[2010/03/11 07:38:52 | 000,192,512 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\iepeers.dll
[2010/03/11 07:38:52 | 000,192,512 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iepeers.dll
[2010/03/11 07:38:52 | 000,078,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ieencode.dll
[2010/03/11 07:38:52 | 000,078,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieencode.dll
[2010/03/11 07:38:52 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\iernonce.dll
[2010/03/11 07:38:52 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iernonce.dll
[2010/03/11 07:38:52 | 000,027,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\jsproxy.dll
[2010/03/11 07:38:52 | 000,027,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jsproxy.dll
[2010/03/11 07:38:51 | 000,385,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\iedkcs32.dll
[2010/03/11 07:38:51 | 000,385,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iedkcs32.dll
[2010/03/11 07:38:51 | 000,380,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ieapfltr.dll
[2010/03/11 07:38:51 | 000,380,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieapfltr.dll
[2010/03/11 07:38:51 | 000,347,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dxtmsft.dll
[2010/03/11 07:38:51 | 000,347,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dxtmsft.dll
[2010/03/11 07:38:51 | 000,230,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ieaksie.dll
[2010/03/11 07:38:51 | 000,230,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieaksie.dll
[2010/03/11 07:38:51 | 000,214,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dxtrans.dll
[2010/03/11 07:38:51 | 000,214,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dxtrans.dll
[2010/03/11 07:38:51 | 000,153,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ieakeng.dll
[2010/03/11 07:38:51 | 000,153,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieakeng.dll
[2010/03/11 07:38:51 | 000,124,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\advpack.dll
[2010/03/11 07:38:51 | 000,063,488 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icardie.dll
[2010/03/11 07:38:51 | 000,017,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\corpol.dll
[2010/03/11 07:38:51 | 000,017,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\corpol.dll
[2010/03/10 14:29:32 | 000,094,208 | ---- | M] (DivX, Inc.) -- C:\WINDOWS\System32\dpl100.dll
[2010/03/10 08:18:46 | 000,389,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\html.iec
[2010/03/10 08:18:20 | 000,070,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ie4uinit.exe
[2010/03/10 08:18:20 | 000,070,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ie4uinit.exe
[2010/03/04 09:55:31 | 000,001,476 | ---- | M] () -- C:\Documents and Settings\David\Desktop\TONG!.lnk
[2010/03/04 09:04:40 | 000,001,848 | ---- | M] () -- C:\Documents and Settings\David\Desktop\Secret Maryo Chronicles.lnk
[2010/03/04 08:47:15 | 000,001,681 | ---- | M] () -- C:\Documents and Settings\David\Desktop\Bubble Train.lnk
[2010/02/28 08:52:55 | 008,118,438 | ---- | M] () -- C:\Documents and Settings\David\My Documents\veetle-0.9.16.exe
[2010/02/26 08:32:58 | 000,008,192 | ---- | M] (Nokia) -- C:\WINDOWS\System32\drivers\usbser_lowerfltj.sys
[2010/02/26 08:32:52 | 000,662,016 | ---- | M] (Nokia) -- C:\WINDOWS\System32\nmwcdcocls.dll
[2010/02/26 08:32:50 | 000,092,672 | ---- | M] (Nokia) -- C:\WINDOWS\System32\nmwcdcls.dll
[2010/02/26 08:32:46 | 000,008,192 | ---- | M] (Nokia) -- C:\WINDOWS\System32\drivers\usbser_lowerflt.sys
[2010/02/26 08:32:44 | 000,022,528 | ---- | M] (Nokia) -- C:\WINDOWS\System32\drivers\ccdcmbo.sys
[2010/02/26 08:32:44 | 000,018,176 | ---- | M] (Nokia) -- C:\WINDOWS\System32\drivers\ccdcmb.sys
[2010/02/26 08:19:00 | 001,461,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wdfcoinstaller01009.dll
[2010/02/23 11:08:19 | 000,029,921 | ---- | M] () -- C:\Documents and Settings\David\My Documents\astrid_gov_02_10.odt
[2010/02/23 00:20:02 | 000,634,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iexplore.exe
[2010/02/23 00:18:28 | 000,161,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ieakui.dll
[2010/02/23 00:18:28 | 000,161,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieakui.dll
[2010/02/19 14:27:36 | 000,720,384 | ---- | M] (DivX, Inc.) -- C:\WINDOWS\System32\DivX.dll
[2010/02/19 14:27:16 | 000,856,064 | ---- | M] (DivX, Inc.) -- C:\WINDOWS\System32\divx_xx0c.dll
[2010/02/19 14:27:16 | 000,856,064 | ---- | M] (DivX, Inc.) -- C:\WINDOWS\System32\divx_xx07.dll
[2010/02/19 14:27:16 | 000,847,872 | ---- | M] (DivX, Inc.) -- C:\WINDOWS\System32\divx_xx0a.dll
[2010/02/19 14:27:16 | 000,843,776 | ---- | M] (DivX, Inc.) -- C:\WINDOWS\System32\divx_xx16.dll
[2010/02/19 14:27:16 | 000,839,680 | ---- | M] (DivX, Inc.) -- C:\WINDOWS\System32\divx_xx11.dll
[2010/02/17 05:41:03 | 000,000,664 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat
[2010/02/15 13:00:00 | 000,278,528 | ---- | M] (Real Networks, Inc) -- C:\WINDOWS\System32\pncrt.dll
[2010/02/15 13:00:00 | 000,185,920 | ---- | M] (RealNetworks, Inc.) -- C:\WINDOWS\System32\rmoc3260.dll
[2010/02/15 13:00:00 | 000,006,656 | ---- | M] (RealNetworks, Inc.) -- C:\WINDOWS\System32\pndx5016.dll
[2010/02/15 13:00:00 | 000,005,632 | ---- | M] (RealNetworks, Inc.) -- C:\WINDOWS\System32\pndx5032.dll
[2010/02/12 05:03:03 | 000,293,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\browserchoice.exe
[2010/02/10 03:54:45 | 000,691,696 | ---- | M] (Duplex Secure Ltd.) -- C:\WINDOWS\System32\drivers\sptd.sys
[2010/02/08 06:51:50 | 000,001,546 | ---- | M] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\ImgBurn.lnk
[2010/02/08 06:51:50 | 000,001,528 | ---- | M] () -- C:\Documents and Settings\David\Desktop\ImgBurn.lnk
[2010/02/05 03:10:18 | 000,002,370 | ---- | M] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\Nero StartSmart Essentials.lnk
[2010/02/05 03:10:18 | 000,002,272 | ---- | M] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\Nero Home Essentials SE.lnk
[2010/02/05 03:08:31 | 000,001,024 | ---- | M] () -- C:\Documents and Settings\David\.rnd
[2010/02/04 04:01:14 | 000,528,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_6.dll
[2010/02/04 04:01:14 | 000,238,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_6.dll
[2010/02/04 04:01:14 | 000,074,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\XAPOFX1_4.dll
[2010/02/04 04:01:14 | 000,022,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\X3DAudio1_7.dll
[2010/02/02 06:08:58 | 000,030,536 | ---- | M] (TuneUp Software) -- C:\WINDOWS\System32\TURegOpt.exe
[2010/01/28 07:35:24 | 000,010,240 | ---- | M] () -- C:\WINDOWS\System32\drivers\mdvrmng.sys
[2010/01/28 07:34:32 | 000,113,280 | ---- | M] (Huawei Technologies Co., Ltd.) -- C:\WINDOWS\System32\drivers\ewusbnet.sys
[2010/01/28 07:34:32 | 000,102,528 | ---- | M] (Huawei Technologies Co., Ltd.) -- C:\WINDOWS\System32\drivers\ewusbmdm.sys
[2010/01/28 07:34:32 | 000,100,736 | ---- | M] (Huawei Technologies Co., Ltd.) -- C:\WINDOWS\System32\drivers\ewusbdev.sys
[2010/01/28 07:34:32 | 000,024,448 | ---- | M] (Huawei Tech. Co., Ltd.) -- C:\WINDOWS\System32\drivers\ewdcsc.sys
[2010/01/27 06:01:55 | 558,369,298 | ---- | M] () -- C:\Documents and Settings\David\My Documents\OOo_3.1.1_090909_Win32Intel_install_en-US_de_hu_it_fr.exe
[2010/01/15 10:18:49 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx
[2010/01/14 06:09:28 | 000,011,773 | ---- | M] () -- C:\Documents and Settings\David\My Documents\post_office_monthly.odt
[2010/01/13 16:30:13 | 006,168,272 | ---- | M] (LightScribe ) -- C:\Documents and Settings\David\My Documents\LsDiagnosticUtility_1.18.10.2.exe
[2010/01/13 16:19:49 | 000,011,141 | ---- | M] () -- C:\WINDOWS\System32\LexFiles.ulf
[2010/01/13 16:12:42 | 000,000,867 | ---- | M] () -- C:\lxceinst.csv
[2010/01/13 16:12:19 | 000,000,275 | ---- | M] () -- C:\lxcefire.csv
[2010/01/13 16:11:36 | 039,736,848 | ---- | M] (Lexmark International, Inc. ) -- C:\Documents and Settings\David\My Documents\cjb4300EN.exe
[2010/01/13 16:00:21 | 000,000,139 | ---- | M] () -- C:\lxceinst.001
[2010/01/13 16:00:10 | 000,000,275 | ---- | M] () -- C:\lxcefire.001
[2010/01/13 15:58:56 | 000,117,562 | ---- | M] () -- C:\lxceunst.csv
[2010/01/13 07:42:15 | 000,556,639 | ---- | M] () -- C:\Documents and Settings\David\My Documents\bx6vp_1.exe
[2010/01/13 07:40:05 | 000,591,291 | ---- | M] () -- C:\Documents and Settings\David\My Documents\bx6sp2.exe
[2010/01/06 07:03:18 | 000,000,648 | ---- | M] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\LingoPad.lnk
[2009/12/30 06:40:17 | 000,010,933 | ---- | M] () -- C:\Documents and Settings\David\My Documents\untitled_0_2.odt
[2009/12/27 17:26:32 | 000,315,408 | ---- | M] (Kaspersky Lab) -- C:\WINDOWS\System32\drivers\klif.sys
[2009/12/16 13:43:27 | 000,343,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mspaint.exe
[2009/11/27 07:23:59 | 000,000,685 | ---- | M] () -- C:\Documents and Settings\David\Desktop\Simpo PDF Creator.lnk
[2009/11/27 04:57:10 | 000,000,730 | ---- | M] () -- C:\Documents and Settings\David\Desktop\Simpo PDF Merge & Split.lnk
[2009/11/21 14:14:16 | 000,000,746 | ---- | M] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\Dev-PHP.lnk
[2009/11/16 06:25:48 | 000,029,000 | ---- | M] (TuneUp Software) -- C:\WINDOWS\System32\uxtuneup.dll
[2009/11/12 14:02:28 | 000,000,137 | ---- | M] () -- C:\WINDOWS\System32\09wutili.sys
[2009/11/06 19:07:08 | 000,049,488 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\netfxperf.dll
[2009/11/05 07:11:15 | 002,270,797 | ---- | M] () -- C:\Documents and Settings\David\My Documents\ADSL-8000.pdf
[2009/11/04 12:37:22 | 000,000,685 | ---- | M] () -- C:\Documents and Settings\David\Desktop\Free CD Ripper.lnk
[2009/11/04 07:21:32 | 000,022,552 | ---- | M] () -- C:\Documents and Settings\David\My Documents\claimform.pdf
[2009/10/29 06:57:20 | 000,105,472 | ---- | M] () -- C:\WINDOWS\PreConvert.dll
[2009/10/22 07:54:18 | 000,037,392 | ---- | M] (Kaspersky Lab) -- C:\WINDOWS\System32\drivers\57373902.sys
[2009/10/20 15:34:56 | 000,219,664 | ---- | M] (Kaspersky Lab) -- C:\WINDOWS\System32\klogon.dll
[2009/10/19 03:43:08 | 000,001,502 | ---- | M] () -- C:\Documents and Settings\David\Desktop\blinkx beat.lnk
[2009/10/19 03:42:47 | 000,001,613 | ---- | M] () -- C:\Documents and Settings\David\Desktop\Free Dolphins Screensaver.lnk
[2009/10/19 03:42:47 | 000,001,611 | ---- | M] () -- C:\Documents and Settings\David\Desktop\Free Whales ScreenSaver.lnk
[2009/10/19 03:42:47 | 000,001,609 | ---- | M] () -- C:\Documents and Settings\David\Desktop\Free Animated Desktop Wallpaper.lnk
[2009/10/14 16:18:34 | 000,036,880 | ---- | M] (Kaspersky Lab) -- C:\WINDOWS\System32\drivers\klbg.sys
[2009/10/09 17:31:10 | 000,315,408 | ---- | M] (Kaspersky Lab) -- C:\WINDOWS\System32\drivers\5737390.sys
[2009/10/08 08:57:02 | 000,611,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\uiautomationcore.dll
[2009/10/07 03:54:06 | 000,000,851 | ---- | M] () -- C:\Documents and Settings\David\Desktop\Format Factory.lnk
[2009/10/07 03:52:13 | 000,000,705 | ---- | M] () -- C:\Documents and Settings\David\Desktop\Extra Video Creator.lnk
[2009/10/05 15:34:57 | 003,733,706 | ---- | M] (Romain Bourdon (Roms) ) -- C:\Documents and Settings\David\Desktop\WampServer2-APACHE2063.exe
[2009/10/05 15:33:43 | 000,001,174 | ---- | M] () -- C:\WINDOWS\mozver.dat
[2009/10/05 01:50:29 | 000,001,860 | ---- | M] () -- C:\Documents and Settings\David\Desktop\Order Autoplay Menu Designer Online.lnk
[2009/10/05 01:50:29 | 000,000,891 | ---- | M] () -- C:\Documents and Settings\David\Desktop\Autoplay Menu Designer.lnk
[2009/10/02 14:39:44 | 000,019,472 | ---- | M] (Kaspersky Lab) -- C:\WINDOWS\System32\drivers\klmouflt.sys
[2009/09/25 11:59:42 | 000,128,016 | ---- | M] (Kaspersky Lab) -- C:\WINDOWS\System32\drivers\57373901.sys
[2009/09/25 02:20:52 | 000,000,404 | ---- | M] () -- C:\Documents and Settings\David\Desktop\eBay.lnk
[2009/09/25 02:20:52 | 000,000,404 | ---- | M] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\eBay.lnk
[2009/09/24 09:07:20 | 000,389,120 | ---- | M] (SafeApp Software, LLC) -- C:\WINDOWS\System32\RegistryHelperLM.ocx
[2009/09/23 18:30:08 | 000,156,488 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mscorier.dll
[2009/09/14 09:42:46 | 000,032,272 | ---- | M] (Kaspersky Lab) -- C:\WINDOWS\System32\drivers\klim5.sys
[2009/09/09 14:01:40 | 000,027,675 | ---- | M] () -- C:\WINDOWS\System32\drivers\klopp.dat
[2009/09/04 11:44:40 | 000,515,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_5.dll
[2009/09/04 11:44:40 | 000,238,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_5.dll
[2009/09/04 11:44:40 | 000,069,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\XAPOFX1_3.dll
[2009/09/04 11:29:34 | 000,453,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_42.dll
[2009/09/04 11:29:34 | 000,235,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx11_42.dll
[2009/09/04 11:29:32 | 005,501,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dcsx_42.dll
[2009/09/04 11:29:32 | 001,974,616 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_42.dll
[2009/09/04 11:29:30 | 001,892,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_42.dll
[2009/09/01 10:29:50 | 000,128,016 | ---- | M] (Kaspersky Lab) -- C:\WINDOWS\System32\drivers\kl1.sys
[2009/08/21 07:52:09 | 000,009,563 | ---- | M] () -- C:\Documents and Settings\David\My Documents\holidaypark refund 1000.00.odt
[2009/08/18 00:35:20 | 000,001,952 | ---- | M] () -- C:\WINDOWS\System32\objsafe.tlb
[2009/08/14 05:05:25 | 000,083,343 | ---- | M] () -- C:\Documents and Settings\David\My Documents\Registration of managers of care at home services.mht
[2009/08/13 10:16:05 | 000,512,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\jscript.dll
[2009/08/13 10:16:05 | 000,512,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jscript.dll
[2009/08/13 01:12:23 | 000,001,577 | ---- | M] () -- C:\Documents and Settings\David\Desktop\DVD Flick.lnk
[2009/08/11 07:15:08 | 000,244,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msflxgrd.ocx
[2009/08/10 11:04:48 | 004,112,856 | ---- | M] (Two Pilots) -- C:\WINDOWS\PDFCreatorPilot.dll
[2009/08/06 14:24:18 | 000,327,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wucltui.dll
[2009/08/06 14:24:18 | 000,021,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wucltui.dll.mui
[2009/08/06 14:24:10 | 000,044,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wups2.dll
[2009/08/06 14:24:10 | 000,035,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wups.dll
[2009/08/06 14:24:06 | 000,015,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wuapi.dll.mui
[2009/08/06 14:24:04 | 000,096,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cdm.dll
[2009/08/06 14:24:04 | 000,096,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cdm.dll
[2009/08/06 14:23:54 | 000,575,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wuapi.dll
[2009/08/06 14:23:46 | 000,274,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mucltui.dll
[2009/08/06 14:23:46 | 000,016,736 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mucltui.dll.mui
[2009/08/04 13:52:22 | 001,193,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\FM20.DLL
[2009/08/03 09:07:42 | 000,403,816 | ---- | M] () -- C:\WINDOWS\System32\OGACheckControl.dll
[2009/08/03 09:07:42 | 000,322,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\OGAAddin.dll
[2009/08/03 09:07:42 | 000,230,768 | ---- | M] () -- C:\WINDOWS\System32\OGAEXEC.exe
[2009/07/28 18:32:42 | 000,009,543 | ---- | M] () -- C:\Documents and Settings\David\My Documents\raten.ods
[2009/07/24 04:14:57 | 000,000,417 | ---- | M] () -- C:\Documents and Settings\David\Desktop\TalkTalk Connect & Go V6.lnk
[2009/07/23 07:33:52 | 017,777,408 | ---- | M] (TuneUp Software) -- C:\Documents and Settings\David\My Documents\TU2009TrialEN-US.exe
[2009/07/14 09:56:02 | 099,550,188 | ---- | M] () -- C:\Documents and Settings\David\My Documents\regedit_reset.reg
[2009/07/14 04:35:16 | 000,037,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\wdfldr.sys
[2009/07/10 06:15:46 | 000,306,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WLXPGSS.SCR
[2009/06/29 03:33:41 | 002,452,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ieapfltr.dat
[2009/06/29 03:33:41 | 002,452,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieapfltr.dat
[2009/06/16 09:05:28 | 000,000,796 | ---- | M] () -- C:\Documents and Settings\David\Desktop\Iconomize.lnk
[2009/06/11 12:51:38 | 000,049,254 | ---- | M] () -- C:\lxceunst.000
[2009/06/11 00:35:42 | 000,496,128 | ---- | M] ( datenhaus GmbH) -- C:\WINDOWS\System32\dhRichClient3.dll
[2009/06/10 09:30:10 | 000,009,839 | ---- | M] () -- C:\Documents and Settings\David\My Documents\vollmacht doris amberg 11.05.09.odt
[2009/06/01 00:44:24 | 000,010,818 | ---- | M] () -- C:\Documents and Settings\David\My Documents\allocation of duties 2.odt
[2009/05/29 17:42:20 | 000,309,248 | ---- | M] () -- C:\WINDOWS\System32\sqlite36_engine.dll
[2009/05/26 08:47:03 | 000,991,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieframe.dll.mui
[2009/05/24 18:24:06 | 000,350,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mssph.dll
[2009/05/21 11:02:57 | 002,622,551 | ---- | M] () -- C:\WINDOWS\System32\IP_192.212.5.15
[2009/05/21 04:32:21 | 000,000,687 | ---- | M] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\Dictionary.lnk
[2009/05/21 04:31:48 | 000,000,687 | ---- | M] () -- C:\Documents and Settings\David\Desktop\Dictionary.lnk
[2009/05/11 12:32:52 | 000,009,609 | ---- | M] () -- C:\Documents and Settings\David\My Documents\Fr. Cremer Sozi amt 11.05.09.odt
[2009/04/23 03:05:05 | 000,000,985 | ---- | M] () -- C:\Documents and Settings\David\Desktop\Wondershare DVD to Flash Converter.lnk
[2009/04/23 03:05:05 | 000,000,935 | ---- | M] () -- C:\Documents and Settings\David\Desktop\Wondershare Navigator.lnk
[2009/04/22 03:13:18 | 000,001,706 | ---- | M] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\Zoner Photo Studio 11.lnk
[2009/04/21 08:48:20 | 000,017,920 | ---- | M] () -- C:\Documents and Settings\David\My Documents\TENANCY APPLICATION FORM.doc
[2009/04/20 07:56:28 | 000,031,232 | ---- | M] (NirSoft) -- C:\WINDOWS\NIRCMD.exe
[2009/04/20 05:38:39 | 000,000,064 | ---- | M] () -- C:\WINDOWS\System32\Wucom.ucs
[2009/04/20 05:38:20 | 000,000,126 | ---- | M] () -- C:\WINDOWS\Compall.INI
[2009/04/20 05:33:52 | 000,000,009 | ---- | M] () -- C:\WINDOWS\Convsn.d11
[2009/04/15 01:47:21 | 000,009,713 | ---- | M] () -- C:\Documents and Settings\David\My Documents\allocation of daily duities.odt
[2009/04/03 08:12:55 | 000,000,794 | ---- | M] () -- C:\Documents and Settings\David\Desktop\3D Covers Extreme.lnk
[2009/03/25 16:00:05 | 000,013,959 | ---- | M] () -- C:\Documents and Settings\David\My Documents\wirtz.odt
[2009/03/25 07:20:21 | 000,014,057 | ---- | M] () -- C:\Documents and Settings\David\My Documents\arbeitsagentur_david_jun.odt
[2009/03/16 08:18:32 | 000,517,448 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_4.dll
[2009/03/16 08:18:32 | 000,235,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_4.dll
[2009/03/16 08:18:32 | 000,022,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\X3DAudio1_6.dll
[2009/03/11 14:01:28 | 000,023,552 | ---- | M] () -- C:\WINDOWS\System32\DirectCOM.dll
[2009/03/11 06:00:12 | 000,000,655 | ---- | M] () -- C:\Documents and Settings\David\Desktop\AWicons Pro.lnk
[2009/03/10 16:18:14 | 000,934,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\WgaTray.exe
[2009/03/09 09:27:22 | 004,178,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_41.dll
[2009/03/09 09:27:22 | 001,846,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_41.dll
[2009/03/09 09:27:22 | 000,453,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_41.dll
[2009/03/07 22:32:52 | 000,036,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ieudinit.exe
[2009/03/05 07:17:58 | 000,000,091 | -H-- | M] () -- C:\Documents and Settings\David\Application Data\xpy.ini
[2009/03/05 07:16:15 | 000,087,801 | ---- | M] () -- C:\Documents and Settings\Administrator\My Documents\xpy-0.10.9-bin.zip
[2009/02/26 14:25:44 | 000,442,368 | ---- | M] (blinkx) -- C:\WINDOWS\System32\ssblinkx.scr
[2009/02/04 20:49:06 | 000,451,072 | ---- | M] () -- C:\WINDOWS\System32\ISSRemoveSP.exe
[2009/01/29 10:45:23 | 000,009,842 | ---- | M] () -- C:\Documents and Settings\David\My Documents\Glasgow letter 29.01.09.odt
[2009/01/23 06:08:46 | 000,002,495 | ---- | M] () -- C:\Documents and Settings\David\Desktop\Microsoft Office Excel 2003.lnk
[2009/01/22 09:23:29 | 000,000,376 | ---- | M] () -- C:\WINDOWS\ODBC.INI
[2009/01/16 13:16:24 | 000,937,800 | ---- | M] (AceBIT GmbH) -- C:\WINDOWS\System32\acebitaw.dll
[2009/01/14 08:18:04 | 000,014,268 | ---- | M] () -- C:\Documents and Settings\David\My Documents\untitled_0_1.odt
[2009/01/14 08:03:34 | 000,014,313 | ---- | M] () -- C:\Documents and Settings\David\My Documents\untitled_0.odt
[2009/01/14 08:03:33 | 000,009,773 | ---- | M] () -- C:\Documents and Settings\David\My Documents\untitled_1.ods
[2009/01/07 12:20:38 | 000,024,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\nlsdl.dll
[2009/01/07 12:20:36 | 000,026,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\idndl.dll
[2009/01/07 12:20:20 | 000,008,798 | ---- | M] () -- C:\WINDOWS\System32\icrav03.rat
[2009/01/07 12:20:18 | 000,265,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msdbg2.dll
[2008/12/30 06:42:13 | 000,000,721 | ---- | M] () -- C:\Documents and Settings\David\Desktop\FlashPeak SlimBrowser.lnk
[2008/12/18 11:58:01 | 000,000,744 | ---- | M] () -- C:\Documents and Settings\David\Application Data\wklnhst.dat
[2008/12/16 06:07:43 | 000,000,678 | ---- | M] () -- C:\Documents and Settings\David\Desktop\Extra CD DVD Burner.lnk
[2008/12/12 05:18:16 | 000,087,336 | ---- | M] (Apple Inc.) -- C:\WINDOWS\System32\dns-sd.exe
[2008/12/12 05:11:46 | 000,065,536 | ---- | M] (Apple Inc.) -- C:\WINDOWS\System32\jdns_sd.dll
[2008/12/12 05:11:46 | 000,061,440 | ---- | M] (Apple Inc.) -- C:\WINDOWS\System32\dnssd.dll
[2008/12/10 06:58:46 | 000,000,774 | ---- | M] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\InfraRecorder.lnk
[2008/12/04 16:13:02 | 000,094,428 | ---- | M] () -- C:\Documents and Settings\Administrator\My Documents\xpy.exe
[2008/12/03 08:41:35 | 000,037,407 | ---- | M] () -- C:\Documents and Settings\David\My Documents\castle2.gif
[2008/12/03 08:38:03 | 000,048,356 | ---- | M] () -- C:\Documents and Settings\David\My Documents\castle.gif
[2008/12/03 08:35:03 | 000,086,182 | ---- | M] () -- C:\Documents and Settings\David\My Documents\tattoo_2007.gif
[2008/12/03 08:30:54 | 000,144,138 | ---- | M] () -- C:\Documents and Settings\David\My Documents\tattoo_piper.gif
[2008/12/03 08:30:00 | 000,045,900 | ---- | M] () -- C:\Documents and Settings\David\My Documents\tattoo_header.gif
[2008/12/02 08:10:54 | 000,132,865 | ---- | M] () -- C:\Documents and Settings\David\My Documents\tattoo2.gif
[2008/12/02 08:07:33 | 000,318,827 | ---- | M] () -- C:\Documents and Settings\David\My Documents\tattoo.gif
[2008/11/27 12:16:15 | 000,075,776 | ---- | M] () -- C:\Documents and Settings\David\My Documents\contract.doc
[2008/11/18 07:02:32 | 000,016,600 | ---- | M] () -- C:\mvstcdxx.lst
[2008/11/18 07:02:29 | 000,142,128 | ---- | M] () -- C:\Documents and Settings\David\My Documents\mvstcdxx.lst
[2008/11/18 06:13:51 | 000,014,000 | ---- | M] () -- C:\Documents and Settings\David\My Documents\ebay_complaint_181108.odt
[2008/11/18 05:25:40 | 000,012,552 | ---- | M] () -- C:\Documents and Settings\David\My Documents\BBC_complaint.odt
[2008/11/07 12:55:30 | 000,026,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\spupdsvc.exe
[2008/11/07 12:55:30 | 000,016,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsgXP_2k3.dll
[2008/11/06 18:27:34 | 001,081,616 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mscomctl.ocx
[2008/11/06 18:27:08 | 000,067,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\SYSINFO.OCX
[2008/11/06 18:26:32 | 000,212,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\richtx32.ocx
[2008/11/06 18:26:06 | 000,647,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mscomct2.ocx
[2008/11/06 18:26:04 | 000,132,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msinet.ocx
[2008/10/30 19:09:29 | 001,174,471 | ---- | M] () -- C:\Documents and Settings\David\My Documents\recovery.hst
[2008/10/30 06:00:40 | 000,000,674 | ---- | M] () -- C:\Documents and Settings\David\Desktop\WinUtilities.lnk
[2008/10/29 14:19:33 | 000,000,713 | ---- | M] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\Intrusion Detection System - Sax2.lnk
[2008/10/27 04:04:18 | 000,514,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_3.dll
[2008/10/27 04:04:16 | 000,235,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_3.dll
[2008/10/27 04:04:16 | 000,023,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\X3DAudio1_5.dll
[2008/10/27 04:04:14 | 000,070,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\XAPOFX1_2.dll
[2008/10/23 08:21:36 | 000,000,935 | ---- | M] () -- C:\Documents and Settings\David\Desktop\Batch Image Watermarker.lnk
[2008/10/19 16:47:20 | 000,008,743 | ---- | M] () -- C:\Documents and Settings\David\My Documents\Colostoma bag changing record.odt
[2008/10/09 22:52:38 | 004,379,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_40.dll
[2008/10/09 22:52:38 | 002,036,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_40.dll
[2008/10/09 22:52:38 | 000,452,440 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_40.dll
[2008/09/24 07:32:42 | 002,255,133 | ---- | M] () -- C:\Documents and Settings\David\My Documents\cash_book_pro_2008.zip
[2008/09/24 07:23:58 | 000,016,384 | ---- | M] () -- C:\Documents and Settings\David\My Documents\DailyCashFillIn.xls
[2008/09/19 08:30:33 | 000,000,070 | ---- | M] () -- C:\WINDOWS\forbes.ini
[2008/09/19 07:38:27 | 000,000,078 | ---- | M] () -- C:\WINDOWS\fsp.bin
[2008/09/19 07:34:30 | 000,000,000 | ---- | M] () -- C:\WINDOWS\forbes
[2008/09/19 06:56:17 | 013,704,240 | ---- | M] () -- C:\Documents and Settings\David\My Documents\light08.exe
[2008/09/04 08:24:56 | 000,009,718 | ---- | M] () -- C:\Documents and Settings\David\My Documents\t-shirt.odt
[2008/08/31 06:27:26 | 000,028,672 | ---- | M] (-) -- C:\WINDOWS\System32\mousewheel.ocx
[2008/08/26 05:26:12 | 000,018,816 | ---- | M] (Nokia) -- C:\WINDOWS\System32\drivers\pccsmcfd.sys
[2008/08/24 17:29:52 | 000,000,887 | ---- | M] () -- C:\Documents and Settings\David\Desktop\BusinessCardsMX3.lnk
[2008/08/18 02:16:10 | 001,042,598 | ---- | M] () -- C:\Documents and Settings\David\My Documents\musicofsco_jewel.odg
[2008/08/16 03:48:44 | 000,275,158 | ---- | M] () -- C:\Documents and Settings\David\My Documents\Red_Hot_Chilli_Pipers_-_Bagrock_To_The_Masses_(2007)-[Cd]-[www.FreeCovers.net].jpg
[2008/08/16 03:30:14 | 000,259,999 | ---- | M] () -- C:\Documents and Settings\David\My Documents\Red_Hot_Chilli_Pipers_-_Bagrock_To_The_Masses_(2007)-[Front]-[www.FreeCovers.net].jpg
[2008/08/16 03:29:45 | 000,484,242 | ---- | M] () -- C:\Documents and Settings\David\My Documents\Red_Hot_Chilli_Pipers_-_Bagrock_To_The_Masses_(2007)-[Back]-[www.FreeCovers.net].jpg
[2008/07/31 04:41:54 | 000,238,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_2.dll
[2008/07/31 04:41:52 | 000,068,616 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\XAPOFX1_1.dll
[2008/07/31 04:40:32 | 000,509,448 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_2.dll
[2008/07/29 16:10:04 | 000,026,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\TsWpfWrp.exe
[2008/07/29 14:59:58 | 000,781,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\PresentationNative_v0300.dll
[2008/07/29 14:59:58 | 000,105,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\PresentationCFFRasterizerNative_v0300.dll
[2008/07/29 14:24:50 | 000,622,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\icardagt.exe
[2008/07/29 14:24:50 | 000,097,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\infocardapi.dll
[2008/07/29 14:24:50 | 000,037,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\infocardcpl.cpl
[2008/07/29 14:24:50 | 000,011,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\icardres.dll
[2008/07/29 00:49:58 | 000,586,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\icardres.dll.mui
[2008/07/25 06:16:58 | 000,083,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mscories.dll
[2008/07/20 15:06:24 | 000,087,040 | ---- | M] () -- C:\Documents and Settings\David\My Documents\4 Evidence Gathering Form[1].doc
Part three:
[2008/07/17 10:48:02 | 000,250,048 | RHS- | M] () -- C:\ntldr
[2008/07/14 18:31:02 | 000,008,353 | ---- | M] () -- C:\Documents and Settings\David\My Documents\item_list.odt
[2008/07/14 04:16:21 | 000,912,896 | ---- | M] () -- C:\Documents and Settings\David\My Documents\SUPPORT_APPLICATION_FORM_Filled.doc
[2008/07/14 02:41:58 | 000,008,693 | ---- | M] () -- C:\Documents and Settings\David\My Documents\HR Department.odt
[2008/07/11 07:02:01 | 000,858,112 | ---- | M] () -- C:\Documents and Settings\David\My Documents\SUPPORT_APPLICATION_FORM.doc
[2008/07/11 03:55:41 | 000,712,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\windowscodecs.dll
[2008/07/11 03:55:41 | 000,347,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\windowscodecsext.dll
[2008/07/10 05:01:00 | 000,467,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_39.dll
[2008/07/10 05:00:58 | 003,851,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_39.dll
[2008/07/10 05:00:58 | 001,493,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_39.dll
[2008/07/09 02:38:24 | 000,017,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsg.dll
[2008/07/06 07:06:10 | 001,676,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\xpssvcs.dll
[2008/07/06 07:06:10 | 000,117,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\prntvpt.dll
[2008/06/27 18:51:37 | 727,433,216 | ---- | M] () -- C:\Documents and Settings\David\My Documents\OpenDisc08.07.iso
[2008/06/24 12:12:58 | 000,295,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wmpeffects.dll
[2008/06/19 12:26:19 | 000,008,471 | ---- | M] () -- C:\Documents and Settings\David\My Documents\statement cook 19.06.08.odt
[2008/06/16 17:51:00 | 000,013,657 | ---- | M] () -- C:\Documents and Settings\David\My Documents\citibank_160608.odt
[2008/06/12 09:23:32 | 000,956,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtctm.dll
[2008/06/12 09:23:32 | 000,428,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtcprx.dll
[2008/06/12 09:23:32 | 000,161,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtcuiu.dll
[2008/06/12 09:23:32 | 000,091,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxoci.dll
[2008/06/12 09:23:32 | 000,058,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtclog.dll
[2008/06/10 03:19:34 | 002,319,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_27.dll
[2008/06/10 03:19:14 | 002,682,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\vcredist_x86.exe
[2008/06/10 03:19:14 | 000,000,819 | ---- | M] () -- C:\WINDOWS\System32\regpackages.bat
[2008/06/06 09:54:26 | 000,095,600 | ---- | M] (Ahead Software AG
im Stoeckmaedle 18
76307 Karlsbad, Germany
Fax: ++49-7248-911-888
e-mail: info@nero.com) -- C:\WINDOWS\System32\NeroCo.dll
[2008/06/06 09:54:16 | 000,972,072 | ---- | M] (Nero AG) -- C:\WINDOWS\UNRecode.exe
[2008/06/02 05:49:21 | 000,000,650 | ---- | M] () -- C:\Documents and Settings\David\Desktop\HTTrack Website Copier.lnk
[2008/05/31 15:28:43 | 000,401,345 | ---- | M] () -- C:\Documents and Settings\David\My Documents\Remoteobserver.zip
[2008/05/30 17:54:56 | 000,027,361 | ---- | M] () -- C:\Documents and Settings\David\My Documents\synfig_back.odt
[2008/05/30 08:19:18 | 000,507,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_1.dll
[2008/05/30 08:18:52 | 000,238,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_1.dll
[2008/05/30 08:17:30 | 000,065,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\XAPOFX1_0.dll
[2008/05/30 08:17:00 | 000,025,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\X3DAudio1_4.dll
[2008/05/30 08:11:46 | 003,850,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_38.dll
[2008/05/30 08:11:46 | 001,491,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_38.dll
[2008/05/30 08:11:46 | 000,467,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_38.dll
[2008/05/26 16:21:26 | 001,418,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mssrch.dll
[2008/05/26 16:21:08 | 001,582,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\tquery.dll
[2008/05/26 16:19:36 | 000,273,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\oeph.dll
[2008/05/26 16:19:28 | 000,131,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\UncPH.dll
[2008/05/26 16:19:28 | 000,108,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\UncNE.dll
[2008/05/26 16:19:26 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\UncRes.dll
[2008/05/26 16:19:22 | 000,143,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\UncDMS.dll
[2008/05/26 16:19:20 | 000,097,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\UncCplExt.dll
[2008/05/26 16:19:16 | 000,011,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\oephRes.dll
[2008/05/26 16:18:56 | 000,203,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mssphtb.dll
[2008/05/26 16:18:44 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mssphtb.dll.mui
[2008/05/26 16:18:42 | 000,044,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msstrc.dll
[2008/05/26 16:18:34 | 000,231,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msshsq.dll
[2008/05/26 16:18:34 | 000,056,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\xmlfilter.dll
[2008/05/26 16:18:32 | 000,038,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rtffilt.dll
[2008/05/26 16:18:08 | 000,071,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\propdefs.dll
[2008/05/26 16:17:58 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mssrch.dll.mui
[2008/05/26 16:17:54 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mssph.dll.mui
[2008/05/26 16:17:44 | 000,034,816 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msscb.dll
[2008/05/26 16:17:38 | 000,011,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msshooks.dll
[2008/05/26 16:17:36 | 000,221,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\tquery.dll.mui
[2008/05/26 16:17:30 | 000,301,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\srchadmin.dll
[2008/05/26 16:17:28 | 000,032,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mssprxy.dll
[2008/05/26 16:17:26 | 000,087,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mssitlb.dll
[2008/05/26 16:17:26 | 000,060,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msscntrs.dll
[2008/05/26 16:17:12 | 000,135,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\srchadmin.dll.mui
[2008/05/26 15:59:42 | 000,018,904 | ---- | M] () -- C:\WINDOWS\System32\structuredqueryschematrivial.bin
[2008/05/26 15:59:40 | 000,106,605 | ---- | M] () -- C:\WINDOWS\System32\structuredqueryschema.bin
[2008/05/09 05:53:40 | 000,430,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\vbscript.dll
[2008/05/09 05:53:40 | 000,430,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\vbscript.dll
[2008/05/07 03:52:03 | 004,274,402 | ---- | M] () -- C:\Documents and Settings\David\attidavescotti_edited-1.png
[2008/05/07 03:52:03 | 000,541,809 | ---- | M] () -- C:\Documents and Settings\David\kilt1.jpg
[2008/05/06 09:08:38 | 000,243,999 | ---- | M] () -- C:\Documents and Settings\David\My Documents\games_front.odg
[2008/05/02 04:24:47 | 000,000,924 | ---- | M] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\TweakRAM.lnk
[2008/05/02 04:24:47 | 000,000,912 | ---- | M] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\Applications Startup Wizard.lnk
[2008/04/26 10:23:41 | 000,152,403 | ---- | M] () -- C:\Documents and Settings\David\My Documents\quasar_install-1.4.5.pdf
[2008/04/26 10:10:17 | 000,187,300 | ---- | M] () -- C:\Documents and Settings\David\My Documents\wamp_2_user_manual.pdf
[2008/04/26 10:09:19 | 000,005,957 | ---- | M] () -- C:\WINDOWS\php_old.ini
[2008/04/26 10:01:32 | 000,000,606 | ---- | M] () -- C:\Documents and Settings\David\Desktop\Quasar Accounting.lnk
[2008/04/25 17:42:06 | 685,389,545 | ---- | M] () -- C:\Creative Suite Master Collection Alternative.zip
[2008/04/24 03:09:19 | 000,390,490 | ---- | M] () -- C:\Documents and Settings\David\My Documents\receipt2.jpg
[2008/04/24 03:07:45 | 000,683,764 | ---- | M] () -- C:\Documents and Settings\David\My Documents\receipt1.jpg
[2008/04/24 03:05:29 | 000,078,911 | ---- | M] () -- C:\Documents and Settings\David\My Documents\receipt.gif
[2008/04/23 11:22:33 | 448,466,944 | ---- | M] () -- C:\Documents and Settings\David\My Documents\opensource_games21.iso
[2008/04/23 11:04:01 | 000,140,383 | ---- | M] () -- C:\Documents and Settings\David\My Documents\opensource_dvd_label.zip
[2008/04/21 03:09:49 | 000,033,250 | ---- | M] () -- C:\Documents and Settings\David\My Documents\web_design_sw.odt
[2008/04/15 10:27:28 | 000,037,084 | ---- | M] () -- C:\Documents and Settings\David\My Documents\synfig_front.odt
[2008/04/13 19:13:22 | 000,087,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpwsx.dll
[2008/04/13 19:12:42 | 000,129,536 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ksproxy.ax
[2008/04/13 19:12:42 | 000,091,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\kswdmcap.ax
[2008/04/13 19:12:42 | 000,091,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\kswdmcap.ax
[2008/04/13 19:12:42 | 000,061,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\kstvtune.ax
[2008/04/13 19:12:42 | 000,061,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\kstvtune.ax
[2008/04/13 19:12:42 | 000,043,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ksxbar.ax
[2008/04/13 19:12:42 | 000,043,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\ksxbar.ax
[2008/04/13 19:12:42 | 000,028,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\vidcap.ax
[2008/04/13 19:12:42 | 000,028,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\vidcap.ax
[2008/04/13 19:12:42 | 000,023,040 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ativmvxx.ax
[2008/04/13 19:12:42 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dshowext.ax
[2008/04/13 19:12:42 | 000,009,728 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ativdaxx.ax
[2008/04/13 19:12:41 | 000,165,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wuauclt1.exe
[2008/04/13 19:12:41 | 000,068,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\access.cpl
[2008/04/13 19:12:38 | 000,028,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\verclsid.exe
[2008/04/13 19:12:36 | 000,538,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\spider.exe
[2008/04/13 19:12:36 | 000,131,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\sndrec32.exe
[2008/04/13 19:12:36 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\spupdwxp.exe
[2008/04/13 19:12:36 | 000,007,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\spdwnwxp.exe
[2008/04/13 19:12:35 | 000,073,796 | ---- | M] (Smart Link) -- C:\WINDOWS\System32\slserv.exe
[2008/04/13 19:12:35 | 000,032,866 | ---- | M] (Smart Link) -- C:\WINDOWS\System32\slrundll.exe
[2008/04/13 19:12:35 | 000,032,866 | ---- | M] (Smart Link) -- C:\WINDOWS\slrundll.exe
[2008/04/13 19:12:35 | 000,032,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\setupn.exe
[2008/04/13 19:12:32 | 000,067,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rdshost.exe
[2008/04/13 19:12:32 | 000,062,976 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpclip.exe
[2008/04/13 19:12:32 | 000,019,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\qprocess.exe
[2008/04/13 19:12:32 | 000,013,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rdsaddin.exe
[2008/04/13 19:12:29 | 000,176,640 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\napstat.exe
[2008/04/13 19:12:29 | 000,012,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mstinit.exe
[2008/04/13 19:12:27 | 000,123,392 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mplay32.exe
[2008/04/13 19:12:25 | 000,033,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcperf.exe
[2008/04/13 19:12:21 | 000,229,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\fxscover.exe
[2008/04/13 19:12:21 | 000,142,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\fxsclnt.exe
[2008/04/13 19:12:20 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\fltmc.exe
[2008/04/13 19:12:20 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\faxpatch.exe
[2008/04/13 19:12:16 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dcomcnfg.exe
[2008/04/13 19:12:14 | 000,102,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\clipbrd.exe
[2008/04/13 19:12:11 | 000,184,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\accwiz.exe
[2008/04/13 19:12:11 | 000,183,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wuaueng1.dll
[2008/04/13 19:12:11 | 000,011,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\xolehlp.dll
[2008/04/13 19:12:09 | 000,276,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wmphoto.dll
[2008/04/13 19:12:09 | 000,069,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wlanapi.dll
[2008/04/13 19:12:08 | 000,053,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\vfwwdm32.dll
[2008/04/13 19:12:08 | 000,053,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\vfwwdm32.dll
[2008/04/13 19:12:08 | 000,011,325 | ---- | M] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\vchnt5.dll
[2008/04/13 19:12:07 | 000,239,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\srrstr.dll
[2008/04/13 19:12:07 | 000,093,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\tscfgwmi.dll
[2008/04/13 19:12:07 | 000,059,392 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\stclient.dll
[2008/04/13 19:12:07 | 000,053,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\tsgqec.dll
[2008/04/13 19:12:06 | 000,286,792 | ---- | M] (Smart Link) -- C:\WINDOWS\System32\slextspk.dll
[2008/04/13 19:12:06 | 000,188,508 | ---- | M] (Smart Link) -- C:\WINDOWS\System32\slgen.dll
[2008/04/13 19:12:06 | 000,073,832 | ---- | M] (Smart Link) -- C:\WINDOWS\System32\slcoinst.dll
[2008/04/13 19:12:06 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\smtpapi.dll
[2008/04/13 19:12:05 | 000,056,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\servdeps.dll
[2008/04/13 19:12:05 | 000,003,901 | ---- | M] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\siint5.dll
[2008/04/13 19:12:04 | 000,397,056 | ---- | M] (S3 Graphics, Inc.) -- C:\WINDOWS\System32\s3gnb.dll
[2008/04/13 19:12:04 | 000,290,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rhttpaa.dll
[2008/04/13 19:12:04 | 000,159,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ptpusd.dll
[2008/04/13 19:12:04 | 000,045,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\safrslv.dll
[2008/04/13 19:12:04 | 000,043,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\safrcdlg.dll
[2008/04/13 19:12:04 | 000,029,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\safrdm.dll
[2008/04/13 19:12:04 | 000,019,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpsnd.dll
[2008/04/13 19:12:04 | 000,009,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rwnh.dll
[2008/04/13 19:12:03 | 000,150,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\qagent.dll
[2008/04/13 19:12:03 | 000,147,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rdchost.dll
[2008/04/13 19:12:03 | 000,076,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\qutil.dll
[2008/04/13 19:12:03 | 000,062,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\qcliprov.dll
[2008/04/13 19:12:03 | 000,061,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rasqec.dll
[2008/04/13 19:12:03 | 000,043,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\racpldlg.dll
[2008/04/13 19:12:03 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\qmgrprxy.dll
[2008/04/13 19:12:02 | 000,412,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\photometadatahandler.dll
[2008/04/13 19:12:02 | 000,144,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\onex.dll
[2008/04/13 19:12:02 | 000,028,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\nmmkcert.dll
[2008/04/13 19:12:01 | 001,737,856 | ---- | M] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\mtxparhd.dll
[2008/04/13 19:12:01 | 000,193,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\napmontr.dll
[2008/04/13 19:12:01 | 000,034,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxlegih.dll
[2008/04/13 19:12:01 | 000,030,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxdm.dll
[2008/04/13 19:12:01 | 000,030,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\napipsec.dll
[2008/04/13 19:12:01 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxex.dll
[2008/04/13 19:12:00 | 000,252,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msoeacct.dll
[2008/04/13 19:12:00 | 000,155,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mssha.dll
[2008/04/13 19:12:00 | 000,105,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msoert2.dll
[2008/04/13 19:11:58 | 000,069,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msconf.dll
[2008/04/13 19:11:57 | 000,397,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcex.dll
[2008/04/13 19:11:57 | 000,184,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\microsoft.managementconsole.dll
[2008/04/13 19:11:57 | 000,106,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcfxcommon.dll
[2008/04/13 19:11:57 | 000,034,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mnmdd.dll
[2008/04/13 19:11:57 | 000,017,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mmfutil.dll
[2008/04/13 19:11:56 | 000,086,016 | ---- | M] (Conexant) -- C:\WINDOWS\System32\mdmxsdk.dll
[2008/04/13 19:11:56 | 000,058,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\licwmi.dll
[2008/04/13 19:11:56 | 000,037,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\l2gpstore.dll
[2008/04/13 19:11:56 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ksuser.dll
[2008/04/13 19:11:55 | 000,032,768 | ---- | M] (Intel Corporation) -- C:\WINDOWS\System32\isrdbg32.dll
[2008/04/13 19:11:54 | 000,562,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\fxsst.dll
[2008/04/13 19:11:54 | 000,400,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\fxsxp32.dll
[2008/04/13 19:11:54 | 000,397,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\fxstiff.dll
[2008/04/13 19:11:54 | 000,347,136 | ---- | M] (Hilgraeve, Inc.) -- C:\WINDOWS\System32\hypertrm.dll
[2008/04/13 19:11:54 | 000,285,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\fxscomex.dll
[2008/04/13 19:11:54 | 000,274,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\inetcfg.dll
[2008/04/13 19:11:54 | 000,246,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\fxst30.dll
[2008/04/13 19:11:54 | 000,192,512 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\fxswzrd.dll
[2008/04/13 19:11:54 | 000,154,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\fxsui.dll
[2008/04/13 19:11:54 | 000,081,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ils.dll
[2008/04/13 19:11:54 | 000,073,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\icwdial.dll
[2008/04/13 19:11:54 | 000,072,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\fxscom.dll
[2008/04/13 19:11:54 | 000,065,536 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\icwphbk.dll
[2008/04/13 19:11:54 | 000,055,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\fxsevent.dll
[2008/04/13 19:11:54 | 000,032,285 | ---- | M] (Conexant Systems, Inc.) -- C:\WINDOWS\System32\hsfcisp2.dll
[2008/04/13 19:11:54 | 000,026,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\fxsdrv.dll
[2008/04/13 19:11:54 | 000,023,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\fxsmon.dll
[2008/04/13 19:11:54 | 000,023,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\fxsext32.dll
[2008/04/13 19:11:54 | 000,011,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\icaapi.dll
[2008/04/13 19:11:54 | 000,008,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\fxsperf.dll
[2008/04/13 19:11:53 | 000,451,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\fxsapi.dll
[2008/04/13 19:11:52 | 000,650,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3ui.dll
[2008/04/13 19:11:52 | 000,184,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\eapp3hst.dll
[2008/04/13 19:11:52 | 000,180,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\eapphost.dll
[2008/04/13 19:11:52 | 000,126,976 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\eappcfg.dll
[2008/04/13 19:11:52 | 000,094,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\eappgnui.dll
[2008/04/13 19:11:52 | 000,059,392 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\eapqec.dll
[2008/04/13 19:11:52 | 000,057,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3cfg.dll
[2008/04/13 19:11:52 | 000,056,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3msm.dll
[2008/04/13 19:11:52 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dhcpqec.dll
[2008/04/13 19:11:52 | 000,040,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\eappprxy.dll
[2008/04/13 19:11:52 | 000,039,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3gpclnt.dll
[2008/04/13 19:11:52 | 000,039,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dimsroam.dll
[2008/04/13 19:11:52 | 000,030,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\eapolqec.dll
[2008/04/13 19:11:52 | 000,026,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3api.dll
[2008/04/13 19:11:52 | 000,009,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3dlg.dll
[2008/04/13 19:11:51 | 001,267,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\comsvcs.dll
[2008/04/13 19:11:51 | 000,539,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\comuid.dll
[2008/04/13 19:11:51 | 000,167,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\comsnap.dll
[2008/04/13 19:11:51 | 000,097,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\comrepl.dll
[2008/04/13 19:11:51 | 000,060,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\colbact.dll
[2008/04/13 19:11:51 | 000,028,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\comaddin.dll
[2008/04/13 19:11:50 | 001,888,992 | ---- | M] (ATI Technologies Inc. ) -- C:\WINDOWS\System32\ati3duag.dll
[2008/04/13 19:11:50 | 000,625,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\catsrvut.dll
[2008/04/13 19:11:50 | 000,516,768 | ---- | M] (ATI Technologies Inc. ) -- C:\WINDOWS\System32\ativvaxx.dll
[2008/04/13 19:11:50 | 000,233,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\azroles.dll
[2008/04/13 19:11:50 | 000,226,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\catsrv.dll
[2008/04/13 19:11:50 | 000,218,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\c_g18030.dll
[2008/04/13 19:11:50 | 000,185,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cmprops.dll
[2008/04/13 19:11:50 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\clbcatex.dll
[2008/04/13 19:11:50 | 000,085,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\catsrvps.dll
[2008/04/13 19:11:50 | 000,038,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cfgbkend.dll
[2008/04/13 19:11:50 | 000,032,768 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ativtmxx.dll
[2008/04/13 19:11:50 | 000,025,471 | ---- | M] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\atv04nt5.dll
[2008/04/13 19:11:50 | 000,021,183 | ---- | M] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\atv01nt5.dll
[2008/04/13 19:11:50 | 000,017,279 | ---- | M] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\atv10nt5.dll
[2008/04/13 19:11:50 | 000,015,423 | ---- | M] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\ch7xxnt5.dll
[2008/04/13 19:11:50 | 000,014,143 | ---- | M] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\atv06nt5.dll
[2008/04/13 19:11:50 | 000,011,359 | ---- | M] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\atv02nt5.dll
[2008/04/13 19:11:50 | 000,008,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx2.dll
[2008/04/13 19:11:50 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx4.dll
[2008/04/13 19:11:50 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx3.dll
[2008/04/13 19:11:49 | 000,870,784 | ---- | M] (ATI Technologies Inc. ) -- C:\WINDOWS\System32\ati3d1ag.dll
[2008/04/13 19:11:49 | 000,377,984 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ati2dvaa.dll
[2008/04/13 19:11:49 | 000,229,376 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ati2cqag.dll
[2008/04/13 19:11:49 | 000,201,728 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ati2dvag.dll
[2008/04/13 19:11:48 | 000,136,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\aaclient.dll
[2008/04/13 19:11:48 | 000,004,255 | ---- | M] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv01nt5.dll
[2008/04/13 19:11:48 | 000,003,967 | ---- | M] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv02nt5.dll
[2008/04/13 19:11:48 | 000,003,775 | ---- | M] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv11nt5.dll
[2008/04/13 19:11:48 | 000,003,711 | ---- | M] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv09nt5.dll
[2008/04/13 19:11:48 | 000,003,647 | ---- | M] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv07nt5.dll
[2008/04/13 19:11:48 | 000,003,615 | ---- | M] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv05nt5.dll
[2008/04/13 19:11:48 | 000,003,135 | ---- | M] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv08nt5.dll
[2008/04/13 19:11:37 | 000,065,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\unicdime.ime
[2008/04/13 19:11:33 | 000,079,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\phon.ime
[2008/04/13 19:11:33 | 000,078,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dayi.ime
[2008/04/13 19:11:33 | 000,065,536 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\winime.ime
[2008/04/13 19:11:33 | 000,026,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\romanime.ime
[2008/04/13 19:11:30 | 000,079,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\winar30.ime
[2008/04/13 19:11:30 | 000,077,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\quick.ime
[2008/04/13 19:11:29 | 000,078,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\chajei.ime
[2008/04/13 19:11:13 | 000,156,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\winzm.ime
[2008/04/13 19:11:13 | 000,156,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\winsp.ime
[2008/04/13 19:11:12 | 000,156,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\winpy.ime
[2008/04/13 19:11:09 | 000,072,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wingb.ime
[2008/04/13 19:11:01 | 000,076,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\uniime.dll
[2008/04/13 19:09:55 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdpash.dll
[2008/04/13 19:09:55 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdnepr.dll
[2008/04/13 19:09:55 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdiultn.dll
[2008/04/13 19:09:55 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdbhc.dll
[2008/04/13 19:09:44 | 000,811,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\imjp81k.dll
[2008/04/13 19:09:44 | 000,340,023 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\imjp81.ime
[2008/04/13 19:09:33 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\fxsres.dll
[2008/04/13 13:56:49 | 000,030,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\rndismpx.sys
[2008/04/13 13:45:34 | 000,046,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\irbus.sys
[2008/04/13 13:45:12 | 000,060,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\USBAUDIO.sys
[2008/04/13 13:43:55 | 000,012,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\mutohpen.sys
[2008/04/13 13:43:32 | 000,009,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\comsdupd.exe
[2008/04/13 13:40:03 | 000,011,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\miniime.tpl
[2008/04/13 13:39:47 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mouclass.sys
[2008/04/13 13:36:39 | 000,043,008 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\WINDOWS\System32\drivers\amdagp.sys
[2008/04/13 13:36:39 | 000,040,960 | ---- | M] (Silicon Integrated Systems Corporation) -- C:\WINDOWS\System32\drivers\sisagp.sys
[2008/04/13 13:14:58 | 000,076,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msshavmsg.dll
[2008/04/13 12:39:26 | 000,689,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\xpsp3res.dll
[2008/04/13 12:27:18 | 000,079,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msxml6r.dll
[2008/04/13 11:44:38 | 000,192,085 | ---- | M] () -- C:\Documents and Settings\David\My Documents\35 Programs.odt
[2008/04/13 11:36:05 | 000,144,384 | ---- | M] (Windows ® Server 2003 DDK provider) -- C:\WINDOWS\System32\drivers\hdaudbus.sys
[2008/04/13 11:22:12 | 000,048,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\inetres.dll
[2008/04/08 16:23:08 | 000,106,717 | ---- | M] () -- C:\Documents and Settings\David\My Documents\blender_front_new.odg
[2008/04/08 07:26:02 | 298,557,760 | ---- | M] (Intuit, Inc. ) -- C:\Documents and Settings\David\Desktop\QuickBooksSimpleStartDirect2008.exe
[2008/04/08 07:19:20 | 000,525,072 | ---- | M] () -- C:\Documents and Settings\David\My Documents\Setup_QuickBooks_SimpleStart_Direct_2008.exe
[2008/04/04 09:37:31 | 000,033,114 | ---- | M] () -- C:\Documents and Settings\David\My Documents\blender_front.odt
[2008/04/03 09:13:24 | 000,000,073 | ---- | M] () -- C:\Documents and Settings\David\.gtk-bookmarks
[2008/03/27 09:05:39 | 000,000,043 | ---- | M] () -- C:\WINDOWS\gswin32.ini
[2008/03/27 05:42:41 | 000,026,249 | ---- | M] () -- C:\Documents and Settings\David\My Documents\graphic_front.gif.cdx
[2008/03/27 05:22:59 | 000,002,447 | ---- | M] () -- C:\Documents and Settings\David\Desktop\CDInterface Studio 2.lnk
[2008/03/26 11:25:30 | 000,000,487 | ---- | M] () -- C:\Documents and Settings\David\jdraw.v1.1.5.dat
[2008/03/05 10:03:54 | 000,479,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_0.dll
[2008/03/05 10:03:20 | 000,238,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_0.dll
[2008/03/05 10:00:06 | 000,025,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\X3DAudio1_3.dll
[2008/03/05 09:56:58 | 003,786,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_37.dll
[2008/03/05 09:56:58 | 001,420,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_37.dll
[2008/02/29 12:03:18 | 000,082,719 | ---- | M] () -- C:\Documents and Settings\David\My Documents\zanox1.gif
[2008/02/26 08:21:22 | 000,832,896 | ---- | M] (Indigo Rose Corporation) -- C:\WINDOWS\System32\ButtonThumbnailExtractor.dll
[2008/02/25 05:44:02 | 000,568,712 | ---- | M] () -- C:\Documents and Settings\David\My Documents\WMIDiag.exe
[2008/02/11 09:26:02 | 000,057,344 | ---- | M] (Marvell Semiconductor, Inc.) -- C:\WINDOWS\System32\CP1215EWS.dll
[2008/02/07 04:05:18 | 000,163,840 | ---- | M] () -- C:\WINDOWS\System32\hppatusg01.dll
[2008/02/05 17:07:36 | 000,462,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_37.dll
[2008/02/04 13:37:28 | 000,008,289 | ---- | M] () -- C:\Documents and Settings\David\My Documents\Keep clear.odt
[2008/01/26 09:29:16 | 000,516,096 | ---- | M] () -- C:\WINDOWS\System32\rtl4.dat
[2008/01/26 09:29:16 | 000,434,176 | ---- | M] (Gabest) -- C:\WINDOWS\System32\rtl2.dat
[2008/01/26 09:29:16 | 000,016,384 | ---- | M] () -- C:\WINDOWS\System32\rtl3.dat
[2008/01/20 13:36:56 | 000,035,840 | ---- | M] (Sax software company) -- C:\WINDOWS\System32\drivers\SAXNDIS.sys
[2008/01/17 08:04:26 | 000,000,666 | ---- | M] () -- C:\Documents and Settings\David\Desktop\CDox.lnk
[2008/01/17 08:04:11 | 000,992,466 | ---- | M] () -- C:\Documents and Settings\David\My Documents\cdox1.0.3.exe
[2008/01/17 07:49:55 | 000,000,689 | ---- | M] () -- C:\Documents and Settings\David\Desktop\MediaFood Designer Tools.lnk
[2008/01/15 04:54:42 | 000,010,537 | ---- | M] () -- C:\WINDOWS\System32\drivers\COH_Mon.cat
[2008/01/15 00:28:00 | 000,000,706 | ---- | M] () -- C:\WINDOWS\System32\drivers\COH_Mon.inf
[2008/01/14 10:54:42 | 224,840,964 | ---- | M] () -- C:\Documents and Settings\David\My Documents\OOo_2.3.1_071211_Win32Intel_install.exe
[2008/01/12 13:32:00 | 000,023,904 | ---- | M] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\COH_Mon.sys
[2008/01/04 10:25:21 | 001,268,370 | ---- | M] () -- C:\Documents and Settings\David\My Documents\personal.odg
[2008/01/04 10:13:22 | 000,609,153 | ---- | M] () -- C:\Documents and Settings\David\My Documents\personal02.jpg
[2008/01/04 10:11:51 | 000,613,226 | ---- | M] () -- C:\Documents and Settings\David\My Documents\personal01.jpg
[2007/12/21 11:44:45 | 000,626,993 | ---- | M] () -- C:\Documents and Settings\David\My Documents\tran_hearing2.jpg
[2007/12/21 11:42:40 | 001,374,805 | ---- | M] () -- C:\Documents and Settings\David\My Documents\tran_hearing1.jpg
[2007/12/20 12:16:39 | 000,013,283 | ---- | M] () -- C:\Documents and Settings\David\My Documents\ebaybuyers_note.odt
[2007/12/19 03:31:06 | 001,008,261 | ---- | M] () -- C:\Documents and Settings\David\My Documents\atti_sick02.jpg
[2007/12/19 03:24:37 | 000,848,523 | ---- | M] () -- C:\Documents and Settings\David\My Documents\atti_sick01.jpg
[2007/12/14 07:06:06 | 000,121,440 | ---- | M] (Intel Corporation) -- C:\WINDOWS\System32\e1000msg.dll
[2007/12/11 01:55:40 | 002,359,296 | ---- | M] (OpenOffice.org) -- C:\Documents and Settings\David\Desktop\soffice.exe
[2007/11/30 07:08:27 | 000,421,987 | ---- | M] () -- C:\Documents and Settings\David\My Documents\pol_31_10_07.jpg
[2007/11/30 07:02:16 | 000,447,228 | ---- | M] () -- C:\Documents and Settings\David\.fonts.cache-1
[2007/11/30 07:01:16 | 000,000,750 | ---- | M] () -- C:\Documents and Settings\David\Desktop\GIMPshop.lnk
[2007/11/30 05:24:48 | 006,094,818 | ---- | M] () -- C:\Documents and Settings\David\My Documents\poliz_31_10_07.jpg
[2007/11/23 06:52:33 | 000,012,076 | ---- | M] () -- C:\Documents and Settings\David\My Documents\jenny konto antwort.odt
[2007/11/02 07:46:43 | 019,728,820 | ---- | M] () -- C:\Documents and Settings\David\My Documents\setup.zip
[2007/10/30 08:46:16 | 000,002,905 | ---- | M] () -- C:\WINDOWS\System32\e1e5132.din
[2007/10/29 04:11:58 | 000,053,248 | ---- | M] (Marvell Semiconductor, Inc.) -- C:\WINDOWS\System32\HPEWSMX.dll
[2007/10/22 09:21:37 | 000,011,264 | ---- | M] () -- C:\Documents and Settings\David\My Documents\applie for dayshift.wps
[2007/10/21 21:39:54 | 000,267,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_10.dll
[2007/10/21 21:37:16 | 000,017,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\X3DAudio1_2.dll
[2007/10/15 06:57:37 | 000,013,312 | ---- | M] () -- C:\Documents and Settings\David\My Documents\Statement 15.10.07.wps
[2007/10/13 12:47:31 | 000,010,752 | ---- | M] () -- C:\Documents and Settings\David\My Documents\canan.wps
[2007/10/12 09:14:00 | 003,734,536 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_36.dll
[2007/10/12 09:14:00 | 001,374,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_36.dll
[2007/10/04 07:48:07 | 000,001,745 | ---- | M] () -- C:\Documents and Settings\David\Desktop\Blender.lnk
[2007/10/02 03:56:34 | 000,444,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_36.dll
[2007/09/27 04:51:02 | 000,020,698 | ---- | M] () -- C:\WINDOWS\System32\idxcntrs.ini
[2007/09/27 04:51:02 | 000,004,640 | ---- | M] () -- C:\WINDOWS\System32\idxcntrs.h
[2007/09/27 04:48:48 | 000,030,628 | ---- | M] () -- C:\WINDOWS\System32\gsrvctr.ini
[2007/09/27 04:48:48 | 000,002,590 | ---- | M] () -- C:\WINDOWS\System32\gsrvctr.h
[2007/09/27 04:48:28 | 000,031,698 | ---- | M] () -- C:\WINDOWS\System32\gthrctr.ini
[2007/09/27 04:48:28 | 000,003,100 | ---- | M] () -- C:\WINDOWS\System32\gthrctr.h
[2007/09/21 04:58:39 | 000,000,128 | ---- | M] () -- C:\Documents and Settings\David\Local Settings\Application Data\fusioncache.dat
[2007/09/20 18:14:26 | 001,727,776 | ---- | M] () -- C:\Documents and Settings\David\My Documents\alle_ottosounds.zip
[2007/09/20 18:13:51 | 000,067,849 | ---- | M] () -- C:\Documents and Settings\David\My Documents\ottofont.zip
[2007/09/20 09:37:34 | 000,117,419 | ---- | M] () -- C:\Documents and Settings\David\My Documents\Dafini_Web_Design.pdf
[2007/09/20 08:52:45 | 000,000,867 | ---- | M] () -- C:\lxceinst.000
[2007/09/20 08:52:30 | 000,000,275 | ---- | M] () -- C:\lxcefire.000
[2007/09/20 08:11:13 | 000,014,120 | ---- | M] () -- C:\Documents and Settings\David\My Documents\EMEA Order Status.htm
[2007/09/17 23:43:34 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf
[2007/09/17 22:11:07 | 000,000,630 | ---- | M] () -- C:\Documents and Settings\David\Desktop\PantsOff.lnk
[2007/09/17 02:07:00 | 008,491,008 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcpl.dll
[2007/09/17 02:07:00 | 005,783,040 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nv4_disp.dll
[2007/09/17 02:07:00 | 000,364,544 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvapi.dll
[2007/09/17 02:07:00 | 000,036,864 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcod.dll
[2007/09/16 20:10:36 | 000,356,352 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\NVUNINST.EXE
[2007/09/16 19:07:00 | 006,853,088 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\drivers\nv4_mini.sys
[2007/09/16 19:07:00 | 006,746,112 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvoglnt.dll
[2007/09/16 19:07:00 | 006,344,704 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvdisps.dll
[2007/09/16 19:07:00 | 005,509,120 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvdispsr.dll
[2007/09/16 19:07:00 | 003,629,056 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvvitvsr.dll
[2007/09/16 19:07:00 | 003,551,232 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvvitvs.dll
[2007/09/16 19:07:00 | 003,334,144 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvgames.dll
[2007/09/16 19:07:00 | 003,166,208 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvgamesr.dll
[2007/09/16 19:07:00 | 002,854,912 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvmoblsr.dll
[2007/09/16 19:07:00 | 002,441,216 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwssr.dll
[2007/09/16 19:07:00 | 002,371,584 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwss.dll
[2007/09/16 19:07:00 | 001,150,976 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvmobls.dll
[2007/09/16 19:07:00 | 001,073,152 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcpluir.dll
[2007/09/16 19:07:00 | 000,753,664 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcplui.exe
[2007/09/16 19:07:00 | 000,458,752 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvmccssr.dll
[2007/09/16 19:07:00 | 000,413,696 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcpl.cpl
[2007/09/16 19:07:00 | 000,335,872 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrses.dll
[2007/09/16 19:07:00 | 000,335,872 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsel.dll
[2007/09/16 19:07:00 | 000,327,680 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsfr.dll
[2007/09/16 19:07:00 | 000,327,680 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsesm.dll
[2007/09/16 19:07:00 | 000,327,680 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrshe.dll
[2007/09/16 19:07:00 | 000,327,680 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsar.dll
[2007/09/16 19:07:00 | 000,323,584 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrspt.dll
[2007/09/16 19:07:00 | 000,323,584 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsit.dll
[2007/09/16 19:07:00 | 000,319,488 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsptb.dll
[2007/09/16 19:07:00 | 000,319,488 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsnl.dll
[2007/09/16 19:07:00 | 000,315,392 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsru.dll
[2007/09/16 19:07:00 | 000,315,392 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrshu.dll
[2007/09/16 19:07:00 | 000,311,296 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsde.dll
[2007/09/16 19:07:00 | 000,307,200 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvexpbar.dll
[2007/09/16 19:07:00 | 000,303,104 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrstr.dll
[2007/09/16 19:07:00 | 000,303,104 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrssl.dll
[2007/09/16 19:07:00 | 000,303,104 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsfi.dll
[2007/09/16 19:07:00 | 000,299,008 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrssk.dll
[2007/09/16 19:07:00 | 000,299,008 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsno.dll
[2007/09/16 19:07:00 | 000,294,912 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrssv.dll
[2007/09/16 19:07:00 | 000,294,912 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrspl.dll
[2007/09/16 19:07:00 | 000,294,912 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsda.dll
[2007/09/16 19:07:00 | 000,290,816 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsth.dll
[2007/09/16 19:07:00 | 000,286,720 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrseng.dll
[2007/09/16 19:07:00 | 000,286,720 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrscs.dll
[2007/09/16 19:07:00 | 000,282,624 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsar.dll
[2007/09/16 19:07:00 | 000,282,624 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsfr.dll
[2007/09/16 19:07:00 | 000,282,624 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrses.dll
[2007/09/16 19:07:00 | 000,282,624 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsel.dll
[2007/09/16 19:07:00 | 000,278,528 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrshe.dll
[2007/09/16 19:07:00 | 000,278,528 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsit.dll
[2007/09/16 19:07:00 | 000,278,528 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsde.dll
[2007/09/16 19:07:00 | 000,274,432 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrspt.dll
[2007/09/16 19:07:00 | 000,274,432 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsnl.dll
[2007/09/16 19:07:00 | 000,274,432 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsesm.dll
[2007/09/16 19:07:00 | 000,270,336 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsru.dll
[2007/09/16 19:07:00 | 000,266,240 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsptb.dll
[2007/09/16 19:07:00 | 000,266,240 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsja.dll
[2007/09/16 19:07:00 | 000,258,048 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrstr.dll
[2007/09/16 19:07:00 | 000,258,048 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrssl.dll
[2007/09/16 19:07:00 | 000,258,048 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrssk.dll
[2007/09/16 19:07:00 | 000,258,048 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsko.dll
[2007/09/16 19:07:00 | 000,258,048 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrshu.dll
[2007/09/16 19:07:00 | 000,253,952 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsth.dll
[2007/09/16 19:07:00 | 000,253,952 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrssv.dll
[2007/09/16 19:07:00 | 000,253,952 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrspl.dll
[2007/09/16 19:07:00 | 000,253,952 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsno.dll
[2007/09/16 19:07:00 | 000,253,952 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsda.dll
[2007/09/16 19:07:00 | 000,249,856 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsfi.dll
[2007/09/16 19:07:00 | 000,249,856 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrscs.dll
[2007/09/16 19:07:00 | 000,245,760 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrseng.dll
[2007/09/16 19:07:00 | 000,229,376 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvmccs.dll
[2007/09/16 19:07:00 | 000,225,280 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrszhc.dll
[2007/09/16 19:07:00 | 000,212,992 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsja.dll
[2007/09/16 19:07:00 | 000,196,608 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsko.dll
[2007/09/16 19:07:00 | 000,188,416 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvmccss.dll
[2007/09/16 19:07:00 | 000,167,936 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrszht.dll
[2007/09/16 19:07:00 | 000,163,840 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrszhc.dll
[2007/09/16 19:07:00 | 000,134,270 | ---- | M] () -- C:\WINDOWS\System32\nvapps.nvb
[2007/09/16 19:07:00 | 000,126,976 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrszht.dll
[2007/09/16 19:07:00 | 000,081,920 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwddi.dll
[2007/09/16 19:07:00 | 000,081,920 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvmctray.dll
[2007/09/16 19:07:00 | 000,045,056 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvmccsrs.dll
[2007/09/16 19:07:00 | 000,036,864 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcodins.dll
[2007/09/16 19:07:00 | 000,017,525 | ---- | M] () -- C:\WINDOWS\System32\nvdisp.nvu
[2007/09/16 18:11:14 | 000,138,935 | ---- | M] () -- C:\Documents and Settings\David\My Documents\part244.zip
[2007/09/16 07:55:53 | 000,000,738 | ---- | M] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\Outlook Express.lnk
[2007/09/15 23:33:45 | 000,000,021 | ---- | M] () -- C:\WINDOWS\TemplateWizard.INI
[2007/09/15 16:15:28 | 000,496,085 | ---- | M] () -- C:\Documents and Settings\David\My Documents\Pivot.zip
[2007/09/15 16:10:38 | 002,196,352 | ---- | M] () -- C:\Documents and Settings\David\My Documents\pivot_1404_full.zip
[2007/09/15 15:07:42 | 000,000,102 | ---- | M] () -- C:\Documents and Settings\David\.gtkrc-2.0
[2007/09/15 14:42:17 | 001,502,767 | ---- | M] () -- C:\Documents and Settings\David\My Documents\f4l-0.2.1.tar.bz2
[2007/09/15 13:13:07 | 000,000,738 | ---- | M] () -- C:\Documents and Settings\David\Desktop\Outlook Express.lnk
[2007/09/15 07:42:54 | 000,000,883 | ---- | M] () -- C:\Documents and Settings\David\Desktop\Launch onlineTV 3.lnk
[2007/09/14 21:56:41 | 000,011,229 | ---- | M] () -- C:\Documents and Settings\David\My Documents\Gordon-Regular.zip
[2007/09/14 21:55:40 | 000,011,089 | ---- | M] () -- C:\Documents and Settings\David\My Documents\Gordon.zip
[2007/09/14 16:16:08 | 000,000,814 | ---- | M] () -- C:\Documents and Settings\David\Desktop\Microsoft Works.LNK
[2007/09/14 15:39:28 | 000,003,444 | ---- | M] () -- C:\WINDOWS\System32\OEMINFO.PNF
[2007/09/14 14:52:16 | 000,008,192 | ---- | M] () -- C:\WINDOWS\REGLOCS.OLD
[2007/09/11 06:53:11 | 000,000,061 | ---- | M] () -- C:\WINDOWS\smscfg.ini
[2007/09/11 06:53:06 | 000,000,333 | ---- | M] () -- C:\WINDOWS\System32\$ncsp$.inf
[2007/09/11 06:42:02 | 000,940,794 | ---- | M] () -- C:\WINDOWS\System32\LoopyMusic.wav
[2007/09/11 06:42:02 | 000,146,650 | ---- | M] () -- C:\WINDOWS\System32\BuzzingBee.wav
[2007/09/11 06:23:48 | 000,006,210 | RH-- | M] () -- C:\dell.sdr
[2007/09/11 06:21:32 | 000,006,210 | ---- | M] () -- C:\WINDOWS\System32\drivers\1028_Dell_VOS_VOSTRO_200.mrk
[2007/09/10 00:24:54 | 000,544,768 | ---- | M] (Stardock Corporation) -- C:\WINDOWS\System32\wbocx.ocx
[2007/08/31 11:36:28 | 000,036,864 | ---- | M] (Robdogg Inc.) -- C:\WINDOWS\System32\trayicon_handler.ocx
[2007/08/30 23:52:48 | 000,056,496 | ---- | M] (Stardock.Net, Inc) -- C:\WINDOWS\System32\wbhelp2.dll
[2007/08/30 23:52:48 | 000,033,968 | ---- | M] (Neil Banfield) -- C:\WINDOWS\System32\anim.dll
[2007/08/29 10:06:10 | 000,512,000 | ---- | M] (Marvell Semiconductor, Inc.) -- C:\WINDOWS\System32\HPIPMX.dll
[2007/08/29 10:06:10 | 000,237,568 | ---- | M] (Marvell Semiconductor, Inc.) -- C:\WINDOWS\System32\HPIPMXRes.dll
[2007/08/29 10:06:10 | 000,163,840 | ---- | M] (Marvell Semiconductor, Inc.) -- C:\WINDOWS\System32\CP1215LI.DLL
[2007/08/29 10:06:10 | 000,143,360 | ---- | M] (Marvell Semiconductor, Inc.) -- C:\WINDOWS\System32\CP1215LM.DLL
[2007/08/29 10:06:10 | 000,114,688 | ---- | M] (Marvell Semiconductor, Inc.) -- C:\WINDOWS\System32\HPMCoSetup.dll
[2007/08/29 10:06:10 | 000,106,496 | ---- | M] (Zenographics, Inc.) -- C:\WINDOWS\System32\ZSPOOL.DLL
[2007/08/29 10:06:10 | 000,061,440 | ---- | M] (Zenographics, Inc.) -- C:\WINDOWS\System32\ZIMF.DLL
[2007/08/29 10:06:10 | 000,053,248 | ---- | M] (Zenographics, Inc.) -- C:\WINDOWS\System32\ZTAG.DLL
[2007/08/13 03:36:39 | 000,471,040 | ---- | M] () -- C:\WINDOWS\ssndii.exe
[2007/08/06 19:28:34 | 000,028,272 | ---- | M] (Intel Corporation) -- C:\WINDOWS\System32\NicCo2.dll
[2007/07/30 08:44:36 | 003,518,464 | ---- | M] (Amyuni Technologies
http://www.amyuni.com) -- C:\WINDOWS\System32\cdintf300.dll
[2007/07/19 18:57:12 | 000,267,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_9.dll
[2007/07/19 12:14:42 | 003,727,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_35.dll
[2007/07/19 12:14:42 | 001,358,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_35.dll
[2007/07/19 12:14:42 | 000,444,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_35.dll
[2007/07/12 18:31:54 | 000,765,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\vgx.dll
[2007/06/29 00:24:58 | 000,065,536 | ---- | M] (Apple Inc.) -- C:\WINDOWS\System32\QuickTimeVR.qtx
[2007/06/29 00:24:58 | 000,049,152 | ---- | M] (Apple Inc.) -- C:\WINDOWS\System32\QuickTime.qts
[2007/06/28 08:09:26 | 001,843,200 | ---- | M] (Apache Software Foundation) -- C:\WINDOWS\System32\acXMLParser.dll
[2007/06/26 08:06:22 | 000,066,424 | ---- | M] (Intel Corporation) -- C:\WINDOWS\System32\NicEtCoE.dll
[2007/06/26 08:06:22 | 000,028,536 | ---- | M] (Intel Corporation) -- C:\WINDOWS\System32\NicCo.dll
[2007/06/22 11:59:24 | 000,479,232 | ---- | M] (eMPIA Technology, Inc.) -- C:\WINDOWS\System32\drivers\emBDA.sys
[2007/06/22 11:59:06 | 000,038,656 | ---- | M] (eMPIA Technology, Inc.) -- C:\WINDOWS\System32\drivers\emOEM.sys
[2007/06/22 11:57:22 | 000,106,496 | ---- | M] (eMPIA Technology, Inc.) -- C:\WINDOWS\System32\emPRP.ax
[2007/06/21 00:52:36 | 000,000,974 | ---- | M] () -- C:\WINDOWS\System32\pid.inf
[2007/06/20 14:46:04 | 000,266,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_8.dll
[2007/06/19 15:31:30 | 002,986,038 | ---- | M] () -- C:\WINDOWS\Dell.bmp
[2007/06/13 14:41:46 | 001,822,720 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SkyTel.exe
[2007/06/13 14:41:46 | 000,282,624 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\RTSndMgr.CPL
[2007/06/13 14:41:46 | 000,086,016 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SOUNDMAN.EXE
[2007/06/13 14:41:44 | 009,715,200 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RTLCPL.EXE
[2007/06/13 14:41:44 | 004,403,712 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\drivers\RtkHDAud.sys
[2007/06/13 14:41:44 | 001,191,936 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RtlUpd.exe
[2007/06/13 14:41:40 | 002,162,688 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\MicCal.exe
[2007/06/13 14:41:32 | 000,299,008 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\ALSNDMGR.CPL
[2007/06/13 14:41:30 | 002,808,832 | ---- | M] (RealTek Semicoductor Corp.) -- C:\WINDOWS\ALCWZRD.EXE
[2007/06/13 14:41:30 | 000,069,632 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\ALCMTR.EXE
[2007/05/27 16:08:30 | 000,356,352 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvudisp.exe
[2007/05/18 04:58:36 | 000,122,880 | ---- | M] () -- C:\WINDOWS\System32\FCSFORM.DLL
[2007/05/16 10:45:16 | 003,497,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_34.dll
[2007/05/16 10:45:16 | 001,124,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_34.dll
[2007/05/16 10:45:16 | 000,443,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_34.dll
[2007/05/10 10:25:22 | 000,000,777 | ---- | M] () -- C:\Documents and Settings\David\My Documents\example.htaccess
[2007/04/09 08:23:54 | 000,028,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mdimon.dll
[2007/04/04 12:55:00 | 000,261,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_7.dll
[2007/04/04 12:53:42 | 000,081,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\xinput1_3.dll
[2007/03/30 03:57:02 | 000,787,456 | ---- | M] () -- C:\WINDOWS\System32\BootMan.exe
[2007/03/27 04:45:22 | 000,038,567 | ---- | M] () -- C:\WINDOWS\System32\pcpbios.exe
[2007/03/27 04:45:22 | 000,004,096 | ---- | M] () -- C:\WINDOWS\System32\sysres.dll
[2007/03/22 14:17:04 | 000,035,440 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\FM20ENU.DLL
[2007/03/20 16:22:04 | 000,972,336 | ---- | M] (Nero AG) -- C:\WINDOWS\UNNeroBackItUp.exe
[2007/03/15 10:57:58 | 000,443,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_33.dll
[2007/03/12 10:42:30 | 003,495,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_33.dll
[2007/03/12 10:42:30 | 001,123,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_33.dll
[2007/03/05 06:42:18 | 000,015,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\x3daudio1_1.dll
[2007/02/25 06:10:48 | 000,005,376 | --S- | M] (Gteko Ltd.) -- C:\WINDOWS\System32\drivers\dsunidrv.sys
[2007/02/12 14:39:36 | 001,376,256 | ---- | M] () -- C:\Documents and Settings\David\My Documents\FCSCOMM.DLL
[2007/02/12 14:36:54 | 000,277,784 | ---- | M] (Intel Corporation) -- C:\WINDOWS\System32\drivers\iastor.sys
[2007/01/24 09:27:30 | 000,255,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_6.dll
[2007/01/22 10:06:52 | 000,754,688 | ---- | M] () -- C:\Documents and Settings\David\My Documents\WMIDiag.doc
[2007/01/22 10:04:22 | 000,510,464 | ---- | M] () -- C:\Documents and Settings\David\My Documents\WMIDiag.xls
[2007/01/16 10:34:32 | 004,345,133 | ---- | M] () -- C:\Documents and Settings\David\My Documents\WMIDiag.vbs
[2007/01/01 19:34:22 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2007/01/01 19:11:25 | 000,000,472 | ---- | M] () -- C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job
[2007/01/01 04:42:51 | 000,134,630 | ---- | M] () -- C:\WINDOWS\setupapi.old
[2007/01/01 00:53:23 | 001,768,236 | ---- | M] () -- C:\WINDOWS\System32\Windows6.0-KB942288-v2-x86.msu
[2007/01/01 00:15:39 | 000,647,728 | ---- | M] (Xceed Software Inc. 1-450-442-2626 info@xceedsoft.com www.xceedsoft.com) -- C:\R92578.EXE
[2006/12/31 21:03:02 | 000,000,330 | -H-- | M] () -- C:\WINDOWS\tasks\MP Scheduled Scan.job
[2006/12/31 20:39:21 | 000,000,340 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\fix2.bat
[2006/12/31 20:36:16 | 000,000,715 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\fix1.bat
[2006/12/31 19:45:21 | 000,050,688 | ---- | M] (Atribune.org) -- C:\Documents and Settings\Administrator\Desktop\ATF-Cleaner.exe
[2006/12/31 19:38:45 | 000,157,472 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
[2006/12/31 19:38:45 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
[2006/12/31 19:38:45 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
[2006/12/31 19:38:45 | 000,073,728 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javacpl.cpl
[2006/12/31 19:38:44 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\deployJava1.dll
[2006/12/31 19:14:57 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2006/12/31 19:11:45 | 000,000,880 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2006/12/31 19:11:45 | 000,000,486 | ---- | M] () -- C:\WINDOWS\tasks\1-Click Maintenance.job
[2006/12/31 19:08:53 | 000,004,128 | ---- | M] () -- C:\INFCACHE.1
[2006/12/31 19:04:48 | 000,000,008 | ---- | M] () -- C:\WINDOWS\System32\nvModes.dat
[2006/12/31 19:03:25 | 000,004,161 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI
[2006/12/31 19:01:49 | 000,000,358 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf
[2006/12/15 10:54:30 | 000,061,440 | ---- | M] (eMPIA Technology, Inc.) -- C:\WINDOWS\emMON.exe
[2006/12/08 06:02:00 | 000,251,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_5.dll
[25 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\*.tmp files -> C:\*.tmp -> ]
========== Files Created - No Company Name ==========
[2010/12/24 00:37:42 | 000,000,340 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\fix2.bat
[2010/12/24 00:35:53 | 000,000,715 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\fix1.bat
[2010/12/23 12:43:13 | 003,997,850 | R--- | C] () -- C:\Documents and Settings\Administrator\Desktop\ComboFix.exe
[2010/12/23 12:41:04 | 000,000,721 | ---- | C] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\FlashPeak SlimBrowser.lnk
[2010/12/23 10:50:42 | 000,000,210 | ---- | C] () -- C:\Boot.bak
[2010/12/23 10:50:39 | 000,260,272 | RHS- | C] () -- C:\cmldr
[2010/12/23 10:47:01 | 000,256,512 | ---- | C] () -- C:\WINDOWS\PEV.exe
[2010/12/23 10:47:01 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
[2010/12/23 10:47:01 | 000,089,088 | ---- | C] () -- C:\WINDOWS\MBR.exe
[2010/12/23 10:47:01 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
[2010/12/23 10:47:01 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
[2010/12/23 10:37:47 | 000,000,715 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\FlashPeak SlimBrowser.lnk
[2010/12/23 10:29:39 | 000,000,000 | ---- | C] () -- C:\autoexec.bat
[2010/12/23 10:24:43 | 000,000,330 | -H-- | C] () -- C:\WINDOWS\tasks\MP Scheduled Scan.job
[2010/12/16 20:57:23 | 003,992,266 | ---- | C] () -- C:\Documents and Settings\David\Desktop\ComboFix.exe
[2010/12/14 03:22:24 | 000,296,448 | ---- | C] () -- C:\Documents and Settings\David\My Documents\gmer.exe
[2010/12/14 02:53:10 | 000,050,477 | ---- | C] () -- C:\Documents and Settings\David\Desktop\Defogger.exe
[2010/12/10 12:10:25 | 097,909,064 | ---- | C] () -- C:\Documents and Settings\David\Desktop\Norman_Malware_Cleaner.exe
[2010/12/10 11:35:15 | 000,507,360 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\sdsetup_aff.exe
[2010/12/10 09:28:07 | 000,284,000 | ---- | C] () -- C:\Documents and Settings\Administrator\My Documents\Capture1.gif
[2010/12/10 07:28:41 | 000,001,598 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\True Sword.lnk
[2010/12/10 07:09:56 | 000,354,396 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\SysProt.zip
[2010/12/09 03:30:35 | 195,674,112 | ---- | C] () -- C:\Documents and Settings\Administrator\My Documents\'s.BootCD.10.0.iso
[2010/12/09 03:04:07 | 000,660,752 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\iExplore.exe
[2010/12/09 02:59:32 | 000,000,136 | ---- | C] () -- C:\Documents and Settings\Administrator\Local Settings\Application Data\fusioncache.dat
[2010/12/09 02:58:38 | 000,000,782 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\Windows Media Player.lnk
[2010/12/09 02:23:24 | 001,230,779 | ---- | C] () -- C:\Documents and Settings\David\Desktop\tdsskiller.zip
[2010/12/09 01:37:43 | 000,000,472 | ---- | C] () -- C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job
[2010/12/09 01:20:14 | 000,000,885 | ---- | C] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\Ad-Aware.lnk
[2010/12/09 00:35:09 | 000,009,830 | ---- | C] () -- C:\Documents and Settings\David\Desktop\exefix.reg
[2010/12/08 12:05:19 | 000,732,846 | ---- | C] () -- C:\WINDOWS\umcat_01.db
[2010/12/08 11:22:12 | 000,001,973 | ---- | C] () -- C:\Documents and Settings\David\Desktop\SpyHunter.lnk
[2010/12/08 10:49:37 | 000,002,600 | ---- | C] () -- C:\Documents and Settings\David\Desktop\xp_exe_fix.reg
[2010/12/08 10:49:27 | 000,000,745 | ---- | C] () -- C:\Documents and Settings\David\Desktop\xp_exe_fix.zip
[2010/12/08 08:51:05 | 000,296,448 | ---- | C] () -- C:\Documents and Settings\David\Desktop\gmer.exe
[2010/12/08 08:50:27 | 000,288,107 | ---- | C] () -- C:\Documents and Settings\David\Desktop\gmer.zip
[2010/12/08 08:48:39 | 000,624,128 | ---- | C] () -- C:\Documents and Settings\David\Desktop\dds.scr
[2010/12/08 08:38:32 | 000,000,128 | ---- | C] () -- C:\Documents and Settings\Guest\Local Settings\Application Data\fusioncache.dat
[2010/12/08 08:24:52 | 000,000,040 | ---- | C] () -- C:\Documents and Settings\David\defogger_reenable
[2010/12/08 05:12:26 | 000,000,782 | ---- | C] () -- C:\Documents and Settings\Guest\Desktop\Windows Media Player.lnk
[2010/12/08 05:12:17 | 000,001,791 | ---- | C] () -- C:\Documents and Settings\Guest\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2010/12/08 05:12:16 | 000,000,815 | ---- | C] () -- C:\Documents and Settings\Guest\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2010/12/08 05:12:16 | 000,000,079 | ---- | C] () -- C:\Documents and Settings\Guest\Application Data\Microsoft\Internet Explorer\Quick Launch\Show Desktop.scf
[2010/12/08 05:06:48 | 000,000,951 | ---- | C] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\Spybot - Search & Destroy.lnk
[2010/12/08 05:06:48 | 000,000,933 | ---- | C] () -- C:\Documents and Settings\David\Desktop\Spybot - Search & Destroy.lnk
[2010/12/08 04:46:01 | 000,507,360 | ---- | C] () -- C:\Documents and Settings\David\Desktop\sdsetup_aff.exe
[2010/12/08 04:32:56 | 000,000,490 | -H-- | C] () -- C:\WINDOWS\tasks\Norton Security Scan for Administrator.job
[2010/12/08 04:08:17 | 000,000,184 | ---- | C] () -- C:\Documents and Settings\David\Desktop\NPE.ctl
[2010/12/08 04:08:13 | 005,716,848 | ---- | C] () -- C:\Documents and Settings\David\Desktop\NPE.exe
[2010/12/08 03:35:06 | 000,000,329 | ---- | C] () -- C:\Documents and Settings\David\Desktop\fix.reg
[2010/12/08 03:34:58 | 000,000,349 | ---- | C] () -- C:\Documents and Settings\David\fix.reg
[2010/12/08 03:15:25 | 000,660,752 | ---- | C] () -- C:\Documents and Settings\David\Desktop\iExplore.exe
[2010/12/08 03:14:17 | 000,660,752 | ---- | C] () -- C:\Documents and Settings\David\Desktop\rkill.scr
[2010/12/08 03:12:37 | 000,660,752 | ---- | C] () -- C:\Documents and Settings\David\Desktop\rkill.exe
[2010/12/08 03:04:42 | 000,364,032 | ---- | C] () -- C:\Documents and Settings\David\Desktop\rkill.com
[2010/12/02 06:24:03 | 000,018,274 | ---- | C] () -- C:\Documents and Settings\David\My Documents\care_comm_02_12_10.odt
[2010/11/19 16:08:14 | 000,597,503 | ---- | C] () -- C:\Documents and Settings\David\Desktop\downloadhelper-4.8.xpi.zip
[2010/11/19 16:07:47 | 006,198,784 | ---- | C] () -- C:\Documents and Settings\David\Desktop\Softonic-de3.exe
[2010/11/19 16:07:47 | 000,597,503 | ---- | C] () -- C:\Documents and Settings\David\Desktop\downloadhelper-4.8.xpi
[2010/11/16 10:56:13 | 000,000,038 | ---- | C] () -- C:\WINDOWS\AviSplitter.INI
[2010/11/16 03:13:17 | 000,000,625 | ---- | C] () -- C:\Documents and Settings\David\Desktop\Shortcut to webid.pdf.lnk
[2010/11/07 14:29:06 | 000,000,167 | ---- | C] () -- C:\Documents and Settings\David\udownload.dat
[2010/11/07 05:48:21 | 000,001,546 | ---- | C] () -- C:\Documents and Settings\David\Desktop\Picture To Icon.lnk
[2010/11/07 05:48:21 | 000,000,022 | ---- | C] () -- C:\WINDOWS\System32\msxml.p2i
[2010/11/07 05:48:21 | 000,000,022 | ---- | C] () -- C:\WINDOWS\msxml.p2i
[2010/11/02 11:47:16 | 035,758,536 | ---- | C] () -- C:\Documents and Settings\David\mrt.exe
[2010/10/23 11:30:01 | 000,151,566 | ---- | C] () -- C:\WINDOWS\System32\UninstIPP.isu
[2010/10/23 11:30:01 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\IPPCPUID.DLL
[2010/10/14 08:21:36 | 000,000,486 | ---- | C] () -- C:\WINDOWS\tasks\1-Click Maintenance.job
[2010/10/06 13:26:19 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_ccdcmb_01009.Wdf
[2010/10/06 13:26:14 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\MsftWdf_Kernel_01009_Coinstaller_Critical.Wdf
[2010/10/05 07:09:56 | 000,010,508 | ---- | C] () -- C:\Documents and Settings\David\My Documents\cmykVerticalTest.pdf
[2010/09/30 23:50:46 | 000,000,450 | ---- | C] () -- C:\Documents and Settings\David\Desktop\Shortcut to Jewel Covers.lnk
[2010/09/28 03:04:50 | 000,001,475 | ---- | C] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\eBay Turbo Lister 2.lnk
[2010/09/24 07:46:50 | 000,000,472 | ---- | C] () -- C:\Documents and Settings\David\results.txt
[2010/09/24 07:45:32 | 000,376,832 | ---- | C] () -- C:\WINDOWS\System32\AegisI5Installer.exe
[2010/09/23 05:45:02 | 000,451,072 | ---- | C] () -- C:\WINDOWS\System32\ISSRemoveSP.exe
[2010/09/22 13:39:09 | 000,001,904 | ---- | C] () -- C:\WINDOWS\System32\SetupBD.din
[2010/09/22 12:39:40 | 000,134,630 | ---- | C] () -- C:\WINDOWS\setupapi.old
[2010/09/22 10:38:37 | 000,017,443 | ---- | C] () -- C:\Documents and Settings\David\activity.txt
[2010/09/21 18:30:07 | 000,001,409 | ---- | C] () -- C:\Documents and Settings\David\Desktop\truePlay.lnk
[2010/09/21 18:15:59 | 000,001,418 | ---- | C] () -- C:\Documents and Settings\David\Desktop\trueSpace7.61 Beta 8 Standalone.lnk
[2010/09/21 18:13:41 | 000,000,819 | ---- | C] () -- C:\WINDOWS\System32\regpackages.bat
[2010/09/21 18:12:47 | 000,000,065 | ---- | C] () -- C:\WINDOWS\Caligari.ini
[2010/09/20 17:31:02 | 000,048,439 | ---- | C] () -- C:\Documents and Settings\David\My Documents\kitchen_01.png
[2010/09/13 16:16:17 | 000,000,000 | -H-- | C] () -- C:\Documents and Settings\David\My Documents\1255.mpg.dls.bak
[2010/09/13 16:08:24 | 000,001,978 | ---- | C] () -- C:\Documents and Settings\David\Desktop\Media Player Classic - Home Cinema.lnk
[2010/09/12 14:40:20 | 000,651,264 | ---- | C] () -- C:\WINDOWS\System32\libeay32.dll
[2010/09/12 14:40:20 | 000,283,904 | ---- | C] () -- C:\WINDOWS\System32\drivers\ar5523.sys
[2010/09/12 14:40:20 | 000,143,632 | ---- | C] () -- C:\WINDOWS\System32\drivers\ar5523.bin
[2010/09/12 14:40:19 | 000,147,456 | ---- | C] () -- C:\WINDOWS\System32\ssleay32.dll
[2010/09/12 14:40:19 | 000,114,688 | ---- | C] () -- C:\WINDOWS\System32\AegisI2.exe
[2010/09/12 14:40:19 | 000,110,592 | ---- | C] () -- C:\WINDOWS\System32\AegisI5.exe
[2010/09/12 14:40:19 | 000,036,864 | ---- | C] () -- C:\WINDOWS\System32\acs.exe
[2010/09/12 14:40:19 | 000,002,655 | ---- | C] () -- C:\WINDOWS\System32\arccsel.dat
[2010/09/12 14:40:19 | 000,000,967 | ---- | C] () -- C:\WINDOWS\System32\acs.pif
[2010/09/12 14:01:36 | 011,630,887 | ---- | C] () -- C:\Documents and Settings\David\My Documents\HA311v12.zip
[2010/09/11 06:46:40 | 000,023,392 | ---- | C] () -- C:\WINDOWS\System32\nscompat.tlb
[2010/09/11 06:46:40 | 000,016,832 | ---- | C] () -- C:\WINDOWS\System32\amcompat.tlb
[2010/09/11 06:45:02 | 000,356,856 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\FontCache3.0.0.0.dat
[2010/09/10 12:36:38 | 000,000,474 | -H-- | C] () -- C:\WINDOWS\tasks\Norton Security Scan for David.job
[2010/09/10 12:36:31 | 000,000,172 | ---- | C] () -- C:\WINDOWS\System32\drivers\NSS\0207030.022\isolate.ini
[2010/09/10 09:09:01 | 017,267,848 | ---- | C] () -- C:\Documents and Settings\David\My Documents\R158511.exe
[2010/09/10 07:59:17 | 000,212,023 | ---- | C] () -- C:\Documents and Settings\David\My Documents\YourBTbill_30082010.pdf
[2010/09/10 07:43:25 | 000,075,927 | ---- | C] () -- C:\Documents and Settings\David\My Documents\ROWAN_JM-GF-Colour7-counc_tax-5035-OUTPUT_0370_001.pdf
[2010/09/09 10:35:00 | 000,082,704 | ---- | C] () -- C:\Documents and Settings\David\My Documents\ROWAN_JM-GF-Colour7-counc_tax-5035-OUTPUT_0368_001.pdf
[2010/09/08 11:30:55 | 000,014,283 | ---- | C] () -- C:\Documents and Settings\David\My Documents\bcw1.odt
[2010/09/08 11:30:42 | 000,016,896 | ---- | C] () -- C:\Documents and Settings\David\My Documents\talktalk2.doc
[2010/09/08 11:12:26 | 000,015,360 | ---- | C] () -- C:\Documents and Settings\David\My Documents\talktalk.doc
[2010/07/09 03:09:37 | 000,013,252 | ---- | C] () -- C:\Documents and Settings\David\My Documents\g4_docu.odt
[2010/07/02 09:22:04 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\UMDF\Msft_User_PCCSWpdDriver_01_05_00.Wdf
[2010/07/02 09:21:27 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_05_00.Wdf
[2010/07/02 07:45:01 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\UMDF\Msft_User_WpdMtpDr_01_00_00.Wdf
[2010/07/02 07:44:47 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_ccdcmb_01007.Wdf
[2010/07/02 07:44:44 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\MsftWdf_Kernel_01007_Coinstaller_Critical.Wdf
[2010/07/02 06:53:28 | 000,001,876 | ---- | C] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\Nokia Music.lnk
[2010/06/11 05:07:17 | 000,016,382 | ---- | C] () -- C:\WINDOWS\System32\drivers\merlinC.rom
[2010/06/07 09:15:14 | 000,019,724 | ---- | C] () -- C:\Documents and Settings\David\My Documents\morrisons.odt
[2010/05/27 04:55:49 | 000,103,176 | ---- | C] () -- C:\Documents and Settings\David\Local Settings\Application Data\c4u.log
[2010/05/27 04:55:27 | 000,000,177 | ---- | C] () -- C:\Documents and Settings\David\Local Settings\Application Data\LaunchHomeCenter.log
[2010/05/27 04:05:48 | 000,000,890 | ---- | C] () -- C:\WINDOWS\System32\InstallUtil.InstallLog
[2010/05/27 04:00:15 | 000,057,710 | ---- | C] () -- C:\Documents and Settings\David\Local Settings\Application Data\installer.log
[2010/05/27 03:14:20 | 000,001,668 | ---- | C] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\3Connect.lnk
[2010/05/27 03:13:07 | 000,071,259 | ---- | C] () -- C:\WINDOWS\Huawei ModemsUninstall.exe
[2010/05/27 03:12:29 | 000,010,240 | ---- | C] () -- C:\WINDOWS\System32\drivers\mdvrmng.sys
[2010/05/24 09:55:37 | 000,001,047 | ---- | C] () -- C:\Documents and Settings\David\Desktop\RadioSure.lnk
[2010/04/25 11:08:04 | 000,000,793 | ---- | C] () -- C:\Documents and Settings\David\Desktop\Hello Engines! Standard 6.lnk
[2010/04/11 14:15:28 | 000,001,565 | ---- | C] () -- C:\Documents and Settings\David\Desktop\IrfanView Thumbnails.lnk
[2010/04/11 14:15:28 | 000,000,685 | ---- | C] () -- C:\Documents and Settings\David\Desktop\IrfanView.lnk
[2010/04/08 04:21:41 | 000,134,270 | ---- | C] () -- C:\WINDOWS\System32\nvapps.nvb
[2010/03/31 08:22:35 | 000,000,008 | ---- | C] () -- C:\Documents and Settings\David\Desktop\New Rich Text Document.rtf
[2010/03/31 06:15:23 | 000,000,720 | ---- | C] () -- C:\Documents and Settings\David\Desktop\Audiobook Cutter FE.lnk
[2010/03/04 09:32:17 | 000,001,476 | ---- | C] () -- C:\Documents and Settings\David\Desktop\TONG!.lnk
[2010/03/04 09:04:40 | 000,001,848 | ---- | C] () -- C:\Documents and Settings\David\Desktop\Secret Maryo Chronicles.lnk
[2010/03/04 08:47:15 | 000,001,681 | ---- | C] () -- C:\Documents and Settings\David\Desktop\Bubble Train.lnk
[2010/02/28 08:52:54 | 008,118,438 | ---- | C] () -- C:\Documents and Settings\David\My Documents\veetle-0.9.16.exe
[2010/02/22 10:12:20 | 000,029,921 | ---- | C] () -- C:\Documents and Settings\David\My Documents\astrid_gov_02_10.odt
[2010/02/05 03:12:04 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2010/02/05 03:10:18 | 000,002,370 | ---- | C] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\Nero StartSmart Essentials.lnk
[2010/02/05 03:10:18 | 000,002,272 | ---- | C] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\Nero Home Essentials SE.lnk
[2010/02/05 03:08:30 | 000,001,024 | ---- | C] () -- C:\Documents and Settings\David\.rnd
[2010/01/27 06:00:53 | 558,369,298 | ---- | C] () -- C:\Documents and Settings\David\My Documents\OOo_3.1.1_090909_Win32Intel_install_en-US_de_hu_it_fr.exe
[2010/01/17 12:00:43 | 000,000,884 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2010/01/17 12:00:43 | 000,000,880 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2010/01/17 11:55:45 | 000,001,791 | ---- | C] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2010/01/14 06:09:28 | 000,011,773 | ---- | C] () -- C:\Documents and Settings\David\My Documents\post_office_monthly.odt
[2010/01/13 16:12:26 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\lxcevs.dll
[2010/01/13 16:12:25 | 000,001,552 | ---- | C] () -- C:\WINDOWS\System32\lxce.loc
[2010/01/13 16:00:24 | 000,011,141 | ---- | C] () -- C:\WINDOWS\System32\LexFiles.ulf
[2010/01/13 07:42:20 | 000,607,857 | ---- | C] () -- C:\Documents and Settings\David\My Documents\BX-6VP~1.PDF
[2010/01/13 07:42:14 | 000,556,639 | ---- | C] () -- C:\Documents and Settings\David\My Documents\bx6vp_1.exe
[2010/01/13 07:40:55 | 000,654,529 | ---- | C] () -- C:\Documents and Settings\David\My Documents\BX-6SP2.PDF
[2010/01/13 07:40:05 | 000,591,291 | ---- | C] () -- C:\Documents and Settings\David\My Documents\bx6sp2.exe
[2010/01/06 07:03:18 | 000,000,648 | ---- | C] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\LingoPad.lnk
[2009/12/31 04:28:13 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2009/12/27 17:00:48 | 000,114,243 | ---- | C] () -- C:\WINDOWS\System32\drivers\klin.dat
[2009/12/27 17:00:48 | 000,097,859 | ---- | C] () -- C:\WINDOWS\System32\drivers\klick.dat
[2009/12/19 09:16:15 | 000,000,041 | ---- | C] () -- C:\WLANCUGINA.TEXT
[2009/12/19 09:06:43 | 000,000,020 | ---- | C] () -- C:\GINA.TEXT
[2009/11/27 07:23:59 | 000,000,685 | ---- | C] () -- C:\Documents and Settings\David\Desktop\Simpo PDF Creator.lnk
[2009/11/27 04:57:10 | 000,000,730 | ---- | C] () -- C:\Documents and Settings\David\Desktop\Simpo PDF Merge & Split.lnk
[2009/11/27 04:28:47 | 000,105,472 | ---- | C] () -- C:\WINDOWS\PreConvert.dll
[2009/11/21 14:14:16 | 000,000,746 | ---- | C] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\Dev-PHP.lnk
[2009/11/05 07:11:15 | 002,270,797 | ---- | C] () -- C:\Documents and Settings\David\My Documents\ADSL-8000.pdf
[2009/11/04 12:37:22 | 000,000,685 | ---- | C] () -- C:\Documents and Settings\David\Desktop\Free CD Ripper.lnk
[2009/11/04 07:21:32 | 000,022,552 | ---- | C] () -- C:\Documents and Settings\David\My Documents\claimform.pdf
[2009/10/19 03:43:08 | 000,001,502 | ---- | C] () -- C:\Documents and Settings\David\Desktop\blinkx beat.lnk
[2009/10/19 03:42:47 | 000,001,613 | ---- | C] () -- C:\Documents and Settings\David\Desktop\Free Dolphins Screensaver.lnk
[2009/10/19 03:42:47 | 000,001,611 | ---- | C] () -- C:\Documents and Settings\David\Desktop\Free Whales ScreenSaver.lnk
[2009/10/19 03:42:47 | 000,001,609 | ---- | C] () -- C:\Documents and Settings\David\Desktop\Free Animated Desktop Wallpaper.lnk
[2009/10/07 03:54:06 | 000,000,851 | ---- | C] () -- C:\Documents and Settings\David\Desktop\Format Factory.lnk
[2009/10/07 03:52:13 | 000,000,705 | ---- | C] () -- C:\Documents and Settings\David\Desktop\Extra Video Creator.lnk
[2009/10/05 15:33:39 | 000,001,174 | ---- | C] () -- C:\WINDOWS\mozver.dat
[2009/10/05 01:50:29 | 000,001,860 | ---- | C] () -- C:\Documents and Settings\David\Desktop\Order Autoplay Menu Designer Online.lnk
[2009/10/05 01:50:29 | 000,000,891 | ---- | C] () -- C:\Documents and Settings\David\Desktop\Autoplay Menu Designer.lnk
[2009/09/25 02:20:52 | 000,000,404 | ---- | C] () -- C:\Documents and Settings\David\Desktop\eBay.lnk
[2009/09/25 02:20:52 | 000,000,404 | ---- | C] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\eBay.lnk
[2009/09/09 14:01:40 | 000,027,675 | ---- | C] () -- C:\WINDOWS\System32\drivers\klopp.dat
[2009/08/21 08:16:40 | 000,000,410 | -H-- | C] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{9453D5F3-28BC-47B0-BFC1-2C8D7B24ECB1}.job
[2009/08/21 07:52:09 | 000,009,563 | ---- | C] () -- C:\Documents and Settings\David\My Documents\holidaypark refund 1000.00.odt
[2009/08/18 00:35:20 | 000,001,952 | ---- | C] () -- C:\WINDOWS\System32\objsafe.tlb
[2009/08/14 05:05:24 | 000,083,343 | ---- | C] () -- C:\Documents and Settings\David\My Documents\Registration of managers of care at home services.mht
[2009/08/13 00:49:36 | 000,001,577 | ---- | C] () -- C:\Documents and Settings\David\Desktop\DVD Flick.lnk
[2009/08/03 09:07:42 | 000,403,816 | ---- | C] () -- C:\WINDOWS\System32\OGACheckControl.dll
[2009/08/03 09:07:42 | 000,230,768 | ---- | C] () -- C:\WINDOWS\System32\OGAEXEC.exe
[2009/07/28 18:32:42 | 000,009,543 | ---- | C] () -- C:\Documents and Settings\David\My Documents\raten.ods
[2009/07/24 04:14:57 | 000,000,417 | ---- | C] () -- C:\Documents and Settings\David\Desktop\TalkTalk Connect & Go V6.lnk
[2009/07/14 09:55:37 | 099,550,188 | ---- | C] () -- C:\Documents and Settings\David\My Documents\regedit_reset.reg
[2009/07/13 07:22:14 | 000,061,440 | ---- | C] () -- C:\WINDOWS\System32\ZDTRLib.DLL
[2009/07/13 07:22:14 | 000,057,344 | ---- | C] () -- C:\WINDOWS\System32\ZD12APP.dll
[2009/07/13 07:22:14 | 000,024,576 | ---- | C] () -- C:\WINDOWS\System32\ZyDelReg.exe
[2009/07/13 07:22:14 | 000,011,776 | ---- | C] () -- C:\WINDOWS\System32\InsDrvZD.dll
[2009/06/16 09:05:28 | 000,000,796 | ---- | C] () -- C:\Documents and Settings\David\Desktop\Iconomize.lnk
[2009/06/11 12:51:36 | 000,117,562 | ---- | C] () -- C:\lxceunst.csv
[2009/06/11 12:51:36 | 000,049,254 | ---- | C] () -- C:\lxceunst.000
[2009/05/29 17:42:20 | 000,309,248 | ---- | C] () -- C:\WINDOWS\System32\sqlite36_engine.dll
[2009/05/21 04:32:21 | 000,000,687 | ---- | C] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\Dictionary.lnk
[2009/05/21 04:31:48 | 000,000,687 | ---- | C] () -- C:\Documents and Settings\David\Desktop\Dictionary.lnk
[2009/05/11 12:47:43 | 000,009,839 | ---- | C] () -- C:\Documents and Settings\David\My Documents\vollmacht doris amberg 11.05.09.odt
[2009/05/11 12:32:51 | 000,009,609 | ---- | C] () -- C:\Documents and Settings\David\My Documents\Fr. Cremer Sozi amt 11.05.09.odt
[2009/04/23 03:05:05 | 000,000,985 | ---- | C] () -- C:\Documents and Settings\David\Desktop\Wondershare DVD to Flash Converter.lnk
[2009/04/23 03:05:05 | 000,000,935 | ---- | C] () -- C:\Documents and Settings\David\Desktop\Wondershare Navigator.lnk
[2009/04/22 03:13:18 | 000,001,706 | ---- | C] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\Zoner Photo Studio 11.lnk
[2009/04/21 03:09:23 | 000,017,920 | ---- | C] () -- C:\Documents and Settings\David\My Documents\TENANCY APPLICATION FORM.doc
[2009/04/20 05:38:20 | 000,000,064 | ---- | C] () -- C:\WINDOWS\System32\Wucom.ucs
[2009/04/20 05:38:17 | 000,000,126 | ---- | C] () -- C:\WINDOWS\Compall.INI
[2009/04/20 05:33:52 | 000,000,009 | ---- | C] () -- C:\WINDOWS\Convsn.d11
[2009/04/20 03:43:42 | 000,000,008 | ---- | C] () -- C:\WINDOWS\System32\nvModes.dat
[2009/04/19 15:12:19 | 000,162,304 | ---- | C] () -- C:\UNWISE.EXE
[2009/04/19 15:12:19 | 000,006,558 | ---- | C] () -- C:\UNWISE.INI
[2009/04/03 08:12:55 | 000,000,794 | ---- | C] () -- C:\Documents and Settings\David\Desktop\3D Covers Extreme.lnk
[2009/03/25 16:00:05 | 000,013,959 | ---- | C] () -- C:\Documents and Settings\David\My Documents\wirtz.odt
[2009/03/25 07:20:21 | 000,014,057 | ---- | C] () -- C:\Documents and Settings\David\My Documents\arbeitsagentur_david_jun.odt
[2009/03/19 08:15:27 | 000,001,546 | ---- | C] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\ImgBurn.lnk
[2009/03/19 08:15:27 | 000,001,528 | ---- | C] () -- C:\Documents and Settings\David\Desktop\ImgBurn.lnk
[2009/03/19 04:58:33 | 002,622,551 | ---- | C] () -- C:\WINDOWS\System32\IP_192.212.5.15
[2009/03/11 14:01:28 | 000,023,552 | ---- | C] () -- C:\WINDOWS\System32\DirectCOM.dll
[2009/03/11 06:00:12 | 000,000,655 | ---- | C] () -- C:\Documents and Settings\David\Desktop\AWicons Pro.lnk
[2009/03/05 07:16:53 | 000,000,091 | -H-- | C] () -- C:\Documents and Settings\David\Application Data\xpy.ini
[2009/03/05 07:16:24 | 000,094,428 | ---- | C] () -- C:\Documents and Settings\Administrator\My Documents\xpy.exe
[2009/03/05 07:16:13 | 000,087,801 | ---- | C] () -- C:\Documents and Settings\Administrator\My Documents\xpy-0.10.9-bin.zip
[2009/02/19 16:47:15 | 000,010,818 | ---- | C] () -- C:\Documents and Settings\David\My Documents\allocation of duties 2.odt
[2009/02/19 16:28:16 | 000,009,713 | ---- | C] () -- C:\Documents and Settings\David\My Documents\allocation of daily duities.odt
[2009/02/06 06:48:47 | 000,000,721 | ---- | C] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\FlashPeak SlimBrowser.lnk
[2009/01/29 10:45:23 | 000,009,842 | ---- | C] () -- C:\Documents and Settings\David\My Documents\Glasgow letter 29.01.09.odt
[2009/01/23 06:08:44 | 000,002,495 | ---- | C] () -- C:\Documents and Settings\David\Desktop\Microsoft Office Excel 2003.lnk
[2009/01/22 09:23:29 | 000,000,376 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2009/01/14 10:33:13 | 000,010,933 | ---- | C] () -- C:\Documents and Settings\David\My Documents\untitled_0_2.odt
[2009/01/14 08:18:21 | 000,014,268 | ---- | C] () -- C:\Documents and Settings\David\My Documents\untitled_0_1.odt
[2009/01/14 08:03:49 | 000,014,313 | ---- | C] () -- C:\Documents and Settings\David\My Documents\untitled_0.odt
[2009/01/14 08:03:49 | 000,009,773 | ---- | C] () -- C:\Documents and Settings\David\My Documents\untitled_1.ods
[2008/12/16 06:07:43 | 000,000,678 | ---- | C] () -- C:\Documents and Settings\David\Desktop\Extra CD DVD Burner.lnk
[2008/12/10 06:58:46 | 000,000,774 | ---- | C] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\InfraRecorder.lnk
[2008/12/03 08:41:35 | 000,037,407 | ---- | C] () -- C:\Documents and Settings\David\My Documents\castle2.gif
[2008/12/03 08:38:03 | 000,048,356 | ---- | C] () -- C:\Documents and Settings\David\My Documents\castle.gif
[2008/12/03 08:35:03 | 000,086,182 | ---- | C] () -- C:\Documents and Settings\David\My Documents\tattoo_2007.gif
[2008/12/03 08:30:54 | 000,144,138 | ---- | C] () -- C:\Documents and Settings\David\My Documents\tattoo_piper.gif
[2008/12/03 08:30:00 | 000,045,900 | ---- | C] () -- C:\Documents and Settings\David\My Documents\tattoo_header.gif
[2008/12/02 08:10:54 | 000,132,865 | ---- | C] () -- C:\Documents and Settings\David\My Documents\tattoo2.gif
[2008/12/02 08:02:17 | 000,318,827 | ---- | C] () -- C:\Documents and Settings\David\My Documents\tattoo.gif
[2008/11/27 11:37:50 | 000,075,776 | ---- | C] () -- C:\Documents and Settings\David\My Documents\contract.doc
[2008/11/18 06:12:39 | 000,014,000 | ---- | C] () -- C:\Documents and Settings\David\My Documents\ebay_complaint_181108.odt
[2008/11/18 05:25:39 | 000,012,552 | ---- | C] () -- C:\Documents and Settings\David\My Documents\BBC_complaint.odt
[2008/10/30 19:09:29 | 001,174,471 | ---- | C] () -- C:\Documents and Settings\David\My Documents\recovery.hst
[2008/10/30 07:12:54 | 000,006,200 | ---- | C] () -- C:\WINDOWS\System32\INT13EXT.VXD
[2008/10/30 06:00:47 | 000,000,137 | ---- | C] () -- C:\WINDOWS\System32\09wutili.sys
[2008/10/30 06:00:40 | 000,000,674 | ---- | C] () -- C:\Documents and Settings\David\Desktop\WinUtilities.lnk
[2008/10/29 14:19:33 | 000,000,713 | ---- | C] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\Intrusion Detection System - Sax2.lnk
[2008/10/23 08:21:36 | 000,000,935 | ---- | C] () -- C:\Documents and Settings\David\Desktop\Batch Image Watermarker.lnk
[2008/10/19 16:47:20 | 000,008,743 | ---- | C] () -- C:\Documents and Settings\David\My Documents\Colostoma bag changing record.odt
[2008/10/09 06:31:51 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\null
[2008/09/24 07:32:33 | 002,255,133 | ---- | C] () -- C:\Documents and Settings\David\My Documents\cash_book_pro_2008.zip
[2008/09/24 07:23:54 | 000,016,384 | ---- | C] () -- C:\Documents and Settings\David\My Documents\DailyCashFillIn.xls
[2008/09/19 07:37:08 | 000,000,078 | ---- | C] () -- C:\WINDOWS\fsp.bin
[2008/09/19 07:34:30 | 000,000,000 | ---- | C] () -- C:\WINDOWS\forbes
[2008/09/19 07:33:52 | 001,376,256 | ---- | C] () -- C:\Documents and Settings\David\My Documents\FCSCOMM.DLL
[2008/09/19 06:56:07 | 013,704,240 | ---- | C] () -- C:\Documents and Settings\David\My Documents\light08.exe
[2008/09/18 09:06:36 | 000,000,070 | ---- | C] () -- C:\WINDOWS\forbes.ini
[2008/09/04 08:03:19 | 000,009,718 | ---- | C] () -- C:\Documents and Settings\David\My Documents\t-shirt.odt
[2008/08/24 17:29:52 | 000,000,887 | ---- | C] () -- C:\Documents and Settings\David\Desktop\BusinessCardsMX3.lnk
[2008/08/18 02:16:08 | 001,042,598 | ---- | C] () -- C:\Documents and Settings\David\My Documents\musicofsco_jewel.odg
[2008/08/16 03:51:00 | 000,142,128 | ---- | C] () -- C:\Documents and Settings\David\My Documents\mvstcdxx.lst
[2008/08/16 03:48:39 | 000,275,158 | ---- | C] () -- C:\Documents and Settings\David\My Documents\Red_Hot_Chilli_Pipers_-_Bagrock_To_The_Masses_(2007)-[Cd]-[www.FreeCovers.net].jpg
[2008/08/16 03:30:12 | 000,259,999 | ---- | C] () -- C:\Documents and Settings\David\My Documents\Red_Hot_Chilli_Pipers_-_Bagrock_To_The_Masses_(2007)-[Front]-[www.FreeCovers.net].jpg
[2008/08/16 03:29:33 | 000,484,242 | ---- | C] () -- C:\Documents and Settings\David\My Documents\Red_Hot_Chilli_Pipers_-_Bagrock_To_The_Masses_(2007)-[Back]-[www.FreeCovers.net].jpg
[2008/07/30 14:50:00 | 000,516,096 | ---- | C] () -- C:\WINDOWS\System32\rtl4.dat
[2008/07/30 14:50:00 | 000,016,384 | ---- | C] () -- C:\WINDOWS\System32\rtl3.dat
[2008/07/20 15:06:22 | 000,087,040 | ---- | C] () -- C:\Documents and Settings\David\My Documents\4 Evidence Gathering Form[1].doc
[2008/07/17 10:16:53 | 000,067,866 | ---- | C] () -- C:\WINDOWS\System32\drivers\netwlan5.img
[2008/07/17 10:16:36 | 000,000,974 | ---- | C] () -- C:\WINDOWS\System32\pid.inf
[2008/07/17 10:16:28 | 000,129,045 | ---- | C] () -- C:\WINDOWS\System32\drivers\cxthsfs2.cty
[2008/07/17 10:16:24 | 000,064,352 | ---- | C] () -- C:\WINDOWS\System32\drivers\ativmc20.cod
[2008/07/14 18:31:02 | 000,008,353 | ---- | C] () -- C:\Documents and Settings\David\My Documents\item_list.odt
[2008/07/14 02:41:57 | 000,008,693 | ---- | C] () -- C:\Documents and Settings\David\My Documents\HR Department.odt
[2008/07/11 09:49:30 | 000,912,896 | ---- | C] () -- C:\Documents and Settings\David\My Documents\SUPPORT_APPLICATION_FORM_Filled.doc
[2008/07/11 07:01:57 | 000,858,112 | ---- | C] () -- C:\Documents and Settings\David\My Documents\SUPPORT_APPLICATION_FORM.doc
[2008/06/27 18:51:04 | 727,433,216 | ---- | C] () -- C:\Documents and Settings\David\My Documents\OpenDisc08.07.iso
[2008/06/26 06:12:49 | 000,016,600 | ---- | C] () -- C:\mvstcdxx.lst
[2008/06/19 12:26:19 | 000,008,471 | ---- | C] () -- C:\Documents and Settings\David\My Documents\statement cook 19.06.08.odt
[2008/06/16 07:08:25 | 000,013,657 | ---- | C] () -- C:\Documents and Settings\David\My Documents\citibank_160608.odt
[2008/06/02 05:49:21 | 000,000,650 | ---- | C] () -- C:\Documents and Settings\David\Desktop\HTTrack Website Copier.lnk
[2008/05/31 15:28:41 | 000,401,345 | ---- | C] () -- C:\Documents and Settings\David\My Documents\Remoteobserver.zip
[2008/05/28 13:29:49 | 000,001,620 | ---- | C] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2008/05/26 15:59:42 | 000,018,904 | ---- | C] () -- C:\WINDOWS\System32\structuredqueryschematrivial.bin
[2008/05/26 15:59:40 | 000,106,605 | ---- | C] () -- C:\WINDOWS\System32\structuredqueryschema.bin
[2008/05/07 03:52:03 | 000,541,809 | ---- | C] () -- C:\Documents and Settings\David\kilt1.jpg
[2008/05/07 03:52:00 | 004,274,402 | ---- | C] () -- C:\Documents and Settings\David\attidavescotti_edited-1.png
[2008/05/06 09:08:37 | 000,243,999 | ---- | C] () -- C:\Documents and Settings\David\My Documents\games_front.odg
[2008/05/02 04:24:47 | 000,000,924 | ---- | C] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\TweakRAM.lnk
[2008/05/02 04:24:47 | 000,000,912 | ---- | C] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\Applications Startup Wizard.lnk
[2008/04/28 10:31:20 | 685,389,545 | ---- | C] () -- C:\Creative Suite Master Collection Alternative.zip
[2008/04/26 10:23:41 | 000,152,403 | ---- | C] () -- C:\Documents and Settings\David\My Documents\quasar_install-1.4.5.pdf
[2008/04/26 10:10:17 | 000,187,300 | ---- | C] () -- C:\Documents and Settings\David\My Documents\wamp_2_user_manual.pdf
[2008/04/26 10:09:18 | 000,005,957 | ---- | C] () -- C:\WINDOWS\php_old.ini
[2008/04/26 10:01:32 | 000,000,606 | ---- | C] () -- C:\Documents and Settings\David\Desktop\Quasar Accounting.lnk
[2008/04/24 03:09:19 | 000,390,490 | ---- | C] () -- C:\Documents and Settings\David\My Documents\receipt2.jpg
[2008/04/24 03:07:45 | 000,683,764 | ---- | C] () -- C:\Documents and Settings\David\My Documents\receipt1.jpg
[2008/04/24 03:05:29 | 000,078,911 | ---- | C] () -- C:\Documents and Settings\David\My Documents\receipt.gif
[2008/04/23 11:22:03 | 448,466,944 | ---- | C] () -- C:\Documents and Settings\David\My Documents\opensource_games21.iso
[2008/04/23 11:03:59 | 000,140,383 | ---- | C] () -- C:\Documents and Settings\David\My Documents\opensource_dvd_label.zip
[2008/04/21 03:09:49 | 000,033,250 | ---- | C] () -- C:\Documents and Settings\David\My Documents\web_design_sw.odt
[2008/04/08 18:59:56 | 000,001,393 | ---- | C] () -- C:\WINDOWS\imsins.BAK
[2008/04/08 16:19:43 | 000,106,717 | ---- | C] () -- C:\Documents and Settings\David\My Documents\blender_front_new.odg
[2008/04/08 07:19:10 | 000,525,072 | ---- | C] () -- C:\Documents and Settings\David\My Documents\Setup_QuickBooks_SimpleStart_Direct_2008.exe
[2008/04/04 09:37:30 | 000,033,114 | ---- | C] () -- C:\Documents and Settings\David\My Documents\blender_front.odt
[2008/03/30 11:27:59 | 000,027,361 | ---- | C] () -- C:\Documents and Settings\David\My Documents\synfig_back.odt
[2008/03/30 11:26:26 | 000,037,084 | ---- | C] () -- C:\Documents and Settings\David\My Documents\synfig_front.odt
[2008/03/27 09:05:39 | 000,000,043 | ---- | C] () -- C:\WINDOWS\gswin32.ini
[2008/03/27 05:42:41 | 000,026,249 | ---- | C] () -- C:\Documents and Settings\David\My Documents\graphic_front.gif.cdx
[2008/03/26 11:25:30 | 000,000,487 | ---- | C] () -- C:\Documents and Settings\David\jdraw.v1.1.5.dat
[2008/02/29 11:59:35 | 000,082,719 | ---- | C] () -- C:\Documents and Settings\David\My Documents\zanox1.gif
[2008/02/25 05:43:58 | 000,568,712 | ---- | C] () -- C:\Documents and Settings\David\My Documents\WMIDiag.exe
[2008/02/21 11:04:14 | 000,471,040 | ---- | C] () -- C:\WINDOWS\ssndii.exe
[2008/02/21 11:02:39 | 000,011,502 | ---- | C] () -- C:\WINDOWS\Dr. Printer Icon.ico
[2008/02/21 10:53:45 | 000,000,555 | ---- | C] () -- C:\WINDOWS\System32\SUGG1LMK.SMT
[2008/02/07 04:05:18 | 000,163,840 | ---- | C] () -- C:\WINDOWS\System32\hppatusg01.dll
[2008/02/05 07:28:20 | 000,000,051 | ---- | C] () -- C:\Documents and Settings\David\Local Settings\Application Data\setup.txt
[2008/02/04 13:37:27 | 000,008,289 | ---- | C] () -- C:\Documents and Settings\David\My Documents\Keep clear.odt
[2008/01/17 08:04:26 | 000,000,666 | ---- | C] () -- C:\Documents and Settings\David\Desktop\CDox.lnk
[2008/01/17 08:03:39 | 000,992,466 | ---- | C] () -- C:\Documents and Settings\David\My Documents\cdox1.0.3.exe
[2008/01/17 07:49:55 | 000,000,689 | ---- | C] () -- C:\Documents and Settings\David\Desktop\MediaFood Designer Tools.lnk
[2008/01/17 07:43:22 | 000,036,864 | ---- | C] () -- C:\WINDOWS\System32\ODBCSTF.DLL
[2008/01/17 07:24:30 | 000,050,326 | ---- | C] () -- C:\WINDOWS\dbetdf04.ini
[2008/01/14 10:54:00 | 224,840,964 | ---- | C] () -- C:\Documents and Settings\David\My Documents\OOo_2.3.1_071211_Win32Intel_install.exe
[2008/01/04 10:25:20 | 001,268,370 | ---- | C] () -- C:\Documents and Settings\David\My Documents\personal.odg
[2008/01/04 10:13:22 | 000,609,153 | ---- | C] () -- C:\Documents and Settings\David\My Documents\personal02.jpg
[2008/01/04 10:11:51 | 000,613,226 | ---- | C] () -- C:\Documents and Settings\David\My Documents\personal01.jpg
[2007/12/26 14:29:27 | 000,192,085 | ---- | C] () -- C:\Documents and Settings\David\My Documents\35 Programs.odt
[2007/12/21 11:44:45 | 000,626,993 | ---- | C] () -- C:\Documents and Settings\David\My Documents\tran_hearing2.jpg
[2007/12/21 11:42:40 | 001,374,805 | ---- | C] () -- C:\Documents and Settings\David\My Documents\tran_hearing1.jpg
[2007/12/19 03:31:05 | 001,008,261 | ---- | C] () -- C:\Documents and Settings\David\My Documents\atti_sick02.jpg
[2007/12/19 03:24:36 | 000,848,523 | ---- | C] () -- C:\Documents and Settings\David\My Documents\atti_sick01.jpg
[2007/12/19 03:22:15 | 000,013,283 | ---- | C] () -- C:\Documents and Settings\David\My Documents\ebaybuyers_note.odt
[2007/11/30 07:08:26 | 000,421,987 | ---- | C] () -- C:\Documents and Settings\David\My Documents\pol_31_10_07.jpg
[2007/11/30 07:03:23 | 000,000,073 | ---- | C] () -- C:\Documents and Settings\David\.gtk-bookmarks
[2007/11/30 07:02:16 | 000,447,228 | ---- | C] () -- C:\Documents and Settings\David\.fonts.cache-1
[2007/11/30 07:01:16 | 000,000,750 | ---- | C] () -- C:\Documents and Settings\David\Desktop\GIMPshop.lnk
[2007/11/30 05:24:48 | 006,094,818 | ---- | C] () -- C:\Documents and Settings\David\My Documents\poliz_31_10_07.jpg
[2007/11/23 06:52:32 | 000,012,076 | ---- | C] () -- C:\Documents and Settings\David\My Documents\jenny konto antwort.odt
[2007/11/02 07:47:02 | 019,791,496 | ---- | C] () -- C:\Documents and Settings\David\My Documents\setup.exe
[2007/11/02 07:42:16 | 019,728,820 | ---- | C] () -- C:\Documents and Settings\David\My Documents\setup.zip
[2007/10/22 09:21:37 | 000,011,264 | ---- | C] () -- C:\Documents and Settings\David\My Documents\applie for dayshift.wps
[2007/10/15 06:57:36 | 000,013,312 | ---- | C] () -- C:\Documents and Settings\David\My Documents\Statement 15.10.07.wps
[2007/10/13 11:13:19 | 000,010,752 | ---- | C] () -- C:\Documents and Settings\David\My Documents\canan.wps
[2007/10/04 07:48:07 | 000,001,745 | ---- | C] () -- C:\Documents and Settings\David\Desktop\Blender.lnk
[2007/09/28 07:46:49 | 000,047,120 | ---- | C] () -- C:\Documents and Settings\David\My Documents\Floyd.ttf
[2007/09/27 04:51:02 | 000,020,698 | ---- | C] () -- C:\WINDOWS\System32\idxcntrs.ini
[2007/09/27 04:51:02 | 000,004,640 | ---- | C] () -- C:\WINDOWS\System32\idxcntrs.h
[2007/09/27 04:48:48 | 000,030,628 | ---- | C] () -- C:\WINDOWS\System32\gsrvctr.ini
[2007/09/27 04:48:48 | 000,002,590 | ---- | C] () -- C:\WINDOWS\System32\gsrvctr.h
[2007/09/27 04:48:28 | 000,031,698 | ---- | C] () -- C:\WINDOWS\System32\gthrctr.ini
[2007/09/27 04:48:28 | 000,003,100 | ---- | C] () -- C:\WINDOWS\System32\gthrctr.h
[2007/09/21 04:58:39 | 000,000,128 | ---- | C] () -- C:\Documents and Settings\David\Local Settings\Application Data\fusioncache.dat
[2007/09/21 04:58:05 | 000,002,447 | ---- | C] () -- C:\Documents and Settings\David\Desktop\CDInterface Studio 2.lnk
[2007/09/20 18:14:21 | 001,727,776 | ---- | C] () -- C:\Documents and Settings\David\My Documents\alle_ottosounds.zip
[2007/09/20 18:13:49 | 000,067,849 | ---- | C] () -- C:\Documents and Settings\David\My Documents\ottofont.zip
[2007/09/20 09:37:31 | 000,117,419 | ---- | C] () -- C:\Documents and Settings\David\My Documents\Dafini_Web_Design.pdf
[2007/09/20 08:52:30 | 000,000,867 | ---- | C] () -- C:\lxceinst.csv
[2007/09/20 08:52:30 | 000,000,867 | ---- | C] () -- C:\lxceinst.000
[2007/09/20 08:52:30 | 000,000,139 | ---- | C] () -- C:\lxceinst.001
[2007/09/20 08:52:28 | 000,000,275 | ---- | C] () -- C:\lxcefire.csv
[2007/09/20 08:52:28 | 000,000,275 | ---- | C] () -- C:\lxcefire.001
[2007/09/20 08:52:28 | 000,000,275 | ---- | C] () -- C:\lxcefire.000
[2007/09/20 08:11:13 | 000,014,120 | ---- | C] () -- C:\Documents and Settings\David\My Documents\EMEA Order Status.htm
[2007/09/18 11:21:58 | 002,999,821 | ---- | C] () -- C:\Documents and Settings\David\My Documents\Mainboard.pdf
[2007/09/17 23:43:34 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf
[2007/09/17 22:11:07 | 000,000,630 | ---- | C] () -- C:\Documents and Settings\David\Desktop\PantsOff.lnk
[2007/09/17 16:19:31 | 000,787,456 | ---- | C] () -- C:\WINDOWS\System32\BootMan.exe
[2007/09/16 18:11:07 | 000,138,935 | ---- | C] () -- C:\Documents and Settings\David\My Documents\part244.zip
[2007/09/16 07:55:53 | 000,000,738 | ---- | C] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\Outlook Express.lnk
[2007/09/15 23:33:45 | 000,000,021 | ---- | C] () -- C:\WINDOWS\TemplateWizard.INI
[2007/09/15 22:53:53 | 001,158,818 | ---- | C] () -- C:\WINDOWS\System32\korwbrkr.lex
[2007/09/15 22:53:53 | 000,002,060 | ---- | C] () -- C:\WINDOWS\System32\noise.jpn
[2007/09/15 22:53:53 | 000,001,486 | ---- | C] () -- C:\WINDOWS\System32\noise.kor
[2007/09/15 22:53:47 | 000,211,938 | ---- | C] () -- C:\WINDOWS\System32\lcphrase.tbl
[2007/09/15 22:53:47 | 000,146,126 | ---- | C] () -- C:\WINDOWS\System32\array30.tab
[2007/09/15 22:53:47 | 000,116,285 | ---- | C] () -- C:\WINDOWS\System32\msdayi.tbl
[2007/09/15 22:53:47 | 000,110,566 | ---- | C] () -- C:\WINDOWS\System32\arphr.tbl
[2007/09/15 22:53:47 | 000,043,242 | ---- | C] () -- C:\WINDOWS\System32\phoncode.tbl
[2007/09/15 22:53:47 | 000,024,114 | ---- | C] () -- C:\WINDOWS\System32\lcptr.tbl
[2007/09/15 22:53:47 | 000,018,600 | ---- | C] () -- C:\WINDOWS\System32\arrayhw.tab
[2007/09/15 22:53:47 | 000,016,312 | ---- | C] () -- C:\WINDOWS\System32\arptr.tbl
[2007/09/15 22:53:47 | 000,004,071 | ---- | C] () -- C:\WINDOWS\System32\phon.tbl
[2007/09/15 22:53:47 | 000,002,714 | ---- | C] () -- C:\WINDOWS\System32\phonptr.tbl
[2007/09/15 22:53:47 | 000,000,700 | ---- | C] () -- C:\WINDOWS\System32\dayiptr.tbl
[2007/09/15 22:53:47 | 000,000,520 | ---- | C] () -- C:\WINDOWS\System32\dayiphr.tbl
[2007/09/15 22:53:46 | 000,044,370 | ---- | C] () -- C:\WINDOWS\System32\acode.tbl
[2007/09/15 22:53:46 | 000,044,370 | ---- | C] () -- C:\WINDOWS\System32\a234.tbl
[2007/09/15 22:53:46 | 000,001,460 | ---- | C] () -- C:\WINDOWS\System32\a15.tbl
[2007/09/15 22:53:42 | 001,223,500 | ---- | C] () -- C:\WINDOWS\System32\WINZM.MB
[2007/09/15 22:53:41 | 001,783,864 | ---- | C] () -- C:\WINDOWS\System32\WINPY.MB
[2007/09/15 22:53:41 | 001,564,868 | ---- | C] () -- C:\WINDOWS\System32\WINSP.MB
[2007/09/15 16:15:19 | 000,496,085 | ---- | C] () -- C:\Documents and Settings\David\My Documents\Pivot.zip
[2007/09/15 16:10:49 | 000,000,777 | ---- | C] () -- C:\Documents and Settings\David\My Documents\example.htaccess
[2007/09/15 16:10:13 | 002,196,352 | ---- | C] () -- C:\Documents and Settings\David\My Documents\pivot_1404_full.zip
[2007/09/15 15:28:27 | 000,000,800 | ---- | C] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk
[2007/09/15 15:06:26 | 000,000,102 | ---- | C] () -- C:\Documents and Settings\David\.gtkrc-2.0
[2007/09/15 14:41:54 | 001,502,767 | ---- | C] () -- C:\Documents and Settings\David\My Documents\f4l-0.2.1.tar.bz2
[2007/09/15 13:13:07 | 000,000,738 | ---- | C] () -- C:\Documents and Settings\David\Desktop\Outlook Express.lnk
[2007/09/15 07:42:54 | 000,000,883 | ---- | C] () -- C:\Documents and Settings\David\Desktop\Launch onlineTV 3.lnk
[2007/09/15 07:42:51 | 000,237,568 | ---- | C] () -- C:\WINDOWS\System32\lame_enc.dll
[2007/09/14 21:56:40 | 000,011,229 | ---- | C] () -- C:\Documents and Settings\David\My Documents\Gordon-Regular.zip
[2007/09/14 21:55:38 | 000,011,089 | ---- | C] () -- C:\Documents and Settings\David\My Documents\Gordon.zip
[2007/09/14 19:19:26 | 000,016,384 | ---- | C] () -- C:\WINDOWS\System32\FileOps.exe
[2007/09/14 17:20:23 | 000,136,704 | ---- | C] () -- C:\Documents and Settings\David\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2007/09/14 16:16:09 | 000,000,744 | ---- | C] () -- C:\Documents and Settings\David\Application Data\wklnhst.dat
[2007/09/14 16:16:08 | 000,000,814 | ---- | C] () -- C:\Documents and Settings\David\Desktop\Microsoft Works.LNK
[2007/09/14 15:59:02 | 000,000,721 | ---- | C] () -- C:\Documents and Settings\David\Desktop\FlashPeak SlimBrowser.lnk
[2007/09/14 15:39:28 | 000,003,444 | ---- | C] () -- C:\WINDOWS\System32\OEMINFO.PNF
[2007/09/14 15:34:53 | 000,010,537 | ---- | C] () -- C:\WINDOWS\System32\drivers\COH_Mon.cat
[2007/09/14 15:34:53 | 000,000,706 | ---- | C] () -- C:\WINDOWS\System32\drivers\COH_Mon.inf
[2007/09/14 15:12:42 | 000,004,128 | ---- | C] () -- C:\INFCACHE.1
[2007/09/14 14:58:56 | 000,000,782 | ---- | C] () -- C:\Documents and Settings\David\Desktop\Windows Media Player.lnk
[2007/09/14 14:58:19 | 000,000,815 | ---- | C] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2007/09/14 14:58:19 | 000,000,079 | ---- | C] () -- C:\Documents and Settings\David\Application Data\Microsoft\Internet Explorer\Quick Launch\Show Desktop.scf
[2007/09/14 14:52:16 | 000,008,192 | ---- | C] () -- C:\WINDOWS\REGLOCS.OLD
[2007/09/11 06:53:11 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2007/09/11 06:45:27 | 000,056,056 | ---- | C] () -- C:\WINDOWS\System32\DLAAPI_W.DLL
[2007/09/11 06:45:27 | 000,000,292 | ---- | C] () -- C:\WINDOWS\wininit.ini
[2007/09/11 06:42:02 | 000,146,650 | ---- | C] () -- C:\WINDOWS\System32\BuzzingBee.wav
[2007/09/11 06:42:01 | 000,940,794 | ---- | C] () -- C:\WINDOWS\System32\LoopyMusic.wav
[2007/09/11 06:26:08 | 000,119,828 | ---- | C] () -- C:\WINDOWS\System32\nvapps.xml
[2007/09/11 06:26:04 | 000,017,525 | ---- | C] () -- C:\WINDOWS\System32\nvdisp.nvu
[2007/09/11 06:23:47 | 000,006,210 | RH-- | C] () -- C:\dell.sdr
[2007/09/11 06:21:47 | 000,002,905 | ---- | C] () -- C:\WINDOWS\System32\e1e5132.din
[2007/09/11 06:21:46 | 000,077,824 | ---- | C] () -- C:\WINDOWS\setpwr32.exe
[2007/09/11 06:21:45 | 002,986,038 | ---- | C] () -- C:\WINDOWS\Dell.bmp
[2007/09/11 06:21:30 | 000,006,210 | ---- | C] () -- C:\WINDOWS\System32\drivers\1028_Dell_VOS_VOSTRO_200.mrk
[2007/09/11 06:20:36 | 000,787,356 | ---- | C] () -- C:\WINDOWS\System32\OEMBKGN1.BMP
[2007/09/11 06:20:36 | 000,096,310 | ---- | C] () -- C:\WINDOWS\System32\DELLWALL.BMP
[2007/09/11 06:20:36 | 000,005,134 | ---- | C] () -- C:\WINDOWS\System32\OEMLOGO.BMP
[2007/05/18 04:58:36 | 000,122,880 | ---- | C] () -- C:\WINDOWS\System32\FCSFORM.DLL
[2007/03/27 04:45:22 | 000,038,567 | ---- | C] () -- C:\WINDOWS\System32\pcpbios.exe
[2007/03/27 04:45:22 | 000,004,096 | ---- | C] () -- C:\WINDOWS\System32\sysres.dll
[2007/01/22 10:06:52 | 000,754,688 | ---- | C] () -- C:\Documents and Settings\David\My Documents\WMIDiag.doc
[2007/01/22 10:04:22 | 000,510,464 | ---- | C] () -- C:\Documents and Settings\David\My Documents\WMIDiag.xls
[2007/01/16 10:34:32 | 004,345,133 | ---- | C] () -- C:\Documents and Settings\David\My Documents\WMIDiag.vbs
[2007/01/01 04:13:14 | 000,141,702 | ---- | C] () -- C:\WINDOWS\System32\dllcache\netfx.cat
[2007/01/01 04:13:14 | 000,110,116 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tabletpc.cat
[2007/01/01 04:13:14 | 000,037,484 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MW770.CAT
[2007/01/01 04:13:14 | 000,031,965 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mediactr.cat
[2007/01/01 04:13:14 | 000,024,209 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msn7.cat
[2007/01/01 04:13:14 | 000,013,472 | ---- | C] () -- C:\WINDOWS\System32\dllcache\HPCRDP.CAT
[2007/01/01 04:13:14 | 000,011,651 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msn9.cat
[2007/01/01 04:13:14 | 000,008,574 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IASNT4.CAT
[2007/01/01 04:13:14 | 000,007,710 | ---- | C] () -- C:\WINDOWS\System32\dllcache\OEMBIOS.CAT
[2007/01/01 04:13:14 | 000,007,334 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmerrenu.cat
[2007/01/01 04:13:14 | 000,007,245 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSTSWEB.CAT
[2007/01/01 04:13:13 | 002,012,670 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5.CAT
[2007/01/01 04:13:13 | 001,042,903 | ---- | C] () -- C:\WINDOWS\System32\dllcache\SP2.CAT
[2007/01/01 04:13:13 | 000,797,189 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5IIS.CAT
[2007/01/01 04:13:13 | 000,502,724 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5INF.CAT
[2007/01/01 04:13:13 | 000,399,645 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MAPIMIG.CAT
[2007/01/01 04:13:13 | 000,031,281 | ---- | C] () -- C:\WINDOWS\System32\dllcache\FP4.CAT
[2007/01/01 04:13:13 | 000,013,753 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IMS.CAT
[2007/01/01 04:13:13 | 000,009,581 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSMSGS.CAT
[2007/01/01 00:57:03 | 018,738,937 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\sp2.cab
[2007/01/01 00:51:05 | 001,768,236 | ---- | C] () -- C:\WINDOWS\System32\Windows6.0-KB942288-v2-x86.msu
[2006/09/16 17:36:50 | 000,520,192 | ---- | C] () -- C:\WINDOWS\System32\CddbPlaylist2Roxio.dll
[2006/09/16 17:36:50 | 000,204,800 | ---- | C] () -- C:\WINDOWS\System32\CddbFileTaggerRoxio.dll
[2005/06/11 06:47:00 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\fpprintmon.dll
[2005/05/19 13:05:24 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\px.ini
[2005/02/01 07:36:12 | 001,323,080 | ---- | C] () -- C:\WINDOWS\DVBTBandDll.dll
[2005/01/27 08:10:08 | 000,045,056 | ---- | C] () -- C:\WINDOWS\SWBW.dll
[2004/08/11 11:24:19 | 000,000,791 | ---- | C] () -- C:\WINDOWS\orun32.ini
[2004/08/11 11:11:31 | 000,001,793 | ---- | C] () -- C:\WINDOWS\System32\fxsperf.ini
[2004/08/11 11:07:24 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2004/08/04 05:00:00 | 002,637,824 | RHS- | C] () -- C:\WINDOWS\System32\bjqeulfx.dll
[2004/08/04 05:00:00 | 000,027,440 | ---- | C] () -- C:\WINDOWS\System32\drivers\secdrv.sys
[2004/08/03 19:56:46 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
========== LOP Check ==========
[2010/05/27 03:14:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Application Data\Birdstep Technology
[2009/10/30 03:20:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Application Data\BOM
[2009/03/09 01:08:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Application Data\Trusteer
[2009/10/30 14:00:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Application Data\TuneUp Software
[2006/12/31 19:43:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Birdstep Technology
[2010/12/09 02:59:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\eBay
[2010/12/09 03:33:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\InfraRecorder
[2006/12/31 19:32:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\SlimBrowser
[2010/12/09 02:58:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Trusteer
[2010/12/08 04:16:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\TuneUp Software
[2010/12/09 02:59:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\vShare
[2010/12/09 02:59:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Windows Desktop Search
[2010/12/10 05:29:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Windows Search
[2007/09/16 19:27:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\David\Application Data\.trackballs
[2007/09/14 19:08:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\David\Application Data\AceBIT
[2009/10/05 01:50:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\David\Application Data\Autoplay Menu Designer
[2010/05/27 03:15:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\David\Application Data\Birdstep Technology
[2009/10/19 03:43:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\David\Application Data\blinkx
[2010/11/25 17:04:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\David\Application Data\BOM
[2007/09/15 08:07:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\David\Application Data\concept design
[2010/02/10 04:21:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\David\Application Data\DAEMON Tools Lite
[2010/12/10 13:53:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\David\Application Data\Desktopicon
[2009/11/21 14:15:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\David\Application Data\DevPHP
[2009/10/16 12:05:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\David\Application Data\DisplayTune
[2009/10/30 12:43:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\David\Application Data\Downloaded Installations
[2007/12/09 12:35:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\David\Application Data\eBay
[2010/12/16 21:00:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\David\Application Data\Free Download Manager
[2009/10/07 03:59:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\David\Application Data\Iconomize
[2009/03/19 08:43:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\David\Application Data\ImgBurn
[2009/10/30 12:47:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\David\Application Data\IndigoRose
[2008/12/12 05:50:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\David\Application Data\InfraRecorder
[2010/10/22 06:48:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\David\Application Data\IObit
[2009/11/17 06:40:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\David\Application Data\kompozer.net
[2010/01/06 07:03:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\David\Application Data\Lingo4u
[2009/07/16 11:29:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\David\Application Data\Marvell
[2009/11/30 12:25:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\David\Application Data\Mikogo
[2008/08/24 17:29:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\David\Application Data\mojosoft
[2008/07/30 14:49:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\David\Application Data\Moyea
[2010/10/08 07:09:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\David\Application Data\Nokia
[2010/07/16 08:39:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\David\Application Data\Nseries
[2009/01/13 13:48:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\David\Application Data\OpenOffice.org
[2010/07/16 08:34:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\David\Application Data\PC Suite
[2010/11/20 16:12:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\David\Application Data\PCDr
[2010/12/09 01:49:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\David\Application Data\PriceGong
[2010/12/16 20:59:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\David\Application Data\SlimBrowser
[2007/01/02 16:06:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\David\Application Data\Software Informer
[2010/10/05 09:40:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\David\Application Data\Temp
[2007/09/14 22:01:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\David\Application Data\Template
[2009/03/04 12:38:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\David\Application Data\Trusteer
[2007/09/16 18:01:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\David\Application Data\TuneUp Software
[2010/12/12 09:11:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\David\Application Data\vShare
[2010/04/09 10:00:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\David\Application Data\Windows Desktop Search
[2010/06/11 07:37:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\David\Application Data\Windows Search
[2009/04/22 03:13:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\David\Application Data\Zoner
[2010/12/08 08:36:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Guest\Application Data\eBay
[2010/12/08 05:12:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Guest\Application Data\PC Suite
[2009/11/05 02:51:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Guest\Application Data\Trusteer
[2010/12/08 08:38:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Guest\Application Data\vShare
[2010/12/08 08:37:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Guest\Application Data\Windows Desktop Search
[2009/04/15 03:01:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Application Data\Trusteer
[2006/12/31 19:11:45 | 000,000,486 | ---- | M] () -- C:\WINDOWS\Tasks\1-Click Maintenance.job
[2007/01/01 19:11:25 | 000,000,472 | ---- | M] () -- C:\WINDOWS\Tasks\Ad-Aware Update (Weekly).job
[2006/12/31 21:03:02 | 000,000,330 | -H-- | M] () -- C:\WINDOWS\Tasks\MP Scheduled Scan.job
[2010/12/24 00:56:00 | 000,000,410 | -H-- | M] () -- C:\WINDOWS\Tasks\User_Feed_Synchronization-{9453D5F3-28BC-47B0-BFC1-2C8D7B24ECB1}.job
========== Purity Check ==========
< End of report >
#5
sundavis
-
- Malware Response Team
- 2,708 posts
- OFFLINE
- Gender:Not Telling
- Local time:06:57 PM
Posted 27 December 2010 - 04:25 AM
Hi dave1708,
Step1
Step2
Click Start>Run>Type CMD>A command prompt DOS window will open. Type/Paste ipconfig /flushdns and then press Enter to purge the DNS resolver cache.
Please go to Start -> Control Panel, and choose Network Connections. Then right click on your default connection, usually Local Area Connection or Dial-up Connection if you are using Dial-up, and left click on properties. Double-click on the Internet Protocol (TCP/IP) item and select the radio button that says Obtain DNS servers automatically. Click OK twice, and restart your computer.
Open IE, select Tools > Internet Options. Select the Connections tab.
After that, What I'd like you to do is a hard reset with your router if you have one. Leave it on, and there should be a little pinhole in the back of the unit. Press and hold down the small button inside until the lights on the front of the router blink off and then on again (usually about 10 seconds). Then change your admin login and password--make it a strong password. You may also want to ask your ISP for help in case there are custom settings that need to be maintained.
Step3
Please run the ESET Online Scanner
Note: You will need to use Internet explorer for this scan
In your next reply, please post back:
1.OTL delete log
2.Eset Online Scanner Report
Please post your logs directly to this topic, not in message box. It's incomplete and can't be read.
Let me know if you have any remaining issues on your pc.
Step1
- Please start OTL on your desktop.
- Under the Custom Scans/Fixes box at the bottom, copy/paste the following contents of code box.
:OTL DRV - File not found [Kernel | On_Demand] -- -- (PDRFRAME) DRV - File not found [Kernel | On_Demand] -- -- (PDRELI) DRV - File not found [Kernel | On_Demand] -- -- (PDFRAME) DRV - File not found [Kernel | On_Demand] -- -- (PDCOMP) DRV - File not found [Kernel | System] -- -- (PCIDump) DRV - File not found [Kernel | System] -- -- (lbrtfdc) DRV - File not found [Kernel | System] -- -- (Changer) SRV - [2004/08/04 10:00:00 | 002,637,824 | RHS- | M] () [Auto | Stopped] -- C:\WINDOWS\system32\bjqeulfx.dll -- (tsjccvfq) O3 - HKU\David_ON_C\..\Toolbar\WebBrowser: (no name) - {043C5167-00BB-4324-AF7E-62013FAEDACF} - No CLSID value found. O3 - HKU\Guest_ON_C\..\Toolbar\WebBrowser: (no name) - {043C5167-00BB-4324-AF7E-62013FAEDACF} - No CLSID value found. O3 - HKU\Guest_ON_C\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found. O3 - HKU\Guest_ON_C\..\Toolbar\WebBrowser: (no name) - {CC05A3E3-64C3-4AF2-BFC1-AF0D66B69065} - No CLSID value found. O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - File not found O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab (Reg Error: Key error.) O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.) O16 - DPF: Deployer http://www.pcthreat.com/autoinstall/shsafeinstall.cab (Reg Error: Key error.) O18 - Protocol\Handler\vsharechrome {3F3A4B8A-86FC-43A4-BB00-6D7EBE9D4484} - Reg Error: Key error. File not found @Alternate Data Stream - 167 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:AE61C65A @Alternate Data Stream - 166 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:4F0FFA06 @Alternate Data Stream - 125 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:DFC5A2B2 @Alternate Data Stream - 111 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:0CE7F3C9 :Files c:\windows\system32\qmgr.dll|c:\windows\system32\bits\qmgr.dll /replace C:\WINDOWS\system32\bjqeulfx.dll :reg [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List] "5527:TCP"=- :Commands [purity] [emptytemp] [EMPTYFLASH] [resethosts] [start explorer] [Reboot] - Click Run Fix button on the top.
- Click OK and let it run unhindered.
- OTL will ask to reboot the machine. Please OK the prompt.
- A report will open. Copy and Paste that report in your next reply.
Step2
Click Start>Run>Type CMD>A command prompt DOS window will open. Type/Paste ipconfig /flushdns and then press Enter to purge the DNS resolver cache.
Please go to Start -> Control Panel, and choose Network Connections. Then right click on your default connection, usually Local Area Connection or Dial-up Connection if you are using Dial-up, and left click on properties. Double-click on the Internet Protocol (TCP/IP) item and select the radio button that says Obtain DNS servers automatically. Click OK twice, and restart your computer.
Open IE, select Tools > Internet Options. Select the Connections tab.
- If you are using LAN, click "LAN Settings" button. If you are using Dial-up or Virtual Private Network connection, select necessary connection and click "Settings" button.
- In the "Proxy Server" area, uncheck the check mark next to Use a proxy server for ....
- Click OK.
- Click Advanced tab and click on Reset button
- In the Reset Internet Explorer Settings dialog box, click Reset to confirm.
After that, What I'd like you to do is a hard reset with your router if you have one. Leave it on, and there should be a little pinhole in the back of the unit. Press and hold down the small button inside until the lights on the front of the router blink off and then on again (usually about 10 seconds). Then change your admin login and password--make it a strong password. You may also want to ask your ISP for help in case there are custom settings that need to be maintained.
Step3
Please run the ESET Online Scanner
Note: You will need to use Internet explorer for this scan
- Turn off the real time scanner of any existing antivirus program while performing the online scan
- Tick the box next to YES, I accept the Terms of Use.
- Click Start
- When asked, allow the activeX control to install
- Click Start
- Make sure that the option Remove found threats is unticked and the Scan Archives option is ticked.
- Click on Advanced Settings, ensure the options Scan for potentially unwanted applications, Scan for potentially unsafe applications, and Enable Anti-Stealth Technology are ticked.
- Click Scan
- Wait for the scan to finish
- Use notepad to open the logfile located at C:\Program Files\Eset\Eset Online Scanner\log.txt .
- Copy and paste that log as a reply to this topic and also let me know how things are now.
In your next reply, please post back:
1.OTL delete log
2.Eset Online Scanner Report
Please post your logs directly to this topic, not in message box. It's incomplete and can't be read.
Let me know if you have any remaining issues on your pc.
Edited by sundavis, 27 December 2010 - 09:07 AM.
#6
dave1708
- Topic Starter
-
- Members
- 11 posts
- OFFLINE
- Local time:06:57 PM
Posted 27 December 2010 - 11:24 AM
The OTL is nearly finished, but has been standing on "resetting hosts file - do not interupt" for about 1 hour now.
Is this normal?
Is this normal?
#7
sundavis
-
- Malware Response Team
- 2,708 posts
- OFFLINE
- Gender:Not Telling
- Local time:06:57 PM
Posted 27 December 2010 - 12:05 PM
No, that's abnormal. You may close OTL and reboot you pc manually. Otherwise, proceed that script with OTLPE instead.
Edited by sundavis, 27 December 2010 - 12:07 PM.
#8
dave1708
- Topic Starter
-
- Members
- 11 posts
- OFFLINE
- Local time:06:57 PM
Posted 27 December 2010 - 12:48 PM
Rebooted, got a report, then a error message every restart: "Could not bimd to port 9949. Please change port. Service stopped." Can't access the internet any more. Limited or no connectivity, and "Automatic Private Address IPv6 Enabled", never seen that one before!
#9
sundavis
-
- Malware Response Team
- 2,708 posts
- OFFLINE
- Gender:Not Telling
- Local time:06:57 PM
Posted 27 December 2010 - 12:53 PM
Hi dave1708,
Start -> Run -> Type CMD press Enter and copy/paste the following bold command into command prompt one at time and press Enter,
netsh int ip reset
netsh winsock reset
Reboot normally.
Start -> Run -> Type CMD press Enter and copy/paste the following bold command into command prompt one at time and press Enter,
netsh int ip reset
netsh winsock reset
Reboot normally.
Edited by sundavis, 27 December 2010 - 12:55 PM.
#10
dave1708
- Topic Starter
-
- Members
- 11 posts
- OFFLINE
- Local time:06:57 PM
Posted 27 December 2010 - 01:02 PM
This is the report I got after restarting:
Files\Folders moved on Reboot...
File\Folder C:\Documents and Settings\Administrator\Local Settings\Temp\hsperfdata_Administrator\3176 not found!
C:\Documents and Settings\Administrator\Local Settings\Temp\~DF28B7.tmp moved successfully.
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\1TQQGVFA\index[1].htm moved successfully.
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\1TQQGVFA\page__p__2069621__fromsearch__1[1].htm moved successfully.
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\AntiPhishing\A0AB7674-8D67-4F4D-B5E1-96FAEADFB79D.dat moved successfully.
File move failed. C:\WINDOWS\System32\drivers\etc\Hosts scheduled to be moved on reboot.
Registry entries deleted on Reboot...
Shall I run the script in the OTL again or in the OTLPE?
Files\Folders moved on Reboot...
File\Folder C:\Documents and Settings\Administrator\Local Settings\Temp\hsperfdata_Administrator\3176 not found!
C:\Documents and Settings\Administrator\Local Settings\Temp\~DF28B7.tmp moved successfully.
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\1TQQGVFA\index[1].htm moved successfully.
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\1TQQGVFA\page__p__2069621__fromsearch__1[1].htm moved successfully.
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\AntiPhishing\A0AB7674-8D67-4F4D-B5E1-96FAEADFB79D.dat moved successfully.
File move failed. C:\WINDOWS\System32\drivers\etc\Hosts scheduled to be moved on reboot.
Registry entries deleted on Reboot...
Shall I run the script in the OTL again or in the OTLPE?
#11
sundavis
-
- Malware Response Team
- 2,708 posts
- OFFLINE
- Gender:Not Telling
- Local time:06:57 PM
Posted 27 December 2010 - 01:13 PM
Hi,
After that, go to Start > Run > copy/paste the following line in the run box and click OK.
cmd /c notepad C:\windows\system32\drivers\etc\hosts
A text file opens. Please post its content to your reply.
Not now at this point. Please rerun OTL with the following script and post the log in your next reply.Shall I run the script in the OTL again or in the OTLPE?
%SYSTEMDRIVE%\*.exe %systemroot%\*. /mp /s %systemroot%\system32\*.dll /lockedfiles %systemroot%\Tasks\*.job /lockedfiles %systemroot%\system32\drivers\*.sys /lockedfiles %systemroot%\System32\config\*.sav %systemroot%\system32\drivers\*.sys /90
After that, go to Start > Run > copy/paste the following line in the run box and click OK.
cmd /c notepad C:\windows\system32\drivers\etc\hosts
A text file opens. Please post its content to your reply.
#12
dave1708
- Topic Starter
-
- Members
- 11 posts
- OFFLINE
- Local time:06:57 PM
Posted 27 December 2010 - 01:32 PM
The scan log:
OTL logfile created on: 27/12/2010 18:20:28 - Run 2
OTL by OldTimer - Version 3.2.18.0 Folder = C:\Documents and Settings\Administrator\Desktop
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.11)
Locale: 00000809 | Country: United Kingdom | Language: ENG | Date Format: dd/MM/yyyy
2.00 Gb Total Physical Memory | 1.00 Gb Available Physical Memory | 63.00% Memory free
4.00 Gb Paging File | 3.00 Gb Available in Paging File | 85.00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 229.77 Gb Total Space | 97.07 Gb Free Space | 42.25% Space Free | Partition Type: NTFS
Drive G: | 465.75 Gb Total Space | 101.84 Gb Free Space | 21.87% Space Free | Partition Type: NTFS
Computer Name: DAVID_DELL_PC | User Name: Administrator | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2010/12/17 01:11:04 | 002,654,008 | ---- | M] (FlashPeak, Inc.) -- C:\Program Files\SlimBrowser\sbrowser.exe
PRC - [2010/11/05 17:53:56 | 000,327,000 | ---- | M] (Enigma Software Group USA, LLC.) -- C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe
PRC - [2010/10/08 22:43:48 | 000,828,928 | ---- | M] (Security Stronghold) -- C:\Program Files\True Sword 5\TrueSwordSchedule.exe
PRC - [2010/10/03 22:43:16 | 001,266,920 | ---- | M] (Trusteer Ltd.) -- C:\Program Files\Trusteer\Rapport\bin\RapportService.exe
PRC - [2010/10/03 22:43:16 | 000,767,208 | ---- | M] (Trusteer Ltd.) -- C:\Program Files\Trusteer\Rapport\bin\RapportMgmtService.exe
PRC - [2010/09/23 09:49:08 | 000,067,584 | ---- | M] (CobianSoft, Luis Cobian) -- C:\Program Files\Cobian Backup 10\cbVSCService.exe
PRC - [2010/09/13 16:18:32 | 000,308,656 | ---- | M] (Eastman Kodak Company) -- C:\Program Files\Kodak\AiO\Center\ekdiscovery.exe
PRC - [2010/09/01 06:39:18 | 001,164,584 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe
PRC - [2010/08/27 11:10:45 | 000,340,520 | ---- | M] (Kaspersky Lab) -- C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe
PRC - [2010/03/25 09:27:09 | 000,604,488 | ---- | M] (TuneUp Software) -- C:\WINDOWS\system32\TUProgSt.exe
PRC - [2010/01/28 12:47:44 | 001,737,464 | ---- | M] () -- C:\Program Files\3 Mobile Broadband\3Connect\BecHelperService.exe
PRC - [2009/05/21 09:55:32 | 000,206,064 | ---- | M] (SupportSoft, Inc.) -- C:\Program Files\Dell Support Center\bin\sprtcmd.exe
PRC - [2009/03/09 07:38:40 | 001,032,192 | ---- | M] (Nokia) -- C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer.exe
PRC - [2008/08/13 17:32:40 | 000,201,968 | ---- | M] (SupportSoft, Inc.) -- C:\Program Files\Dell Support Center\bin\sprtsvc.exe
PRC - [2008/06/24 16:06:06 | 001,840,424 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe
PRC - [2008/05/31 20:43:42 | 000,020,480 | ---- | M] () -- C:\Program Files\RemoteObserverClient\roclient.exe
PRC - [2008/02/27 03:24:12 | 000,020,480 | ---- | M] (Intuit) -- C:\Program Files\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe
PRC - [2007/11/28 19:51:10 | 000,583,048 | ---- | M] (Symantec Corporation) -- C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
PRC - [2007/08/29 15:06:10 | 001,077,248 | ---- | M] (Marvell Semiconductor, Inc.) -- C:\Program Files\Hewlett-Packard\PrnStatusMX\PrnStatusMX.exe
PRC - [2007/03/15 11:09:36 | 000,460,784 | ---- | M] (Gteko Ltd.) -- C:\Program Files\DellSupport\DSAgnt.exe
PRC - [2007/01/02 12:30:01 | 000,602,624 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Administrator\Desktop\OTL.exe
PRC - [2006/10/03 10:37:04 | 000,081,920 | ---- | M] (Macrovision Corporation) -- C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
PRC - [2006/09/14 07:56:06 | 000,102,400 | ---- | M] () -- C:\Program Files\Adobe\Photoshop Elements 5.0\PhotoshopElementsFileAgent.exe
PRC - [2006/09/02 23:36:33 | 000,198,336 | ---- | M] (Symantec Corporation) -- C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe
PRC - [2005/07/26 12:17:18 | 000,094,208 | ---- | M] (Lexmark International Inc.) -- C:\Program Files\Lexmark 4300 Series\ezprint.exe
PRC - [2005/07/06 10:14:12 | 000,471,040 | ---- | M] (Lexmark International, Inc.) -- C:\WINDOWS\system32\lxcecoms.exe
PRC - [2004/08/04 10:00:00 | 001,032,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
========== Modules (SafeList) ==========
MOD - [2010/10/03 22:43:42 | 000,431,336 | ---- | M] (Trusteer Ltd.) -- C:\Program Files\Trusteer\Rapport\bin\rooksbas.dll
MOD - [2010/08/23 16:12:02 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll
MOD - [2007/01/02 12:30:01 | 000,602,624 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Administrator\Desktop\OTL.exe
========== Win32 Services (SafeList) ==========
SRV - File not found [Auto | Stopped] -- C:\WINDOWS\System32\bjqeulfx.dll -- (tsjccvfq)
SRV - File not found [Auto | Stopped] -- C:\Program Files\e-novative\WAMP\MySql\MySql Server 4.1\bin\mysqld-nt.exe -- (MySQL)
SRV - File not found [Auto | Stopped] -- C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe -- (LiveUpdate Notice Ex)
SRV - File not found [Auto | Stopped] -- C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe -- (CLTNetCnService)
SRV - File not found [On_Demand | Stopped] -- C:\Documents and Settings\David\Application Data\Mikogo\B-Service.exe -- (B-Service)
SRV - File not found [Auto | Stopped] -- C:\Program Files\e-novative\WAMP\Apache\Apache.exe -- (Apache)
SRV - [2010/12/03 09:05:32 | 001,389,400 | ---- | M] (Lavasoft) [Auto | Stopped] -- C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe -- (Lavasoft Ad-Aware Service)
SRV - [2010/11/05 17:53:56 | 000,327,000 | ---- | M] (Enigma Software Group USA, LLC.) [Auto | Running] -- C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe -- (SpyHunter 4 Service)
SRV - [2010/10/20 11:22:24 | 000,630,272 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2010/10/08 22:43:48 | 000,828,928 | ---- | M] (Security Stronghold) [Auto | Running] -- C:\Program Files\True Sword 5\TrueSwordSchedule.exe -- (TrueSwordSchedulerService)
SRV - [2010/10/03 22:43:16 | 000,767,208 | ---- | M] (Trusteer Ltd.) [Auto | Running] -- C:\Program Files\Trusteer\Rapport\bin\RapportMgmtService.exe -- (RapportMgmtService)
SRV - [2010/09/23 09:49:08 | 000,067,584 | ---- | M] (CobianSoft, Luis Cobian) [Auto | Running] -- C:\Program Files\Cobian Backup 10\cbVSCService.exe -- (cbVSCService)
SRV - [2010/09/13 16:18:32 | 000,308,656 | ---- | M] (Eastman Kodak Company) [Auto | Running] -- C:\Program Files\Kodak\AiO\Center\ekdiscovery.exe -- (Kodak AiO Network Discovery Service)
SRV - [2010/08/27 11:10:45 | 000,340,520 | ---- | M] (Kaspersky Lab) [Auto | Running] -- C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe -- (AVP)
SRV - [2010/03/25 09:27:09 | 000,604,488 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\WINDOWS\system32\TUProgSt.exe -- (TuneUp.ProgramStatisticsSvc)
SRV - [2010/03/25 09:27:06 | 000,361,288 | ---- | M] (TuneUp Software) [On_Demand | Stopped] -- C:\WINDOWS\system32\TuneUpDefragService.exe -- (TuneUp.Defrag)
SRV - [2010/03/18 12:16:28 | 000,753,504 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe -- (WPFFontCache_v0400)
SRV - [2010/03/18 12:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010/01/28 12:47:44 | 001,737,464 | ---- | M] () [Auto | Running] -- C:\Program Files\3 Mobile Broadband\3Connect\BecHelperService.exe -- (BecHelperService)
SRV - [2009/11/16 11:25:48 | 000,029,000 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\WINDOWS\system32\uxtuneup.dll -- (UxTuneUp)
SRV - [2008/08/13 17:32:40 | 000,201,968 | ---- | M] (SupportSoft, Inc.) [Auto | Running] -- C:\Program Files\Dell Support Center\bin\sprtsvc.exe -- (sprtsvc_dellsupportcenter) SupportSoft Sprocket Service (dellsupportcenter)
SRV - [2008/05/31 20:43:42 | 000,020,480 | ---- | M] () [Auto | Running] -- C:\Program Files\RemoteObserverClient\roclient.exe -- (roclient)
SRV - [2008/02/27 03:24:12 | 000,020,480 | ---- | M] (Intuit) [Auto | Running] -- C:\Program Files\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe -- (QBCFMonitorService)
SRV - [2007/11/28 19:51:10 | 000,583,048 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe -- (LiveUpdate Notice Service)
SRV - [2007/09/14 21:28:43 | 000,068,096 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe -- (Macromedia Licensing Service)
SRV - [2007/05/24 06:08:44 | 000,061,440 | ---- | M] (Intuit Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Intuit\QuickBooks\FCS\Intuit.QuickBooks.FCS.exe -- (QBFCService)
SRV - [2007/03/19 11:44:44 | 000,070,656 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\DellSupport\brkrsvc.exe -- (DSBrokerService)
SRV - [2006/11/03 19:19:58 | 000,013,592 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend)
SRV - [2006/09/14 07:56:06 | 000,102,400 | ---- | M] () [Auto | Running] -- C:\Program Files\Adobe\Photoshop Elements 5.0\PhotoshopElementsFileAgent.exe -- (AdobeActiveFileMonitor5.0)
SRV - [2006/09/02 23:36:33 | 002,528,960 | ---- | M] (Symantec Corporation) [On_Demand | Stopped] -- C:\Program Files\Symantec\LiveUpdate\LuComServer_3_1.EXE -- (LiveUpdate)
SRV - [2006/09/02 23:36:33 | 000,198,336 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe -- (Automatic LiveUpdate Scheduler)
SRV - [2005/07/06 10:14:12 | 000,471,040 | ---- | M] (Lexmark International, Inc.) [On_Demand | Running] -- C:\WINDOWS\System32\lxcecoms.exe -- (lxce_device)
SRV - [2004/10/22 03:24:18 | 000,073,728 | ---- | M] (Macrovision Corporation) [On_Demand | Stopped] -- C:\Program Files\Roxio\Roxio MyDVD Basic v9\InstallShield\Driver\1050\Intel 32\IDriverT.exe -- (IDriverT)
SRV - [2004/07/03 12:56:24 | 000,036,864 | ---- | M] () [Auto | Stopped] -- C:\WINDOWS\system32\acs.exe -- (ACS)
========== Driver Services (SafeList) ==========
DRV - File not found [Kernel | Auto | Stopped] -- C:\WINDOWS\System32\Drivers\SSPORT.sys -- (SSPORT)
DRV - File not found [Kernel | System | Stopped] -- C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\SAS_SelfExtract\SASKUTIL.SYS -- (SASKUTIL)
DRV - File not found [Kernel | System | Stopped] -- C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\SAS_SelfExtract\SASDIFSV.SYS -- (SASDIFSV)
DRV - File not found [Kernel | System | Stopped] -- C:\WINDOWS\System32\drivers\nsysutmz.sys -- (nsysutmz)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\DOCUME~1\David\LOCALS~1\Temp\00001219.nmc\nse\bin\ndiskio.sys -- (NDISKIO)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\ComboFix\catchme.sys -- (catchme)
DRV - [2010/12/03 09:05:34 | 000,064,288 | ---- | M] (Lavasoft AB) [File_System | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\Lbd.sys -- (Lbd)
DRV - [2010/10/03 22:54:04 | 000,034,792 | ---- | M] (Trusteer Ltd.) [Kernel | System | Running] -- C:\Documents and Settings\All Users\Application Data\Trusteer\Rapport\store\exts\RapportCerberus\19917\RapportCerberus_19917.sys -- (RapportCerberus_19917)
DRV - [2010/10/03 22:43:44 | 000,169,320 | ---- | M] (Trusteer Ltd.) [Kernel | System | Running] -- C:\Program Files\Trusteer\Rapport\bin\RapportPG.sys -- (RapportPG)
DRV - [2010/10/03 22:43:44 | 000,059,240 | ---- | M] (Trusteer Ltd.) [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\RapportKELL.sys -- (RapportKELL)
DRV - [2010/09/10 19:04:16 | 000,020,480 | ---- | M] (Security Stronghold) [Kernel | Auto | Running] -- C:\Program Files\Active Shield 5\ActiveShield.sys -- (DriverAS)
DRV - [2010/08/19 07:32:06 | 000,371,248 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys -- (eeCtrl)
DRV - [2010/03/25 23:59:22 | 000,243,928 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\e1e5132.sys -- (e1express) Intel®
DRV - [2010/02/26 13:32:58 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerfltj.sys -- (UsbserFilt)
DRV - [2010/02/26 13:32:46 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerflt.sys -- (upperdev)
DRV - [2010/02/26 13:32:44 | 000,022,528 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmbo.sys -- (nmwcdc)
DRV - [2010/02/26 13:32:44 | 000,018,176 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmb.sys -- (nmwcd)
DRV - [2010/02/10 08:54:45 | 000,691,696 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2010/01/28 12:35:24 | 000,010,240 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\mdvrmng.sys -- (mdvrmng)
DRV - [2010/01/28 12:34:32 | 000,102,528 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ewusbmdm.sys -- (hwdatacard)
DRV - [2010/01/28 12:34:32 | 000,100,736 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ewusbdev.sys -- (hwusbdev)
DRV - [2009/12/27 22:26:32 | 000,315,408 | ---- | M] (Kaspersky Lab) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\klif.sys -- (KLIF)
DRV - [2009/10/22 12:54:18 | 000,037,392 | ---- | M] (Kaspersky Lab) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\57373902.sys -- (57373902)
DRV - [2009/10/14 21:18:34 | 000,036,880 | ---- | M] (Kaspersky Lab) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\klbg.sys -- (klbg)
DRV - [2009/10/09 22:31:10 | 000,315,408 | ---- | M] (Kaspersky Lab) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\5737390.sys -- (setup_9.0.0.722_09.12.2010_12-20drv)
DRV - [2009/10/02 19:39:44 | 000,019,472 | ---- | M] (Kaspersky Lab) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\klmouflt.sys -- (klmouflt)
DRV - [2009/09/25 16:59:42 | 000,128,016 | ---- | M] (Kaspersky Lab) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\57373901.sys -- (57373901)
DRV - [2009/09/14 14:42:46 | 000,032,272 | ---- | M] (Kaspersky Lab) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\klim5.sys -- (klim5)
DRV - [2009/09/01 15:29:50 | 000,128,016 | ---- | M] (Kaspersky Lab) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\kl1.sys -- (kl1)
DRV - [2008/08/26 10:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2008/04/13 18:45:12 | 000,060,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\USBAUDIO.sys -- (usbaudio) USB Audio Driver (WDM)
DRV - [2008/04/13 18:36:39 | 000,043,008 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\amdagp.sys -- (amdagp)
DRV - [2008/04/13 18:36:39 | 000,040,960 | ---- | M] (Silicon Integrated Systems Corporation) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\sisagp.sys -- (sisagp)
DRV - [2008/04/13 16:36:05 | 000,144,384 | ---- | M] (Windows ® Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hdaudbus.sys -- (HDAudBus)
DRV - [2008/01/20 18:36:56 | 000,035,840 | ---- | M] (Sax software company) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\SAXNDIS.sys -- (SaxNDIS) Ax3soft Packet Driver (SaxNDIS)
DRV - [2007/09/17 00:07:00 | 006,853,088 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv)
DRV - [2007/06/22 16:59:24 | 000,479,232 | ---- | M] (eMPIA Technology, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\emBDA.sys -- (USB28xxBGA)
DRV - [2007/06/22 16:59:06 | 000,038,656 | ---- | M] (eMPIA Technology, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\emOEM.sys -- (USB28xxOEM)
DRV - [2007/06/13 19:41:44 | 004,403,712 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2007/02/25 11:10:48 | 000,005,376 | --S- | M] (Gteko Ltd.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\dsunidrv.sys -- (dsunidrv)
DRV - [2007/02/12 19:36:54 | 000,277,784 | ---- | M] (Intel Corporation) [Kernel | Boot | Stopped] -- C:\WINDOWS\system32\drivers\iaStor.sys -- (iaStor)
DRV - [2006/10/05 16:07:28 | 000,004,736 | ---- | M] (Gteko Ltd.) [Kernel | On_Demand | Stopped] -- C:\Program Files\DellSupport\GTAction\triggers\DSproct.sys -- (DSproct)
DRV - [2006/08/18 12:18:08 | 000,009,400 | ---- | M] (Roxio) [File_System | Auto | Running] -- C:\WINDOWS\system32\DLA\DLADResM.SYS -- (DLADResM)
DRV - [2006/08/18 12:17:46 | 000,035,096 | ---- | M] (Roxio) [File_System | Auto | Running] -- C:\WINDOWS\system32\DLA\DLABMFSM.SYS -- (DLABMFSM)
DRV - [2006/08/18 12:17:44 | 000,097,848 | ---- | M] (Roxio) [File_System | Auto | Running] -- C:\WINDOWS\system32\DLA\DLAUDF_M.SYS -- (DLAUDF_M)
DRV - [2006/08/18 12:17:44 | 000,094,648 | ---- | M] (Roxio) [File_System | Auto | Running] -- C:\WINDOWS\system32\DLA\DLAUDFAM.SYS -- (DLAUDFAM)
DRV - [2006/08/18 12:17:42 | 000,026,008 | ---- | M] (Roxio) [File_System | Auto | Running] -- C:\WINDOWS\system32\DLA\DLAOPIOM.SYS -- (DLAOPIOM)
DRV - [2006/08/18 12:17:40 | 000,032,472 | ---- | M] (Roxio) [File_System | Auto | Running] -- C:\WINDOWS\system32\DLA\DLABOIOM.SYS -- (DLABOIOM)
DRV - [2006/08/18 12:17:38 | 000,104,472 | ---- | M] (Roxio) [File_System | Auto | Running] -- C:\WINDOWS\system32\DLA\DLAIFS_M.SYS -- (DLAIFS_M)
DRV - [2006/08/18 12:17:38 | 000,014,520 | ---- | M] (Roxio) [File_System | Auto | Running] -- C:\WINDOWS\system32\DLA\DLAPoolM.SYS -- (DLAPoolM)
DRV - [2006/08/11 10:05:58 | 000,051,768 | ---- | M] (Roxio) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\DRVNDDM.SYS -- (DRVNDDM)
DRV - [2006/08/11 09:35:18 | 000,012,920 | ---- | M] (Roxio) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\DLACDBHM.SYS -- (DLACDBHM)
DRV - [2006/08/11 09:35:16 | 000,028,184 | ---- | M] (Roxio) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\DLARTL_M.SYS -- (DLARTL_M)
DRV - [2006/07/21 10:21:26 | 000,099,176 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\DRVMCDB.SYS -- (DRVMCDB)
DRV - [2006/06/12 18:06:28 | 000,041,984 | ---- | M] (Samsung Electronics Co., Ltd.) [Kernel | Auto | Stopped] -- C:\WINDOWS\system32\drivers\DGIVECP.SYS -- (DgiVecp)
DRV - [2005/02/17 13:46:06 | 000,283,904 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ar5523.sys -- (AR5523)
DRV - [2005/01/17 10:54:56 | 000,086,528 | ---- | M] (VideoHome Tech.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\thpbdau2.sys -- (VideoHomeBDAU2)
DRV - [2004/09/11 09:52:26 | 000,043,264 | ---- | M] (Windows ® 2000 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\athfmwdl.sys -- (ATHFMWDL)
DRV - [2004/08/04 10:00:00 | 000,223,616 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\tcpip6.sys -- (Tcpip6)
DRV - [2004/08/04 10:00:00 | 000,179,584 | ---- | M] (Mylex Corporation) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\dac2w2k.sys -- (dac2w2k)
DRV - [2004/08/04 10:00:00 | 000,088,448 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nwlnkipx.sys -- (NwlnkIpx)
DRV - [2004/08/04 10:00:00 | 000,063,232 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nwlnknb.sys -- (NwlnkNb)
DRV - [2004/08/04 10:00:00 | 000,055,936 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nwlnkspx.sys -- (NwlnkSpx)
DRV - [2004/08/04 10:00:00 | 000,049,024 | ---- | M] (QLogic Corporation) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\ql1280.sys -- (ql1280)
DRV - [2004/08/04 10:00:00 | 000,045,312 | ---- | M] (QLogic Corporation) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\ql12160.sys -- (ql12160)
DRV - [2004/08/04 10:00:00 | 000,040,320 | ---- | M] (QLogic Corporation) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\ql1080.sys -- (ql1080)
DRV - [2004/08/04 10:00:00 | 000,040,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmnt.sys -- (nm)
DRV - [2004/08/04 10:00:00 | 000,036,736 | ---- | M] (Promise Technology, Inc.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\ultra.sys -- (ultra)
DRV - [2004/08/04 10:00:00 | 000,032,640 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\symc8xx.sys -- (symc8xx)
DRV - [2004/08/04 10:00:00 | 000,030,688 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\sym_u3.sys -- (sym_u3)
DRV - [2004/08/04 10:00:00 | 000,028,384 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\sym_hi.sys -- (sym_hi)
DRV - [2004/08/04 10:00:00 | 000,026,496 | ---- | M] (Advanced System Products, Inc.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\asc.sys -- (asc)
DRV - [2004/08/04 10:00:00 | 000,019,072 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\sparrow.sys -- (Sparrow)
DRV - [2004/08/04 10:00:00 | 000,017,280 | ---- | M] (American Megatrends Inc.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\mraid35x.sys -- (mraid35x)
DRV - [2004/08/04 10:00:00 | 000,016,256 | ---- | M] (Symbios Logic Inc.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\symc810.sys -- (symc810)
DRV - [2004/08/04 10:00:00 | 000,015,360 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\mpe.sys -- (MPE)
DRV - [2004/08/04 10:00:00 | 000,014,848 | ---- | M] (Advanced System Products, Inc.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\asc3550.sys -- (asc3550)
DRV - [2004/08/04 10:00:00 | 000,006,656 | ---- | M] (CMD Technology, Inc.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\cmdide.sys -- (CmdIde)
DRV - [2004/08/04 10:00:00 | 000,005,248 | ---- | M] (Acer Laboratories Inc.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\aliide.sys -- (AliIde)
DRV - [2004/02/11 14:34:50 | 000,021,808 | ---- | M] (An Chen Computer Co., Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\Drivers\Aldebaran.sys -- (Aldebaran)
DRV - [2004/02/11 14:34:46 | 000,016,855 | ---- | M] (An Chen Computer Co., Ltd.) [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\Achernar.sys -- (Achernar)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Page_URL = www.google.co.uk/ig/dell?hl=en&client=dell-usuk&channel=uk&ibd=1070911
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.co.uk/hws/sb/dell-usuk/en/side.html?channel=uk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Start Page = www.google.co.uk/ig/dell?hl=en&client=dell-usuk&channel=uk&ibd=1070911
IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.co.uk/ig/dell?hl=en&client=dell-usuk&channel=uk&ibd=1070911
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.co.uk/ig/dell?hl=en&client=dell-usuk&channel=uk&ibd=1070911
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-2606847845-2482989819-1286820544-500\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - prefs.js..extensions.enabledItems: linkfilter@kaspersky.ru:9.0.0.736
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - HKLM\software\mozilla\Firefox\Extensions\\{6E19037A-12E3-4295-8915-ED48BC341614}: C:\Program Files\RelevantKnowledge
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.12\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010/12/08 10:49:45 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.12\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010/12/01 10:35:31 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Thunderbird\Extensions\\{eea12ec4-729d-4703-bc37-106ce9879ce2}: C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\THBExt [2010/01/16 09:49:24 | 000,000,000 | ---D | M]
[2010/12/08 12:10:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Extensions
[2010/12/23 21:49:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\r87hsvxe.default\extensions
[2010/12/23 15:38:41 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\r87hsvxe.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2007/01/01 00:39:06 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2010/09/26 14:21:45 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
[2007/01/01 00:39:07 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
[2009/12/27 22:01:00 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions\linkfilter@kaspersky.ru
[2007/01/01 00:38:45 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
[2010/10/27 05:24:34 | 000,001,538 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\amazon-en-GB.xml
[2010/10/27 05:24:34 | 000,000,947 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\chambers-en-GB.xml
[2010/10/27 05:24:34 | 000,000,769 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\eBay-en-GB.xml
[2010/10/27 05:24:34 | 000,001,135 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\yahoo-en-GB.xml
O1 HOSTS File: ([2010/12/27 17:37:41 | 000,000,734 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (&Yahoo! Toolbar Helper) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (eBay Toolbar Helper) - {22D8E815-4A5E-4DFB-845E-AAB64207F5BD} - C:\Program Files\eBay\eBay Toolbar2\eBayTb.dll (eBay Inc.)
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O2 - BHO: (IEVkbdBHO Class) - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\ievkbd.dll (Kaspersky Lab)
O2 - BHO: (CBrowserHelperObject Object) - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\Dell\BAE\BAE.dll (Dell Inc.)
O2 - BHO: (FDMIECookiesBHO Class) - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files\Free Download Manager\iefdm2.dll ()
O2 - BHO: (FilterBHO Class) - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\klwtbbho.dll (Kaspersky Lab)
O3 - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll ()
O3 - HKLM\..\Toolbar: (eBay Toolbar) - {92085AD4-F48A-450D-BD93-B28CC7DF67CE} - C:\Program Files\eBay\eBay Toolbar2\eBayTb.dll (eBay Inc.)
O3 - HKLM\..\Toolbar: (Yahoo! Toolbar) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
O4 - HKLM..\Run: [AVP] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe (Kaspersky Lab)
O4 - HKLM..\Run: [dellsupportcenter] C:\Program Files\Dell Support Center\bin\sprtcmd.exe (SupportSoft, Inc.)
O4 - HKLM..\Run: [DivXUpdate] C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
O4 - HKLM..\Run: [dscactivate] C:\Program Files\Dell Support Center\gs_agent\custom\dsca.exe ( )
O4 - HKLM..\Run: [eBayToolbar] C:\Program Files\eBay\eBay Toolbar2\eBayTBDaemon.exe (eBay Inc.)
O4 - HKLM..\Run: [EKIJ5000StatusMonitor] C:\WINDOWS\system32\spool\drivers\w32x86\3\EKIJ5000MUI.exe (Eastman Kodak Company)
O4 - HKLM..\Run: [EzPrint] C:\Program Files\Lexmark 4300 Series\ezprint.exe (Lexmark International Inc.)
O4 - HKLM..\Run: [ISUSPM Startup] C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe (Macrovision Corporation)
O4 - HKLM..\Run: [ISUSScheduler] C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe (Macrovision Corporation)
O4 - HKLM..\Run: [LXCECATS] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\LXCEtime.DLL ()
O4 - HKLM..\Run: [lxcemon.exe] C:\Program Files\Lexmark 4300 Series\lxcemon.exe (Lexmark International, Inc.)
O4 - HKLM..\Run: [NBKeyScan] C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe (Nero AG)
O4 - HKLM..\Run: [NokiaMServer] C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer.exe (Nokia)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [Presto! DVR Monitor] C:\Program Files\NewSoft\Presto! DVR\Monitor.exe (NewSoft)
O4 - HKLM..\Run: [Presto! PVR Monitor] C:\Program Files\NewSoft\Presto! PVR\Monitor.exe (NewSoft)
O4 - HKLM..\Run: [PrnStatusMX] C:\Program Files\Hewlett-Packard\PrnStatusMX\PrnStatusMX.exe (Marvell Semiconductor, Inc.)
O4 - HKLM..\Run: [SpyHunter Security Suite] C:\Program Files\Enigma Software Group\SpyHunter\SpyHunter4.exe (Enigma Software Group USA, LLC.)
O4 - HKLM..\Run: [Symantec PIF AlertEng] C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe (Symantec Corporation)
O4 - HKU\S-1-5-21-2606847845-2482989819-1286820544-500..\Run: [DellSupport] C:\Program Files\DellSupport\DSAgnt.exe (Gteko Ltd.)
O4 - HKU\S-1-5-21-2606847845-2482989819-1286820544-500..\Run: [IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe (Nero AG)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Lightsurf.lnk = C:\Program Files\LightSurf\Common\IconMgr.exe (LightSurf Technologies, Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-2606847845-2482989819-1286820544-500\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-2606847845-2482989819-1286820544-500\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-21-2606847845-2482989819-1286820544-500\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-21-2606847845-2482989819-1286820544-500\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: Add to Anti-Banner - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\ie_banner_deny.htm ()
O8 - Extra context menu item: eBay Search - C:\Program Files\eBay\eBay Toolbar2\eBayTb.dll (eBay Inc.)
O9 - Extra Button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra Button: Run WinHTTrack - {36ECAF82-3300-8F84-092E-AFF36D6C7040} - C:\Program Files\WinHTTrack\WinHTTrackIEBar.dll ()
O9 - Extra 'Tools' menuitem : Launch WinHTTrack - {36ECAF82-3300-8F84-092E-AFF36D6C7040} - C:\Program Files\WinHTTrack\WinHTTrackIEBar.dll ()
O9 - Extra Button: &Virtual keyboard - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\klwtbbho.dll (Kaspersky Lab)
O9 - Extra Button: Bonjour - {7F9DB11C-E358-4ca6-A83D-ACC663939424} - C:\Program Files\Bonjour\ExplorerPlugin.dll (Apple Inc.)
O9 - Extra Button: URLs c&heck - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\klwtbbho.dll (Kaspersky Lab)
O9 - Extra 'Tools' menuitem : Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O9 - Extra Button: Sothink SWF Catcher - {E19ADC6E-3909-43E4-9A89-B7B676377EE3} - C:\Program Files\Common Files\SourceTec\SWF Catcher\InternetExplorer.htm ()
O9 - Extra 'Tools' menuitem : Sothink SWF Catcher - {E19ADC6E-3909-43E4-9A89-B7B676377EE3} - C:\Program Files\Common Files\SourceTec\SWF Catcher\InternetExplorer.htm ()
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\WINDOWS\system32\nwprovau.dll (Microsoft Corporation)
O16 - DPF: {01A88BB1-1174-41EC-ACCB-963509EAE56B} http://support.euro.dell.com/systemprofiler/SysPro.CAB (SysProWmi Class)
O16 - DPF: {0E5F0222-96B9-11D3-8997-00104BD12D94} http://www.pcpitstop.com/betapit/PCPitStop.CAB (PCPitstop Utility)
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} http://security.symantec.com/sscv6/SharedContent/vc/bin/AvSniff.cab (Symantec AntiVirus scanner)
O16 - DPF: {4C39376E-FA9D-4349-BACC-D305C1750EF3} http://tools.ebayimg.com/eps/wl/activex/eBay_Enhanced_Picture_Control_v1-0-24-0.cab (EPUImageControl Class)
O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} http://cdn.scan.onecare.live.com/resource/download/scanner/wlscbase6770.cab (Windows Live Safety Center Base Module)
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab (Symantec RuFSI Utility Class)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1205320089281 (MUWebControl Class)
O16 - DPF: {6F6FDB9E-5072-498C-BCB0-2B7F00C49EE7} http://support.euro.dell.com/systemprofiler/DellSystemLite.CAB (DellSystemLite.Scanner)
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab (OnlineScanner Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {8FEFF364-6A5F-4966-A917-A3AC28411659} http://download.sopcast.com/download/SOPCORE.CAB (SopCore Control)
O16 - DPF: {A9F8D9EC-3D0A-4A60-BD82-FBD64BAD370D} http://h20264.www2.hp.com/ediags/dd/install/HPDriverDiagnosticsxp2k.cab (DDRevision Class)
O16 - DPF: {C1FDEE68-98D5-4F42-A4DD-D0BECF5077EB} http://tools.ebayimg.com/eps/wl/activex/eBay_Enhanced_Picture_Control_v1-0-27-0.cab (EPUImageControl Class)
O16 - DPF: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {CF84DAC5-A4F5-419E-A0BA-C01FFD71112F} http://content.systemrequirementslab.com.s3.amazonaws.com/global/bin/srldetect_intel_4.3.1.0.cab (SysInfo Class)
O16 - DPF: {E8F628B5-259A-4734-97EE-BA914D7BE941} http://plugin.driveragent.com/files/driveragent.cab (Driver Agent ActiveX Control)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254
O18 - Protocol\Handler\intu-help-qb1 {9B0F96C7-2E4B-433e-ABF3-043BA1B54AE3} - C:\Program Files\Intuit\QuickBooks 2008\HelpAsyncPluggableProtocol.dll (TODO: <Company name>)
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O20 - AppInit_DLLs: (C:\PROGRA~1\KASPER~1\KASPER~1\kloehk.dll) - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\kloehk.dll (Kaspersky Lab)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UIHost - (C:\Documents and Settings\All Users\Application Data\TuneUp Software\TuneUp Utilities\WinStyler\tu_logonui.exe) - C:\Documents and Settings\All Users\Application Data\TuneUp Software\TuneUp Utilities\WinStyler\tu_logonui.exe (Microsoft Corporation)
O20 - Winlogon\Notify\!SASWinLogon: DllName - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL (SUPERAntiSpyware.com)
O20 - Winlogon\Notify\klogon: DllName - C:\WINDOWS\system32\klogon.dll - C:\WINDOWS\system32\klogon.dll (Kaspersky Lab)
O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Bliss.bmp
O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Bliss.bmp
O28 - HKLM ShellExecuteHooks: {091EB208-39DD-417D-A5DD-7E2C2D8FB9CB} - C:\Program Files\Windows Defender\MpShHook.dll (Microsoft Corporation)
O28 - HKLM ShellExecuteHooks: {56F9679E-7826-4C84-81F3-532071A8BCC5} - C:\Program Files\Windows Desktop Search\MsnlNamespaceMgr.dll (Microsoft Corporation)
O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL (SuperAdBlocker.com)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010/12/23 15:29:39 | 000,000,000 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2010/07/02 11:53:26 | 000,000,000 | ---D | M] - G:\Autoplay CD's -- [ NTFS ]
O32 - AutoRun File - [2009/12/29 07:26:19 | 000,000,000 | ---D | M] - G:\Autoplay CD's Old -- [ NTFS ]
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
========== Files/Folders - Created Within 30 Days ==========
[2010/12/27 14:43:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\MpEngineStore
[2010/12/27 14:31:00 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Live Safety Center
[2010/12/27 09:26:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\HpUpdate
[2010/12/23 15:50:37 | 000,000,000 | RHSD | C] -- C:\cmdcons
[2010/12/23 15:47:01 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe
[2010/12/23 15:47:01 | 000,161,792 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe
[2010/12/23 15:47:01 | 000,136,704 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe
[2010/12/23 15:47:01 | 000,031,232 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe
[2010/12/23 15:46:45 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2010/12/23 15:42:38 | 000,000,000 | ---D | C] -- C:\Qoobox
[2010/12/23 15:21:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch
[2010/12/23 12:41:59 | 000,000,000 | ---D | C] -- C:\tmp
[2010/12/17 12:24:05 | 000,553,984 | R--- | C] (OldTimer Tools) -- C:\OTLPE.exe
[2010/12/17 12:22:39 | 000,000,000 | ---D | C] -- C:\_OTL
[2010/12/13 16:45:28 | 000,000,000 | ---D | C] -- C:\Program Files\Cobian Backup 10
[2010/12/10 17:18:42 | 000,000,000 | ---D | C] -- C:\Program Files\ESET
[2010/12/10 14:28:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft Corporation
[2010/12/10 12:49:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Documents\Active Shield
[2010/12/10 12:49:13 | 000,000,000 | ---D | C] -- C:\Program Files\Active Shield 5
[2010/12/10 12:28:38 | 000,356,352 | ---- | C] (eSellerate Inc.) -- C:\WINDOWS\eSellerateEngine.dll
[2010/12/10 12:28:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Documents\True Sword 5
[2010/12/10 12:28:37 | 000,081,920 | ---- | C] (eSellerate Inc.) -- C:\WINDOWS\eSellerateControl350.dll
[2010/12/10 12:28:37 | 000,000,000 | ---D | C] -- C:\Program Files\True Sword 5
[2010/12/10 12:19:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\Yahoo!
[2010/12/10 12:10:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Desktop\SysProt
[2010/12/10 12:09:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\WinRAR
[2010/12/10 10:44:17 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2010/12/10 10:44:13 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2010/12/10 10:44:13 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2010/12/10 10:34:19 | 000,315,408 | ---- | C] (Kaspersky Lab) -- C:\WINDOWS\System32\drivers\5737390.sys
[2010/12/10 10:34:19 | 000,128,016 | ---- | C] (Kaspersky Lab) -- C:\WINDOWS\System32\drivers\57373901.sys
[2010/12/10 10:34:19 | 000,037,392 | ---- | C] (Kaspersky Lab) -- C:\WINDOWS\System32\drivers\57373902.sys
[2010/12/10 10:34:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Desktop\Virus Removal Tool
[2010/12/10 10:29:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\Windows Search
[2010/12/10 10:27:02 | 000,000,000 | ---D | C] -- C:\Program Files\SUPERAntiSpyware
[2010/12/10 09:44:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\SUPERAntiSpyware.com
[2010/12/10 09:44:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\SUPERAntiSpyware.com
[2010/12/09 12:41:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\Sun
[2010/12/09 12:39:20 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarere
[2010/12/09 12:35:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\Eastman_Kodak_Company
[2010/12/09 12:35:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\Eastman Kodak Company
[2010/12/09 08:31:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\InfraRecorder
[2010/12/09 08:05:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\Macromedia
[2010/12/09 08:03:52 | 007,622,112 | ---- | C] (Malwarebytes Corporation ) -- C:\Documents and Settings\Administrator\Desktop\mbam-setup-1.50.0.0.exe
[2010/12/09 07:59:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\vShare
[2010/12/09 07:59:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\Identities
[2010/12/09 07:59:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\Ahead
[2010/12/09 07:59:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\Windows Desktop Search
[2010/12/09 07:59:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\SupportSoft
[2010/12/09 07:59:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\Nero
[2010/12/09 07:59:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\eBay
[2010/12/09 07:58:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\Trusteer
[2010/12/09 06:30:57 | 000,064,288 | ---- | C] (Lavasoft AB) -- C:\WINDOWS\System32\drivers\Lbd.sys
[2010/12/09 06:30:54 | 000,098,392 | ---- | C] (Sunbelt Software) -- C:\WINDOWS\System32\drivers\SBREDrv.sys
[2010/12/09 06:20:17 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Application Data\{2162CCC0-3A5F-4887-B51F-CE5F195B3620}
[2010/12/09 06:19:57 | 000,000,000 | ---D | C] -- C:\Program Files\Lavasoft
[2010/12/09 06:19:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Lavasoft
[2010/12/09 05:58:57 | 000,000,000 | ---D | C] -- C:\!KillBox
[2010/12/08 16:22:11 | 000,000,000 | ---D | C] -- C:\sh4ldr
[2010/12/08 16:22:11 | 000,000,000 | ---D | C] -- C:\Program Files\Enigma Software Group
[2010/12/08 15:45:12 | 000,000,000 | ---D | C] -- C:\TDSSKiller_Quarantine
[2010/12/08 13:01:08 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Defender
[2010/12/08 12:16:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\Malwarebytes
[2010/12/08 12:14:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\Macromedia
[2010/12/08 12:11:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\My Documents\Downloads
[2010/12/08 12:10:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\Mozilla
[2010/12/08 12:10:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\Mozilla
[2010/12/08 10:06:43 | 000,000,000 | ---D | C] -- C:\Program Files\Spybot - Search & Destroy
[2010/12/08 10:06:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
[2010/12/08 09:49:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\PC Tools
[2010/12/08 09:25:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\SlimBrowser
[2010/12/08 09:16:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\TuneUp Software
[2010/12/08 09:16:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\Adobe
[2010/12/08 09:15:16 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Administrator\PrivacIE
[2010/12/08 09:13:35 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Administrator\IETldCache
[2010/12/08 07:47:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
[2010/11/30 08:17:55 | 000,018,816 | ---- | C] (Nokia) -- C:\WINDOWS\System32\drivers\pccsmcfd.sys
[2010/11/30 08:17:36 | 000,000,000 | ---D | C] -- C:\Program Files\PC Connectivity Solution
========== Files - Modified Within 30 Days ==========
[2010/12/27 18:21:00 | 000,000,410 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{9453D5F3-28BC-47B0-BFC1-2C8D7B24ECB1}.job
[2010/12/27 18:20:00 | 000,000,884 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2010/12/27 18:01:14 | 000,000,472 | ---- | M] () -- C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job
[2010/12/27 18:00:00 | 000,000,486 | ---- | M] () -- C:\WINDOWS\tasks\1-Click Maintenance.job
[2010/12/27 17:58:34 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010/12/27 17:57:22 | 000,000,880 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2010/12/27 17:57:12 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010/12/27 17:37:41 | 000,000,734 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2010/12/23 22:07:35 | 000,000,815 | ---- | M] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2010/12/23 20:58:26 | 000,000,784 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2010/12/23 20:08:42 | 003,997,850 | R--- | M] () -- C:\Documents and Settings\Administrator\Desktop\ComboFix.exe
[2010/12/23 17:58:12 | 000,000,490 | -H-- | M] () -- C:\WINDOWS\tasks\Norton Security Scan for Administrator.job
[2010/12/23 17:58:12 | 000,000,474 | -H-- | M] () -- C:\WINDOWS\tasks\Norton Security Scan for David.job
[2010/12/23 17:41:04 | 000,000,721 | ---- | M] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\FlashPeak SlimBrowser.lnk
[2010/12/23 17:41:04 | 000,000,703 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\FlashPeak SlimBrowser.lnk
[2010/12/23 16:21:36 | 000,001,813 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Google Chrome.lnk
[2010/12/23 15:50:42 | 000,000,327 | RHS- | M] () -- C:\boot.ini
[2010/12/23 15:37:47 | 000,000,715 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\FlashPeak SlimBrowser.lnk
[2010/12/23 15:30:31 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\null
[2010/12/23 15:29:39 | 000,000,000 | ---- | M] () -- C:\autoexec.bat
[2010/12/23 15:29:17 | 000,512,314 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010/12/23 15:29:16 | 000,090,732 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010/12/23 15:21:04 | 000,693,664 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010/12/23 13:45:25 | 000,000,210 | ---- | M] () -- C:\Boot.bak
[2010/12/20 18:09:00 | 000,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2010/12/20 18:08:40 | 000,020,952 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2010/12/10 14:29:11 | 000,284,000 | ---- | M] () -- C:\Documents and Settings\Administrator\My Documents\Capture1.gif
[2010/12/10 12:28:41 | 000,001,598 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\True Sword.lnk
[2010/12/10 12:09:59 | 000,354,396 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\SysProt.zip
[2010/12/10 11:59:57 | 000,660,752 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\iExplore.exe
[2010/12/10 10:27:04 | 000,001,678 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\SUPERAntiSpyware Professional.lnk
[2010/12/09 08:30:44 | 195,674,112 | ---- | M] () -- C:\Documents and Settings\Administrator\My Documents\'s.BootCD.10.0.iso
[2010/12/09 08:05:34 | 000,001,769 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Macromedia Contribute 3.lnk
[2010/12/09 08:03:55 | 007,622,112 | ---- | M] (Malwarebytes Corporation ) -- C:\Documents and Settings\Administrator\Desktop\mbam-setup-1.50.0.0.exe
[2010/12/09 07:59:32 | 000,000,136 | ---- | M] () -- C:\Documents and Settings\Administrator\Local Settings\Application Data\fusioncache.dat
[2010/12/09 07:58:38 | 000,000,782 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\Windows Media Player.lnk
[2010/12/09 06:30:54 | 000,098,392 | ---- | M] (Sunbelt Software) -- C:\WINDOWS\System32\drivers\SBREDrv.sys
[2010/12/09 06:20:14 | 000,000,867 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Ad-Aware.lnk
[2010/12/08 17:05:35 | 000,732,846 | ---- | M] () -- C:\WINDOWS\umcat_01.db
[2010/12/08 16:24:57 | 000,006,096 | RHS- | M] () -- C:\Documents and Settings\All Users\ntuser.pol
[2010/12/08 13:12:03 | 000,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2010/12/08 06:37:27 | 000,114,243 | ---- | M] () -- C:\WINDOWS\System32\drivers\klin.dat
[2010/12/08 06:37:27 | 000,097,859 | ---- | M] () -- C:\WINDOWS\System32\drivers\klick.dat
[2010/12/03 09:05:34 | 000,064,288 | ---- | M] (Lavasoft AB) -- C:\WINDOWS\System32\drivers\Lbd.sys
[2010/11/30 08:14:47 | 000,001,855 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Nokia Software Updater.lnk
========== Files Created - No Company Name ==========
[2010/12/24 05:37:42 | 000,000,340 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\fix2.bat
[2010/12/24 05:35:53 | 000,000,715 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\fix1.bat
[2010/12/23 20:58:26 | 000,000,784 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2010/12/23 17:43:13 | 003,997,850 | R--- | C] () -- C:\Documents and Settings\Administrator\Desktop\ComboFix.exe
[2010/12/23 17:41:04 | 000,000,721 | ---- | C] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\FlashPeak SlimBrowser.lnk
[2010/12/23 15:50:42 | 000,000,210 | ---- | C] () -- C:\Boot.bak
[2010/12/23 15:50:39 | 000,260,272 | RHS- | C] () -- C:\cmldr
[2010/12/23 15:47:01 | 000,256,512 | ---- | C] () -- C:\WINDOWS\PEV.exe
[2010/12/23 15:47:01 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
[2010/12/23 15:47:01 | 000,089,088 | ---- | C] () -- C:\WINDOWS\MBR.exe
[2010/12/23 15:47:01 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
[2010/12/23 15:47:01 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
[2010/12/23 15:37:47 | 000,000,715 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\FlashPeak SlimBrowser.lnk
[2010/12/23 15:29:39 | 000,000,000 | ---- | C] () -- C:\autoexec.bat
[2010/12/23 15:24:43 | 000,000,330 | -H-- | C] () -- C:\WINDOWS\tasks\MP Scheduled Scan.job
[2010/12/10 16:35:15 | 000,507,360 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\sdsetup_aff.exe
[2010/12/10 14:28:07 | 000,284,000 | ---- | C] () -- C:\Documents and Settings\Administrator\My Documents\Capture1.gif
[2010/12/10 12:28:41 | 000,001,598 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\True Sword.lnk
[2010/12/10 12:09:56 | 000,354,396 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\SysProt.zip
[2010/12/10 10:27:04 | 000,001,678 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\SUPERAntiSpyware Professional.lnk
[2010/12/09 08:30:35 | 195,674,112 | ---- | C] () -- C:\Documents and Settings\Administrator\My Documents\'s.BootCD.10.0.iso
[2010/12/09 08:04:07 | 000,660,752 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\iExplore.exe
[2010/12/09 07:59:32 | 000,000,136 | ---- | C] () -- C:\Documents and Settings\Administrator\Local Settings\Application Data\fusioncache.dat
[2010/12/09 07:58:38 | 000,000,782 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\Windows Media Player.lnk
[2010/12/09 06:37:43 | 000,000,472 | ---- | C] () -- C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job
[2010/12/09 06:20:14 | 000,000,867 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Ad-Aware.lnk
[2010/12/08 17:05:19 | 000,732,846 | ---- | C] () -- C:\WINDOWS\umcat_01.db
[2010/12/08 16:24:31 | 000,006,096 | RHS- | C] () -- C:\Documents and Settings\All Users\ntuser.pol
[2010/12/08 09:32:56 | 000,000,490 | -H-- | C] () -- C:\WINDOWS\tasks\Norton Security Scan for Administrator.job
[2010/11/30 08:14:47 | 000,001,855 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Nokia Software Updater.lnk
[2010/11/16 15:56:13 | 000,000,038 | ---- | C] () -- C:\WINDOWS\AviSplitter.INI
[2010/10/23 16:30:01 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\IPPCPUID.DLL
[2010/09/21 23:12:47 | 000,000,065 | ---- | C] () -- C:\WINDOWS\Caligari.ini
[2010/09/12 19:40:20 | 000,651,264 | ---- | C] () -- C:\WINDOWS\System32\libeay32.dll
[2010/09/12 19:40:20 | 000,283,904 | ---- | C] () -- C:\WINDOWS\System32\drivers\ar5523.sys
[2010/09/12 19:40:19 | 000,147,456 | ---- | C] () -- C:\WINDOWS\System32\ssleay32.dll
[2010/09/11 11:45:02 | 000,356,856 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\FontCache3.0.0.0.dat
[2010/05/27 08:12:29 | 000,010,240 | ---- | C] () -- C:\WINDOWS\System32\drivers\mdvrmng.sys
[2010/02/10 08:54:45 | 000,691,696 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2010/02/05 08:12:04 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2010/01/13 21:12:26 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\lxcevs.dll
[2009/11/27 09:28:47 | 000,105,472 | ---- | C] () -- C:\WINDOWS\PreConvert.dll
[2009/08/03 14:07:42 | 000,403,816 | ---- | C] () -- C:\WINDOWS\System32\OGACheckControl.dll
[2009/07/13 12:22:14 | 000,061,440 | ---- | C] () -- C:\WINDOWS\System32\ZDTRLib.DLL
[2009/07/13 12:22:14 | 000,057,344 | ---- | C] () -- C:\WINDOWS\System32\ZD12APP.dll
[2009/07/13 12:22:14 | 000,011,776 | ---- | C] () -- C:\WINDOWS\System32\InsDrvZD.dll
[2009/05/29 22:42:20 | 000,309,248 | ---- | C] () -- C:\WINDOWS\System32\sqlite36_engine.dll
[2009/04/20 10:38:17 | 000,000,126 | ---- | C] () -- C:\WINDOWS\Compall.INI
[2009/03/11 19:01:28 | 000,023,552 | ---- | C] () -- C:\WINDOWS\System32\DirectCOM.dll
[2009/01/22 14:23:29 | 000,000,376 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2008/12/08 16:30:01 | 000,000,005 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\DragToDiscUserNameD.txt
[2008/12/08 15:44:36 | 000,000,005 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\DragToDiscUserNameE.txt
[2008/10/30 11:00:47 | 000,000,137 | ---- | C] () -- C:\WINDOWS\System32\09wutili.sys
[2008/09/18 14:06:36 | 000,000,070 | ---- | C] () -- C:\WINDOWS\forbes.ini
[2008/04/26 15:09:18 | 000,005,957 | ---- | C] () -- C:\WINDOWS\php_old.ini
[2008/03/27 14:05:39 | 000,000,043 | ---- | C] () -- C:\WINDOWS\gswin32.ini
[2008/02/07 09:05:18 | 000,163,840 | ---- | C] () -- C:\WINDOWS\System32\hppatusg01.dll
[2008/01/17 12:43:22 | 000,036,864 | ---- | C] () -- C:\WINDOWS\System32\ODBCSTF.DLL
[2008/01/17 12:24:30 | 000,050,326 | ---- | C] () -- C:\WINDOWS\dbetdf04.ini
[2007/09/27 09:51:02 | 000,020,698 | ---- | C] () -- C:\WINDOWS\System32\idxcntrs.ini
[2007/09/27 09:48:48 | 000,030,628 | ---- | C] () -- C:\WINDOWS\System32\gsrvctr.ini
[2007/09/27 09:48:28 | 000,031,698 | ---- | C] () -- C:\WINDOWS\System32\gthrctr.ini
[2007/09/18 00:21:44 | 000,000,125 | -HS- | C] () -- C:\Documents and Settings\All Users\Application Data\.zreglib
[2007/09/16 04:33:45 | 000,000,021 | ---- | C] () -- C:\WINDOWS\TemplateWizard.INI
[2007/09/15 12:42:51 | 000,237,568 | ---- | C] () -- C:\WINDOWS\System32\lame_enc.dll
[2007/09/11 11:53:11 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2007/09/11 11:45:27 | 000,056,056 | ---- | C] () -- C:\WINDOWS\System32\DLAAPI_W.DLL
[2007/09/11 11:45:27 | 000,000,292 | ---- | C] () -- C:\WINDOWS\wininit.ini
[2007/05/18 09:58:36 | 000,122,880 | ---- | C] () -- C:\WINDOWS\System32\FCSFORM.DLL
[2007/03/27 09:45:22 | 000,004,096 | ---- | C] () -- C:\WINDOWS\System32\sysres.dll
[2006/09/16 22:36:50 | 000,520,192 | ---- | C] () -- C:\WINDOWS\System32\CddbPlaylist2Roxio.dll
[2006/09/16 22:36:50 | 000,204,800 | ---- | C] () -- C:\WINDOWS\System32\CddbFileTaggerRoxio.dll
[2005/06/11 11:47:00 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\fpprintmon.dll
[2005/05/19 18:05:24 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\px.ini
[2005/02/01 12:36:12 | 001,323,080 | ---- | C] () -- C:\WINDOWS\DVBTBandDll.dll
[2005/01/27 13:10:08 | 000,045,056 | ---- | C] () -- C:\WINDOWS\SWBW.dll
[2004/08/11 16:24:19 | 000,000,791 | ---- | C] () -- C:\WINDOWS\orun32.ini
[2004/08/11 16:11:31 | 000,001,793 | ---- | C] () -- C:\WINDOWS\System32\fxsperf.ini
[2004/08/11 16:07:24 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2004/08/04 10:00:00 | 000,027,440 | ---- | C] () -- C:\WINDOWS\System32\drivers\secdrv.sys
[2004/08/04 00:56:46 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
========== LOP Check ==========
[2007/01/01 00:43:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Birdstep Technology
[2010/12/09 07:59:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\eBay
[2010/12/09 08:33:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\InfraRecorder
[2010/12/27 18:03:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\SlimBrowser
[2010/12/09 07:58:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Trusteer
[2010/12/08 09:16:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\TuneUp Software
[2010/12/09 07:59:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\vShare
[2010/12/09 07:59:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Windows Desktop Search
[2010/12/10 10:29:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Windows Search
[2010/05/27 08:15:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Birdstep Technology
[2008/04/08 13:51:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\COMMON FILES
[2010/02/10 08:54:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\DAEMON Tools Lite
[2010/05/27 09:06:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Eastman Kodak Company
[2007/12/09 17:35:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\eBay
[2007/09/18 00:29:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Elaborate Bytes
[2008/05/07 09:04:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\espionServerData
[2010/09/19 09:41:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\FreeDownloadManager.ORG
[2009/10/30 17:45:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\IndigoRose
[2010/11/30 08:18:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Installations
[2010/06/09 16:19:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\kds_kodak
[2008/06/28 08:10:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\LightScribe
[2010/11/08 11:58:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Nokia
[2010/07/02 11:52:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\NokiaMusic
[2010/07/02 12:45:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PC Suite
[2007/09/18 00:21:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SlySoft
[2009/02/06 11:33:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Steganos
[2009/07/24 15:41:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SupportSoft
[2010/12/10 16:37:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TEMP
[2009/06/05 09:49:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Trusteer
[2009/10/30 18:28:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TuneUp Software
[2009/01/14 12:21:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\WholeSecurity
[2010/12/09 06:20:18 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\{2162CCC0-3A5F-4887-B51F-CE5F195B3620}
[2009/07/23 12:35:16 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users\Application Data\{55A29068-F2CE-456C-9148-C869879E2357}
[2008/10/08 13:24:02 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\{B46E1EF5-0B37-4DB4-A4E2-9F2B41036185}
[2009/10/30 18:28:48 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users\Application Data\{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}
[2009/11/05 07:51:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Default User\Application Data\Trusteer
[2010/12/08 13:36:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Guest\Application Data\eBay
[2010/12/08 10:12:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Guest\Application Data\PC Suite
[2009/11/05 07:51:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Guest\Application Data\Trusteer
[2010/12/08 13:38:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Guest\Application Data\vShare
[2010/12/08 13:37:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Guest\Application Data\Windows Desktop Search
[2010/05/27 08:14:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Application Data\Birdstep Technology
[2009/10/30 08:20:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Application Data\BOM
[2009/03/09 06:08:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Application Data\Trusteer
[2009/10/30 19:00:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Application Data\TuneUp Software
[2009/04/15 08:01:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Application Data\Trusteer
[2010/12/27 18:00:00 | 000,000,486 | ---- | M] () -- C:\WINDOWS\Tasks\1-Click Maintenance.job
[2010/12/27 18:01:14 | 000,000,472 | ---- | M] () -- C:\WINDOWS\Tasks\Ad-Aware Update (Weekly).job
[2007/01/01 02:03:02 | 000,000,330 | -H-- | M] () -- C:\WINDOWS\Tasks\MP Scheduled Scan.job
[2010/12/27 18:21:00 | 000,000,410 | -H-- | M] () -- C:\WINDOWS\Tasks\User_Feed_Synchronization-{9453D5F3-28BC-47B0-BFC1-2C8D7B24ECB1}.job
========== Purity Check ==========
========== Custom Scans ==========
< %SYSTEMDRIVE%\*.exe >
[2010/10/23 17:55:39 | 000,553,984 | R--- | M] (OldTimer Tools) -- C:\OTLPE.exe
[2007/01/01 05:15:39 | 000,647,728 | ---- | M] (Xceed Software Inc. 1-450-442-2626 info@xceedsoft.com www.xceedsoft.com) -- C:\R92578.EXE
[2001/05/24 11:59:30 | 000,162,304 | ---- | M] () -- C:\UNWISE.EXE
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
[2004/08/04 10:00:00 | 000,380,957 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\WINDOWS\system32\expsrv.dll
[2004/08/04 10:00:00 | 001,355,776 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\WINDOWS\system32\msvbvm50.dll
[2004/08/04 10:00:00 | 001,392,671 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\WINDOWS\system32\msvbvm60.dll
< %systemroot%\Tasks\*.job /lockedfiles >
< %systemroot%\system32\drivers\*.sys /lockedfiles >
[2010/02/10 08:54:45 | 000,691,696 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\system32\drivers\sptd.sys
< %systemroot%\System32\config\*.sav >
[2007/01/01 09:33:32 | 000,364,544 | ---- | M] () -- C:\WINDOWS\system32\config\default.sav
[2007/01/01 08:57:38 | 000,024,576 | ---- | M] () -- C:\WINDOWS\system32\config\sam.sav
[2007/01/01 08:57:38 | 000,262,144 | ---- | M] () -- C:\WINDOWS\system32\config\security.sav
[2007/01/01 09:57:00 | 050,855,936 | ---- | M] () -- C:\WINDOWS\system32\config\software.sav
[2007/01/01 09:57:00 | 007,864,320 | ---- | M] () -- C:\WINDOWS\system32\config\system.sav
< %systemroot%\system32\drivers\*.sys /90 >
[2010/12/03 09:05:34 | 000,064,288 | ---- | M] (Lavasoft AB) -- C:\WINDOWS\system32\drivers\Lbd.sys
[2010/12/20 18:08:40 | 000,020,952 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\system32\drivers\mbam.sys
[2010/12/20 18:09:00 | 000,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\system32\drivers\mbamswissarmy.sys
[2010/10/03 22:43:44 | 000,059,240 | ---- | M] (Trusteer Ltd.) -- C:\WINDOWS\system32\drivers\RapportKELL.sys
[2010/12/23 15:54:44 | 000,057,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\drivers\redbook.sys
[2010/12/09 06:30:54 | 000,098,392 | ---- | M] (Sunbelt Software) -- C:\WINDOWS\system32\drivers\SBREDrv.sys
< End of report >
OTL logfile created on: 27/12/2010 18:20:28 - Run 2
OTL by OldTimer - Version 3.2.18.0 Folder = C:\Documents and Settings\Administrator\Desktop
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.11)
Locale: 00000809 | Country: United Kingdom | Language: ENG | Date Format: dd/MM/yyyy
2.00 Gb Total Physical Memory | 1.00 Gb Available Physical Memory | 63.00% Memory free
4.00 Gb Paging File | 3.00 Gb Available in Paging File | 85.00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 229.77 Gb Total Space | 97.07 Gb Free Space | 42.25% Space Free | Partition Type: NTFS
Drive G: | 465.75 Gb Total Space | 101.84 Gb Free Space | 21.87% Space Free | Partition Type: NTFS
Computer Name: DAVID_DELL_PC | User Name: Administrator | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2010/12/17 01:11:04 | 002,654,008 | ---- | M] (FlashPeak, Inc.) -- C:\Program Files\SlimBrowser\sbrowser.exe
PRC - [2010/11/05 17:53:56 | 000,327,000 | ---- | M] (Enigma Software Group USA, LLC.) -- C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe
PRC - [2010/10/08 22:43:48 | 000,828,928 | ---- | M] (Security Stronghold) -- C:\Program Files\True Sword 5\TrueSwordSchedule.exe
PRC - [2010/10/03 22:43:16 | 001,266,920 | ---- | M] (Trusteer Ltd.) -- C:\Program Files\Trusteer\Rapport\bin\RapportService.exe
PRC - [2010/10/03 22:43:16 | 000,767,208 | ---- | M] (Trusteer Ltd.) -- C:\Program Files\Trusteer\Rapport\bin\RapportMgmtService.exe
PRC - [2010/09/23 09:49:08 | 000,067,584 | ---- | M] (CobianSoft, Luis Cobian) -- C:\Program Files\Cobian Backup 10\cbVSCService.exe
PRC - [2010/09/13 16:18:32 | 000,308,656 | ---- | M] (Eastman Kodak Company) -- C:\Program Files\Kodak\AiO\Center\ekdiscovery.exe
PRC - [2010/09/01 06:39:18 | 001,164,584 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe
PRC - [2010/08/27 11:10:45 | 000,340,520 | ---- | M] (Kaspersky Lab) -- C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe
PRC - [2010/03/25 09:27:09 | 000,604,488 | ---- | M] (TuneUp Software) -- C:\WINDOWS\system32\TUProgSt.exe
PRC - [2010/01/28 12:47:44 | 001,737,464 | ---- | M] () -- C:\Program Files\3 Mobile Broadband\3Connect\BecHelperService.exe
PRC - [2009/05/21 09:55:32 | 000,206,064 | ---- | M] (SupportSoft, Inc.) -- C:\Program Files\Dell Support Center\bin\sprtcmd.exe
PRC - [2009/03/09 07:38:40 | 001,032,192 | ---- | M] (Nokia) -- C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer.exe
PRC - [2008/08/13 17:32:40 | 000,201,968 | ---- | M] (SupportSoft, Inc.) -- C:\Program Files\Dell Support Center\bin\sprtsvc.exe
PRC - [2008/06/24 16:06:06 | 001,840,424 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe
PRC - [2008/05/31 20:43:42 | 000,020,480 | ---- | M] () -- C:\Program Files\RemoteObserverClient\roclient.exe
PRC - [2008/02/27 03:24:12 | 000,020,480 | ---- | M] (Intuit) -- C:\Program Files\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe
PRC - [2007/11/28 19:51:10 | 000,583,048 | ---- | M] (Symantec Corporation) -- C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
PRC - [2007/08/29 15:06:10 | 001,077,248 | ---- | M] (Marvell Semiconductor, Inc.) -- C:\Program Files\Hewlett-Packard\PrnStatusMX\PrnStatusMX.exe
PRC - [2007/03/15 11:09:36 | 000,460,784 | ---- | M] (Gteko Ltd.) -- C:\Program Files\DellSupport\DSAgnt.exe
PRC - [2007/01/02 12:30:01 | 000,602,624 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Administrator\Desktop\OTL.exe
PRC - [2006/10/03 10:37:04 | 000,081,920 | ---- | M] (Macrovision Corporation) -- C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
PRC - [2006/09/14 07:56:06 | 000,102,400 | ---- | M] () -- C:\Program Files\Adobe\Photoshop Elements 5.0\PhotoshopElementsFileAgent.exe
PRC - [2006/09/02 23:36:33 | 000,198,336 | ---- | M] (Symantec Corporation) -- C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe
PRC - [2005/07/26 12:17:18 | 000,094,208 | ---- | M] (Lexmark International Inc.) -- C:\Program Files\Lexmark 4300 Series\ezprint.exe
PRC - [2005/07/06 10:14:12 | 000,471,040 | ---- | M] (Lexmark International, Inc.) -- C:\WINDOWS\system32\lxcecoms.exe
PRC - [2004/08/04 10:00:00 | 001,032,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
========== Modules (SafeList) ==========
MOD - [2010/10/03 22:43:42 | 000,431,336 | ---- | M] (Trusteer Ltd.) -- C:\Program Files\Trusteer\Rapport\bin\rooksbas.dll
MOD - [2010/08/23 16:12:02 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll
MOD - [2007/01/02 12:30:01 | 000,602,624 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Administrator\Desktop\OTL.exe
========== Win32 Services (SafeList) ==========
SRV - File not found [Auto | Stopped] -- C:\WINDOWS\System32\bjqeulfx.dll -- (tsjccvfq)
SRV - File not found [Auto | Stopped] -- C:\Program Files\e-novative\WAMP\MySql\MySql Server 4.1\bin\mysqld-nt.exe -- (MySQL)
SRV - File not found [Auto | Stopped] -- C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe -- (LiveUpdate Notice Ex)
SRV - File not found [Auto | Stopped] -- C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe -- (CLTNetCnService)
SRV - File not found [On_Demand | Stopped] -- C:\Documents and Settings\David\Application Data\Mikogo\B-Service.exe -- (B-Service)
SRV - File not found [Auto | Stopped] -- C:\Program Files\e-novative\WAMP\Apache\Apache.exe -- (Apache)
SRV - [2010/12/03 09:05:32 | 001,389,400 | ---- | M] (Lavasoft) [Auto | Stopped] -- C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe -- (Lavasoft Ad-Aware Service)
SRV - [2010/11/05 17:53:56 | 000,327,000 | ---- | M] (Enigma Software Group USA, LLC.) [Auto | Running] -- C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe -- (SpyHunter 4 Service)
SRV - [2010/10/20 11:22:24 | 000,630,272 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2010/10/08 22:43:48 | 000,828,928 | ---- | M] (Security Stronghold) [Auto | Running] -- C:\Program Files\True Sword 5\TrueSwordSchedule.exe -- (TrueSwordSchedulerService)
SRV - [2010/10/03 22:43:16 | 000,767,208 | ---- | M] (Trusteer Ltd.) [Auto | Running] -- C:\Program Files\Trusteer\Rapport\bin\RapportMgmtService.exe -- (RapportMgmtService)
SRV - [2010/09/23 09:49:08 | 000,067,584 | ---- | M] (CobianSoft, Luis Cobian) [Auto | Running] -- C:\Program Files\Cobian Backup 10\cbVSCService.exe -- (cbVSCService)
SRV - [2010/09/13 16:18:32 | 000,308,656 | ---- | M] (Eastman Kodak Company) [Auto | Running] -- C:\Program Files\Kodak\AiO\Center\ekdiscovery.exe -- (Kodak AiO Network Discovery Service)
SRV - [2010/08/27 11:10:45 | 000,340,520 | ---- | M] (Kaspersky Lab) [Auto | Running] -- C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe -- (AVP)
SRV - [2010/03/25 09:27:09 | 000,604,488 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\WINDOWS\system32\TUProgSt.exe -- (TuneUp.ProgramStatisticsSvc)
SRV - [2010/03/25 09:27:06 | 000,361,288 | ---- | M] (TuneUp Software) [On_Demand | Stopped] -- C:\WINDOWS\system32\TuneUpDefragService.exe -- (TuneUp.Defrag)
SRV - [2010/03/18 12:16:28 | 000,753,504 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe -- (WPFFontCache_v0400)
SRV - [2010/03/18 12:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010/01/28 12:47:44 | 001,737,464 | ---- | M] () [Auto | Running] -- C:\Program Files\3 Mobile Broadband\3Connect\BecHelperService.exe -- (BecHelperService)
SRV - [2009/11/16 11:25:48 | 000,029,000 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\WINDOWS\system32\uxtuneup.dll -- (UxTuneUp)
SRV - [2008/08/13 17:32:40 | 000,201,968 | ---- | M] (SupportSoft, Inc.) [Auto | Running] -- C:\Program Files\Dell Support Center\bin\sprtsvc.exe -- (sprtsvc_dellsupportcenter) SupportSoft Sprocket Service (dellsupportcenter)
SRV - [2008/05/31 20:43:42 | 000,020,480 | ---- | M] () [Auto | Running] -- C:\Program Files\RemoteObserverClient\roclient.exe -- (roclient)
SRV - [2008/02/27 03:24:12 | 000,020,480 | ---- | M] (Intuit) [Auto | Running] -- C:\Program Files\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe -- (QBCFMonitorService)
SRV - [2007/11/28 19:51:10 | 000,583,048 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe -- (LiveUpdate Notice Service)
SRV - [2007/09/14 21:28:43 | 000,068,096 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe -- (Macromedia Licensing Service)
SRV - [2007/05/24 06:08:44 | 000,061,440 | ---- | M] (Intuit Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Intuit\QuickBooks\FCS\Intuit.QuickBooks.FCS.exe -- (QBFCService)
SRV - [2007/03/19 11:44:44 | 000,070,656 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\DellSupport\brkrsvc.exe -- (DSBrokerService)
SRV - [2006/11/03 19:19:58 | 000,013,592 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend)
SRV - [2006/09/14 07:56:06 | 000,102,400 | ---- | M] () [Auto | Running] -- C:\Program Files\Adobe\Photoshop Elements 5.0\PhotoshopElementsFileAgent.exe -- (AdobeActiveFileMonitor5.0)
SRV - [2006/09/02 23:36:33 | 002,528,960 | ---- | M] (Symantec Corporation) [On_Demand | Stopped] -- C:\Program Files\Symantec\LiveUpdate\LuComServer_3_1.EXE -- (LiveUpdate)
SRV - [2006/09/02 23:36:33 | 000,198,336 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe -- (Automatic LiveUpdate Scheduler)
SRV - [2005/07/06 10:14:12 | 000,471,040 | ---- | M] (Lexmark International, Inc.) [On_Demand | Running] -- C:\WINDOWS\System32\lxcecoms.exe -- (lxce_device)
SRV - [2004/10/22 03:24:18 | 000,073,728 | ---- | M] (Macrovision Corporation) [On_Demand | Stopped] -- C:\Program Files\Roxio\Roxio MyDVD Basic v9\InstallShield\Driver\1050\Intel 32\IDriverT.exe -- (IDriverT)
SRV - [2004/07/03 12:56:24 | 000,036,864 | ---- | M] () [Auto | Stopped] -- C:\WINDOWS\system32\acs.exe -- (ACS)
========== Driver Services (SafeList) ==========
DRV - File not found [Kernel | Auto | Stopped] -- C:\WINDOWS\System32\Drivers\SSPORT.sys -- (SSPORT)
DRV - File not found [Kernel | System | Stopped] -- C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\SAS_SelfExtract\SASKUTIL.SYS -- (SASKUTIL)
DRV - File not found [Kernel | System | Stopped] -- C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\SAS_SelfExtract\SASDIFSV.SYS -- (SASDIFSV)
DRV - File not found [Kernel | System | Stopped] -- C:\WINDOWS\System32\drivers\nsysutmz.sys -- (nsysutmz)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\DOCUME~1\David\LOCALS~1\Temp\00001219.nmc\nse\bin\ndiskio.sys -- (NDISKIO)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\ComboFix\catchme.sys -- (catchme)
DRV - [2010/12/03 09:05:34 | 000,064,288 | ---- | M] (Lavasoft AB) [File_System | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\Lbd.sys -- (Lbd)
DRV - [2010/10/03 22:54:04 | 000,034,792 | ---- | M] (Trusteer Ltd.) [Kernel | System | Running] -- C:\Documents and Settings\All Users\Application Data\Trusteer\Rapport\store\exts\RapportCerberus\19917\RapportCerberus_19917.sys -- (RapportCerberus_19917)
DRV - [2010/10/03 22:43:44 | 000,169,320 | ---- | M] (Trusteer Ltd.) [Kernel | System | Running] -- C:\Program Files\Trusteer\Rapport\bin\RapportPG.sys -- (RapportPG)
DRV - [2010/10/03 22:43:44 | 000,059,240 | ---- | M] (Trusteer Ltd.) [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\RapportKELL.sys -- (RapportKELL)
DRV - [2010/09/10 19:04:16 | 000,020,480 | ---- | M] (Security Stronghold) [Kernel | Auto | Running] -- C:\Program Files\Active Shield 5\ActiveShield.sys -- (DriverAS)
DRV - [2010/08/19 07:32:06 | 000,371,248 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys -- (eeCtrl)
DRV - [2010/03/25 23:59:22 | 000,243,928 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\e1e5132.sys -- (e1express) Intel®
DRV - [2010/02/26 13:32:58 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerfltj.sys -- (UsbserFilt)
DRV - [2010/02/26 13:32:46 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerflt.sys -- (upperdev)
DRV - [2010/02/26 13:32:44 | 000,022,528 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmbo.sys -- (nmwcdc)
DRV - [2010/02/26 13:32:44 | 000,018,176 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmb.sys -- (nmwcd)
DRV - [2010/02/10 08:54:45 | 000,691,696 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2010/01/28 12:35:24 | 000,010,240 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\mdvrmng.sys -- (mdvrmng)
DRV - [2010/01/28 12:34:32 | 000,102,528 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ewusbmdm.sys -- (hwdatacard)
DRV - [2010/01/28 12:34:32 | 000,100,736 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ewusbdev.sys -- (hwusbdev)
DRV - [2009/12/27 22:26:32 | 000,315,408 | ---- | M] (Kaspersky Lab) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\klif.sys -- (KLIF)
DRV - [2009/10/22 12:54:18 | 000,037,392 | ---- | M] (Kaspersky Lab) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\57373902.sys -- (57373902)
DRV - [2009/10/14 21:18:34 | 000,036,880 | ---- | M] (Kaspersky Lab) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\klbg.sys -- (klbg)
DRV - [2009/10/09 22:31:10 | 000,315,408 | ---- | M] (Kaspersky Lab) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\5737390.sys -- (setup_9.0.0.722_09.12.2010_12-20drv)
DRV - [2009/10/02 19:39:44 | 000,019,472 | ---- | M] (Kaspersky Lab) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\klmouflt.sys -- (klmouflt)
DRV - [2009/09/25 16:59:42 | 000,128,016 | ---- | M] (Kaspersky Lab) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\57373901.sys -- (57373901)
DRV - [2009/09/14 14:42:46 | 000,032,272 | ---- | M] (Kaspersky Lab) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\klim5.sys -- (klim5)
DRV - [2009/09/01 15:29:50 | 000,128,016 | ---- | M] (Kaspersky Lab) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\kl1.sys -- (kl1)
DRV - [2008/08/26 10:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2008/04/13 18:45:12 | 000,060,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\USBAUDIO.sys -- (usbaudio) USB Audio Driver (WDM)
DRV - [2008/04/13 18:36:39 | 000,043,008 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\amdagp.sys -- (amdagp)
DRV - [2008/04/13 18:36:39 | 000,040,960 | ---- | M] (Silicon Integrated Systems Corporation) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\sisagp.sys -- (sisagp)
DRV - [2008/04/13 16:36:05 | 000,144,384 | ---- | M] (Windows ® Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hdaudbus.sys -- (HDAudBus)
DRV - [2008/01/20 18:36:56 | 000,035,840 | ---- | M] (Sax software company) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\SAXNDIS.sys -- (SaxNDIS) Ax3soft Packet Driver (SaxNDIS)
DRV - [2007/09/17 00:07:00 | 006,853,088 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv)
DRV - [2007/06/22 16:59:24 | 000,479,232 | ---- | M] (eMPIA Technology, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\emBDA.sys -- (USB28xxBGA)
DRV - [2007/06/22 16:59:06 | 000,038,656 | ---- | M] (eMPIA Technology, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\emOEM.sys -- (USB28xxOEM)
DRV - [2007/06/13 19:41:44 | 004,403,712 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2007/02/25 11:10:48 | 000,005,376 | --S- | M] (Gteko Ltd.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\dsunidrv.sys -- (dsunidrv)
DRV - [2007/02/12 19:36:54 | 000,277,784 | ---- | M] (Intel Corporation) [Kernel | Boot | Stopped] -- C:\WINDOWS\system32\drivers\iaStor.sys -- (iaStor)
DRV - [2006/10/05 16:07:28 | 000,004,736 | ---- | M] (Gteko Ltd.) [Kernel | On_Demand | Stopped] -- C:\Program Files\DellSupport\GTAction\triggers\DSproct.sys -- (DSproct)
DRV - [2006/08/18 12:18:08 | 000,009,400 | ---- | M] (Roxio) [File_System | Auto | Running] -- C:\WINDOWS\system32\DLA\DLADResM.SYS -- (DLADResM)
DRV - [2006/08/18 12:17:46 | 000,035,096 | ---- | M] (Roxio) [File_System | Auto | Running] -- C:\WINDOWS\system32\DLA\DLABMFSM.SYS -- (DLABMFSM)
DRV - [2006/08/18 12:17:44 | 000,097,848 | ---- | M] (Roxio) [File_System | Auto | Running] -- C:\WINDOWS\system32\DLA\DLAUDF_M.SYS -- (DLAUDF_M)
DRV - [2006/08/18 12:17:44 | 000,094,648 | ---- | M] (Roxio) [File_System | Auto | Running] -- C:\WINDOWS\system32\DLA\DLAUDFAM.SYS -- (DLAUDFAM)
DRV - [2006/08/18 12:17:42 | 000,026,008 | ---- | M] (Roxio) [File_System | Auto | Running] -- C:\WINDOWS\system32\DLA\DLAOPIOM.SYS -- (DLAOPIOM)
DRV - [2006/08/18 12:17:40 | 000,032,472 | ---- | M] (Roxio) [File_System | Auto | Running] -- C:\WINDOWS\system32\DLA\DLABOIOM.SYS -- (DLABOIOM)
DRV - [2006/08/18 12:17:38 | 000,104,472 | ---- | M] (Roxio) [File_System | Auto | Running] -- C:\WINDOWS\system32\DLA\DLAIFS_M.SYS -- (DLAIFS_M)
DRV - [2006/08/18 12:17:38 | 000,014,520 | ---- | M] (Roxio) [File_System | Auto | Running] -- C:\WINDOWS\system32\DLA\DLAPoolM.SYS -- (DLAPoolM)
DRV - [2006/08/11 10:05:58 | 000,051,768 | ---- | M] (Roxio) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\DRVNDDM.SYS -- (DRVNDDM)
DRV - [2006/08/11 09:35:18 | 000,012,920 | ---- | M] (Roxio) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\DLACDBHM.SYS -- (DLACDBHM)
DRV - [2006/08/11 09:35:16 | 000,028,184 | ---- | M] (Roxio) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\DLARTL_M.SYS -- (DLARTL_M)
DRV - [2006/07/21 10:21:26 | 000,099,176 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\DRVMCDB.SYS -- (DRVMCDB)
DRV - [2006/06/12 18:06:28 | 000,041,984 | ---- | M] (Samsung Electronics Co., Ltd.) [Kernel | Auto | Stopped] -- C:\WINDOWS\system32\drivers\DGIVECP.SYS -- (DgiVecp)
DRV - [2005/02/17 13:46:06 | 000,283,904 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ar5523.sys -- (AR5523)
DRV - [2005/01/17 10:54:56 | 000,086,528 | ---- | M] (VideoHome Tech.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\thpbdau2.sys -- (VideoHomeBDAU2)
DRV - [2004/09/11 09:52:26 | 000,043,264 | ---- | M] (Windows ® 2000 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\athfmwdl.sys -- (ATHFMWDL)
DRV - [2004/08/04 10:00:00 | 000,223,616 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\tcpip6.sys -- (Tcpip6)
DRV - [2004/08/04 10:00:00 | 000,179,584 | ---- | M] (Mylex Corporation) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\dac2w2k.sys -- (dac2w2k)
DRV - [2004/08/04 10:00:00 | 000,088,448 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nwlnkipx.sys -- (NwlnkIpx)
DRV - [2004/08/04 10:00:00 | 000,063,232 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nwlnknb.sys -- (NwlnkNb)
DRV - [2004/08/04 10:00:00 | 000,055,936 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nwlnkspx.sys -- (NwlnkSpx)
DRV - [2004/08/04 10:00:00 | 000,049,024 | ---- | M] (QLogic Corporation) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\ql1280.sys -- (ql1280)
DRV - [2004/08/04 10:00:00 | 000,045,312 | ---- | M] (QLogic Corporation) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\ql12160.sys -- (ql12160)
DRV - [2004/08/04 10:00:00 | 000,040,320 | ---- | M] (QLogic Corporation) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\ql1080.sys -- (ql1080)
DRV - [2004/08/04 10:00:00 | 000,040,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmnt.sys -- (nm)
DRV - [2004/08/04 10:00:00 | 000,036,736 | ---- | M] (Promise Technology, Inc.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\ultra.sys -- (ultra)
DRV - [2004/08/04 10:00:00 | 000,032,640 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\symc8xx.sys -- (symc8xx)
DRV - [2004/08/04 10:00:00 | 000,030,688 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\sym_u3.sys -- (sym_u3)
DRV - [2004/08/04 10:00:00 | 000,028,384 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\sym_hi.sys -- (sym_hi)
DRV - [2004/08/04 10:00:00 | 000,026,496 | ---- | M] (Advanced System Products, Inc.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\asc.sys -- (asc)
DRV - [2004/08/04 10:00:00 | 000,019,072 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\sparrow.sys -- (Sparrow)
DRV - [2004/08/04 10:00:00 | 000,017,280 | ---- | M] (American Megatrends Inc.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\mraid35x.sys -- (mraid35x)
DRV - [2004/08/04 10:00:00 | 000,016,256 | ---- | M] (Symbios Logic Inc.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\symc810.sys -- (symc810)
DRV - [2004/08/04 10:00:00 | 000,015,360 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\mpe.sys -- (MPE)
DRV - [2004/08/04 10:00:00 | 000,014,848 | ---- | M] (Advanced System Products, Inc.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\asc3550.sys -- (asc3550)
DRV - [2004/08/04 10:00:00 | 000,006,656 | ---- | M] (CMD Technology, Inc.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\cmdide.sys -- (CmdIde)
DRV - [2004/08/04 10:00:00 | 000,005,248 | ---- | M] (Acer Laboratories Inc.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\aliide.sys -- (AliIde)
DRV - [2004/02/11 14:34:50 | 000,021,808 | ---- | M] (An Chen Computer Co., Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\Drivers\Aldebaran.sys -- (Aldebaran)
DRV - [2004/02/11 14:34:46 | 000,016,855 | ---- | M] (An Chen Computer Co., Ltd.) [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\Achernar.sys -- (Achernar)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Page_URL = www.google.co.uk/ig/dell?hl=en&client=dell-usuk&channel=uk&ibd=1070911
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.co.uk/hws/sb/dell-usuk/en/side.html?channel=uk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Start Page = www.google.co.uk/ig/dell?hl=en&client=dell-usuk&channel=uk&ibd=1070911
IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.co.uk/ig/dell?hl=en&client=dell-usuk&channel=uk&ibd=1070911
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.co.uk/ig/dell?hl=en&client=dell-usuk&channel=uk&ibd=1070911
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-2606847845-2482989819-1286820544-500\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - prefs.js..extensions.enabledItems: linkfilter@kaspersky.ru:9.0.0.736
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - HKLM\software\mozilla\Firefox\Extensions\\{6E19037A-12E3-4295-8915-ED48BC341614}: C:\Program Files\RelevantKnowledge
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.12\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010/12/08 10:49:45 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.12\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010/12/01 10:35:31 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Thunderbird\Extensions\\{eea12ec4-729d-4703-bc37-106ce9879ce2}: C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\THBExt [2010/01/16 09:49:24 | 000,000,000 | ---D | M]
[2010/12/08 12:10:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Extensions
[2010/12/23 21:49:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\r87hsvxe.default\extensions
[2010/12/23 15:38:41 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\r87hsvxe.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2007/01/01 00:39:06 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2010/09/26 14:21:45 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
[2007/01/01 00:39:07 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
[2009/12/27 22:01:00 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions\linkfilter@kaspersky.ru
[2007/01/01 00:38:45 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
[2010/10/27 05:24:34 | 000,001,538 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\amazon-en-GB.xml
[2010/10/27 05:24:34 | 000,000,947 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\chambers-en-GB.xml
[2010/10/27 05:24:34 | 000,000,769 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\eBay-en-GB.xml
[2010/10/27 05:24:34 | 000,001,135 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\yahoo-en-GB.xml
O1 HOSTS File: ([2010/12/27 17:37:41 | 000,000,734 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (&Yahoo! Toolbar Helper) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (eBay Toolbar Helper) - {22D8E815-4A5E-4DFB-845E-AAB64207F5BD} - C:\Program Files\eBay\eBay Toolbar2\eBayTb.dll (eBay Inc.)
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O2 - BHO: (IEVkbdBHO Class) - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\ievkbd.dll (Kaspersky Lab)
O2 - BHO: (CBrowserHelperObject Object) - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\Dell\BAE\BAE.dll (Dell Inc.)
O2 - BHO: (FDMIECookiesBHO Class) - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files\Free Download Manager\iefdm2.dll ()
O2 - BHO: (FilterBHO Class) - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\klwtbbho.dll (Kaspersky Lab)
O3 - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll ()
O3 - HKLM\..\Toolbar: (eBay Toolbar) - {92085AD4-F48A-450D-BD93-B28CC7DF67CE} - C:\Program Files\eBay\eBay Toolbar2\eBayTb.dll (eBay Inc.)
O3 - HKLM\..\Toolbar: (Yahoo! Toolbar) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
O4 - HKLM..\Run: [AVP] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe (Kaspersky Lab)
O4 - HKLM..\Run: [dellsupportcenter] C:\Program Files\Dell Support Center\bin\sprtcmd.exe (SupportSoft, Inc.)
O4 - HKLM..\Run: [DivXUpdate] C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
O4 - HKLM..\Run: [dscactivate] C:\Program Files\Dell Support Center\gs_agent\custom\dsca.exe ( )
O4 - HKLM..\Run: [eBayToolbar] C:\Program Files\eBay\eBay Toolbar2\eBayTBDaemon.exe (eBay Inc.)
O4 - HKLM..\Run: [EKIJ5000StatusMonitor] C:\WINDOWS\system32\spool\drivers\w32x86\3\EKIJ5000MUI.exe (Eastman Kodak Company)
O4 - HKLM..\Run: [EzPrint] C:\Program Files\Lexmark 4300 Series\ezprint.exe (Lexmark International Inc.)
O4 - HKLM..\Run: [ISUSPM Startup] C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe (Macrovision Corporation)
O4 - HKLM..\Run: [ISUSScheduler] C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe (Macrovision Corporation)
O4 - HKLM..\Run: [LXCECATS] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\LXCEtime.DLL ()
O4 - HKLM..\Run: [lxcemon.exe] C:\Program Files\Lexmark 4300 Series\lxcemon.exe (Lexmark International, Inc.)
O4 - HKLM..\Run: [NBKeyScan] C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe (Nero AG)
O4 - HKLM..\Run: [NokiaMServer] C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer.exe (Nokia)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [Presto! DVR Monitor] C:\Program Files\NewSoft\Presto! DVR\Monitor.exe (NewSoft)
O4 - HKLM..\Run: [Presto! PVR Monitor] C:\Program Files\NewSoft\Presto! PVR\Monitor.exe (NewSoft)
O4 - HKLM..\Run: [PrnStatusMX] C:\Program Files\Hewlett-Packard\PrnStatusMX\PrnStatusMX.exe (Marvell Semiconductor, Inc.)
O4 - HKLM..\Run: [SpyHunter Security Suite] C:\Program Files\Enigma Software Group\SpyHunter\SpyHunter4.exe (Enigma Software Group USA, LLC.)
O4 - HKLM..\Run: [Symantec PIF AlertEng] C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe (Symantec Corporation)
O4 - HKU\S-1-5-21-2606847845-2482989819-1286820544-500..\Run: [DellSupport] C:\Program Files\DellSupport\DSAgnt.exe (Gteko Ltd.)
O4 - HKU\S-1-5-21-2606847845-2482989819-1286820544-500..\Run: [IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe (Nero AG)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Lightsurf.lnk = C:\Program Files\LightSurf\Common\IconMgr.exe (LightSurf Technologies, Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-2606847845-2482989819-1286820544-500\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-2606847845-2482989819-1286820544-500\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-21-2606847845-2482989819-1286820544-500\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-21-2606847845-2482989819-1286820544-500\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: Add to Anti-Banner - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\ie_banner_deny.htm ()
O8 - Extra context menu item: eBay Search - C:\Program Files\eBay\eBay Toolbar2\eBayTb.dll (eBay Inc.)
O9 - Extra Button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra Button: Run WinHTTrack - {36ECAF82-3300-8F84-092E-AFF36D6C7040} - C:\Program Files\WinHTTrack\WinHTTrackIEBar.dll ()
O9 - Extra 'Tools' menuitem : Launch WinHTTrack - {36ECAF82-3300-8F84-092E-AFF36D6C7040} - C:\Program Files\WinHTTrack\WinHTTrackIEBar.dll ()
O9 - Extra Button: &Virtual keyboard - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\klwtbbho.dll (Kaspersky Lab)
O9 - Extra Button: Bonjour - {7F9DB11C-E358-4ca6-A83D-ACC663939424} - C:\Program Files\Bonjour\ExplorerPlugin.dll (Apple Inc.)
O9 - Extra Button: URLs c&heck - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\klwtbbho.dll (Kaspersky Lab)
O9 - Extra 'Tools' menuitem : Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O9 - Extra Button: Sothink SWF Catcher - {E19ADC6E-3909-43E4-9A89-B7B676377EE3} - C:\Program Files\Common Files\SourceTec\SWF Catcher\InternetExplorer.htm ()
O9 - Extra 'Tools' menuitem : Sothink SWF Catcher - {E19ADC6E-3909-43E4-9A89-B7B676377EE3} - C:\Program Files\Common Files\SourceTec\SWF Catcher\InternetExplorer.htm ()
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\WINDOWS\system32\nwprovau.dll (Microsoft Corporation)
O16 - DPF: {01A88BB1-1174-41EC-ACCB-963509EAE56B} http://support.euro.dell.com/systemprofiler/SysPro.CAB (SysProWmi Class)
O16 - DPF: {0E5F0222-96B9-11D3-8997-00104BD12D94} http://www.pcpitstop.com/betapit/PCPitStop.CAB (PCPitstop Utility)
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} http://security.symantec.com/sscv6/SharedContent/vc/bin/AvSniff.cab (Symantec AntiVirus scanner)
O16 - DPF: {4C39376E-FA9D-4349-BACC-D305C1750EF3} http://tools.ebayimg.com/eps/wl/activex/eBay_Enhanced_Picture_Control_v1-0-24-0.cab (EPUImageControl Class)
O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} http://cdn.scan.onecare.live.com/resource/download/scanner/wlscbase6770.cab (Windows Live Safety Center Base Module)
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab (Symantec RuFSI Utility Class)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1205320089281 (MUWebControl Class)
O16 - DPF: {6F6FDB9E-5072-498C-BCB0-2B7F00C49EE7} http://support.euro.dell.com/systemprofiler/DellSystemLite.CAB (DellSystemLite.Scanner)
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab (OnlineScanner Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {8FEFF364-6A5F-4966-A917-A3AC28411659} http://download.sopcast.com/download/SOPCORE.CAB (SopCore Control)
O16 - DPF: {A9F8D9EC-3D0A-4A60-BD82-FBD64BAD370D} http://h20264.www2.hp.com/ediags/dd/install/HPDriverDiagnosticsxp2k.cab (DDRevision Class)
O16 - DPF: {C1FDEE68-98D5-4F42-A4DD-D0BECF5077EB} http://tools.ebayimg.com/eps/wl/activex/eBay_Enhanced_Picture_Control_v1-0-27-0.cab (EPUImageControl Class)
O16 - DPF: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {CF84DAC5-A4F5-419E-A0BA-C01FFD71112F} http://content.systemrequirementslab.com.s3.amazonaws.com/global/bin/srldetect_intel_4.3.1.0.cab (SysInfo Class)
O16 - DPF: {E8F628B5-259A-4734-97EE-BA914D7BE941} http://plugin.driveragent.com/files/driveragent.cab (Driver Agent ActiveX Control)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254
O18 - Protocol\Handler\intu-help-qb1 {9B0F96C7-2E4B-433e-ABF3-043BA1B54AE3} - C:\Program Files\Intuit\QuickBooks 2008\HelpAsyncPluggableProtocol.dll (TODO: <Company name>)
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O20 - AppInit_DLLs: (C:\PROGRA~1\KASPER~1\KASPER~1\kloehk.dll) - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\kloehk.dll (Kaspersky Lab)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UIHost - (C:\Documents and Settings\All Users\Application Data\TuneUp Software\TuneUp Utilities\WinStyler\tu_logonui.exe) - C:\Documents and Settings\All Users\Application Data\TuneUp Software\TuneUp Utilities\WinStyler\tu_logonui.exe (Microsoft Corporation)
O20 - Winlogon\Notify\!SASWinLogon: DllName - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL (SUPERAntiSpyware.com)
O20 - Winlogon\Notify\klogon: DllName - C:\WINDOWS\system32\klogon.dll - C:\WINDOWS\system32\klogon.dll (Kaspersky Lab)
O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Bliss.bmp
O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Bliss.bmp
O28 - HKLM ShellExecuteHooks: {091EB208-39DD-417D-A5DD-7E2C2D8FB9CB} - C:\Program Files\Windows Defender\MpShHook.dll (Microsoft Corporation)
O28 - HKLM ShellExecuteHooks: {56F9679E-7826-4C84-81F3-532071A8BCC5} - C:\Program Files\Windows Desktop Search\MsnlNamespaceMgr.dll (Microsoft Corporation)
O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL (SuperAdBlocker.com)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010/12/23 15:29:39 | 000,000,000 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2010/07/02 11:53:26 | 000,000,000 | ---D | M] - G:\Autoplay CD's -- [ NTFS ]
O32 - AutoRun File - [2009/12/29 07:26:19 | 000,000,000 | ---D | M] - G:\Autoplay CD's Old -- [ NTFS ]
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
========== Files/Folders - Created Within 30 Days ==========
[2010/12/27 14:43:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\MpEngineStore
[2010/12/27 14:31:00 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Live Safety Center
[2010/12/27 09:26:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\HpUpdate
[2010/12/23 15:50:37 | 000,000,000 | RHSD | C] -- C:\cmdcons
[2010/12/23 15:47:01 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe
[2010/12/23 15:47:01 | 000,161,792 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe
[2010/12/23 15:47:01 | 000,136,704 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe
[2010/12/23 15:47:01 | 000,031,232 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe
[2010/12/23 15:46:45 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2010/12/23 15:42:38 | 000,000,000 | ---D | C] -- C:\Qoobox
[2010/12/23 15:21:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch
[2010/12/23 12:41:59 | 000,000,000 | ---D | C] -- C:\tmp
[2010/12/17 12:24:05 | 000,553,984 | R--- | C] (OldTimer Tools) -- C:\OTLPE.exe
[2010/12/17 12:22:39 | 000,000,000 | ---D | C] -- C:\_OTL
[2010/12/13 16:45:28 | 000,000,000 | ---D | C] -- C:\Program Files\Cobian Backup 10
[2010/12/10 17:18:42 | 000,000,000 | ---D | C] -- C:\Program Files\ESET
[2010/12/10 14:28:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft Corporation
[2010/12/10 12:49:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Documents\Active Shield
[2010/12/10 12:49:13 | 000,000,000 | ---D | C] -- C:\Program Files\Active Shield 5
[2010/12/10 12:28:38 | 000,356,352 | ---- | C] (eSellerate Inc.) -- C:\WINDOWS\eSellerateEngine.dll
[2010/12/10 12:28:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Documents\True Sword 5
[2010/12/10 12:28:37 | 000,081,920 | ---- | C] (eSellerate Inc.) -- C:\WINDOWS\eSellerateControl350.dll
[2010/12/10 12:28:37 | 000,000,000 | ---D | C] -- C:\Program Files\True Sword 5
[2010/12/10 12:19:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\Yahoo!
[2010/12/10 12:10:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Desktop\SysProt
[2010/12/10 12:09:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\WinRAR
[2010/12/10 10:44:17 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2010/12/10 10:44:13 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2010/12/10 10:44:13 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2010/12/10 10:34:19 | 000,315,408 | ---- | C] (Kaspersky Lab) -- C:\WINDOWS\System32\drivers\5737390.sys
[2010/12/10 10:34:19 | 000,128,016 | ---- | C] (Kaspersky Lab) -- C:\WINDOWS\System32\drivers\57373901.sys
[2010/12/10 10:34:19 | 000,037,392 | ---- | C] (Kaspersky Lab) -- C:\WINDOWS\System32\drivers\57373902.sys
[2010/12/10 10:34:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Desktop\Virus Removal Tool
[2010/12/10 10:29:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\Windows Search
[2010/12/10 10:27:02 | 000,000,000 | ---D | C] -- C:\Program Files\SUPERAntiSpyware
[2010/12/10 09:44:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\SUPERAntiSpyware.com
[2010/12/10 09:44:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\SUPERAntiSpyware.com
[2010/12/09 12:41:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\Sun
[2010/12/09 12:39:20 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarere
[2010/12/09 12:35:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\Eastman_Kodak_Company
[2010/12/09 12:35:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\Eastman Kodak Company
[2010/12/09 08:31:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\InfraRecorder
[2010/12/09 08:05:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\Macromedia
[2010/12/09 08:03:52 | 007,622,112 | ---- | C] (Malwarebytes Corporation ) -- C:\Documents and Settings\Administrator\Desktop\mbam-setup-1.50.0.0.exe
[2010/12/09 07:59:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\vShare
[2010/12/09 07:59:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\Identities
[2010/12/09 07:59:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\Ahead
[2010/12/09 07:59:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\Windows Desktop Search
[2010/12/09 07:59:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\SupportSoft
[2010/12/09 07:59:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\Nero
[2010/12/09 07:59:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\eBay
[2010/12/09 07:58:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\Trusteer
[2010/12/09 06:30:57 | 000,064,288 | ---- | C] (Lavasoft AB) -- C:\WINDOWS\System32\drivers\Lbd.sys
[2010/12/09 06:30:54 | 000,098,392 | ---- | C] (Sunbelt Software) -- C:\WINDOWS\System32\drivers\SBREDrv.sys
[2010/12/09 06:20:17 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Application Data\{2162CCC0-3A5F-4887-B51F-CE5F195B3620}
[2010/12/09 06:19:57 | 000,000,000 | ---D | C] -- C:\Program Files\Lavasoft
[2010/12/09 06:19:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Lavasoft
[2010/12/09 05:58:57 | 000,000,000 | ---D | C] -- C:\!KillBox
[2010/12/08 16:22:11 | 000,000,000 | ---D | C] -- C:\sh4ldr
[2010/12/08 16:22:11 | 000,000,000 | ---D | C] -- C:\Program Files\Enigma Software Group
[2010/12/08 15:45:12 | 000,000,000 | ---D | C] -- C:\TDSSKiller_Quarantine
[2010/12/08 13:01:08 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Defender
[2010/12/08 12:16:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\Malwarebytes
[2010/12/08 12:14:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\Macromedia
[2010/12/08 12:11:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\My Documents\Downloads
[2010/12/08 12:10:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\Mozilla
[2010/12/08 12:10:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\Mozilla
[2010/12/08 10:06:43 | 000,000,000 | ---D | C] -- C:\Program Files\Spybot - Search & Destroy
[2010/12/08 10:06:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
[2010/12/08 09:49:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\PC Tools
[2010/12/08 09:25:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\SlimBrowser
[2010/12/08 09:16:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\TuneUp Software
[2010/12/08 09:16:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\Adobe
[2010/12/08 09:15:16 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Administrator\PrivacIE
[2010/12/08 09:13:35 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Administrator\IETldCache
[2010/12/08 07:47:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
[2010/11/30 08:17:55 | 000,018,816 | ---- | C] (Nokia) -- C:\WINDOWS\System32\drivers\pccsmcfd.sys
[2010/11/30 08:17:36 | 000,000,000 | ---D | C] -- C:\Program Files\PC Connectivity Solution
========== Files - Modified Within 30 Days ==========
[2010/12/27 18:21:00 | 000,000,410 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{9453D5F3-28BC-47B0-BFC1-2C8D7B24ECB1}.job
[2010/12/27 18:20:00 | 000,000,884 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2010/12/27 18:01:14 | 000,000,472 | ---- | M] () -- C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job
[2010/12/27 18:00:00 | 000,000,486 | ---- | M] () -- C:\WINDOWS\tasks\1-Click Maintenance.job
[2010/12/27 17:58:34 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010/12/27 17:57:22 | 000,000,880 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2010/12/27 17:57:12 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010/12/27 17:37:41 | 000,000,734 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2010/12/23 22:07:35 | 000,000,815 | ---- | M] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2010/12/23 20:58:26 | 000,000,784 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2010/12/23 20:08:42 | 003,997,850 | R--- | M] () -- C:\Documents and Settings\Administrator\Desktop\ComboFix.exe
[2010/12/23 17:58:12 | 000,000,490 | -H-- | M] () -- C:\WINDOWS\tasks\Norton Security Scan for Administrator.job
[2010/12/23 17:58:12 | 000,000,474 | -H-- | M] () -- C:\WINDOWS\tasks\Norton Security Scan for David.job
[2010/12/23 17:41:04 | 000,000,721 | ---- | M] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\FlashPeak SlimBrowser.lnk
[2010/12/23 17:41:04 | 000,000,703 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\FlashPeak SlimBrowser.lnk
[2010/12/23 16:21:36 | 000,001,813 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Google Chrome.lnk
[2010/12/23 15:50:42 | 000,000,327 | RHS- | M] () -- C:\boot.ini
[2010/12/23 15:37:47 | 000,000,715 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\FlashPeak SlimBrowser.lnk
[2010/12/23 15:30:31 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\null
[2010/12/23 15:29:39 | 000,000,000 | ---- | M] () -- C:\autoexec.bat
[2010/12/23 15:29:17 | 000,512,314 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010/12/23 15:29:16 | 000,090,732 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010/12/23 15:21:04 | 000,693,664 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010/12/23 13:45:25 | 000,000,210 | ---- | M] () -- C:\Boot.bak
[2010/12/20 18:09:00 | 000,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2010/12/20 18:08:40 | 000,020,952 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2010/12/10 14:29:11 | 000,284,000 | ---- | M] () -- C:\Documents and Settings\Administrator\My Documents\Capture1.gif
[2010/12/10 12:28:41 | 000,001,598 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\True Sword.lnk
[2010/12/10 12:09:59 | 000,354,396 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\SysProt.zip
[2010/12/10 11:59:57 | 000,660,752 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\iExplore.exe
[2010/12/10 10:27:04 | 000,001,678 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\SUPERAntiSpyware Professional.lnk
[2010/12/09 08:30:44 | 195,674,112 | ---- | M] () -- C:\Documents and Settings\Administrator\My Documents\'s.BootCD.10.0.iso
[2010/12/09 08:05:34 | 000,001,769 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Macromedia Contribute 3.lnk
[2010/12/09 08:03:55 | 007,622,112 | ---- | M] (Malwarebytes Corporation ) -- C:\Documents and Settings\Administrator\Desktop\mbam-setup-1.50.0.0.exe
[2010/12/09 07:59:32 | 000,000,136 | ---- | M] () -- C:\Documents and Settings\Administrator\Local Settings\Application Data\fusioncache.dat
[2010/12/09 07:58:38 | 000,000,782 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\Windows Media Player.lnk
[2010/12/09 06:30:54 | 000,098,392 | ---- | M] (Sunbelt Software) -- C:\WINDOWS\System32\drivers\SBREDrv.sys
[2010/12/09 06:20:14 | 000,000,867 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Ad-Aware.lnk
[2010/12/08 17:05:35 | 000,732,846 | ---- | M] () -- C:\WINDOWS\umcat_01.db
[2010/12/08 16:24:57 | 000,006,096 | RHS- | M] () -- C:\Documents and Settings\All Users\ntuser.pol
[2010/12/08 13:12:03 | 000,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2010/12/08 06:37:27 | 000,114,243 | ---- | M] () -- C:\WINDOWS\System32\drivers\klin.dat
[2010/12/08 06:37:27 | 000,097,859 | ---- | M] () -- C:\WINDOWS\System32\drivers\klick.dat
[2010/12/03 09:05:34 | 000,064,288 | ---- | M] (Lavasoft AB) -- C:\WINDOWS\System32\drivers\Lbd.sys
[2010/11/30 08:14:47 | 000,001,855 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Nokia Software Updater.lnk
========== Files Created - No Company Name ==========
[2010/12/24 05:37:42 | 000,000,340 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\fix2.bat
[2010/12/24 05:35:53 | 000,000,715 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\fix1.bat
[2010/12/23 20:58:26 | 000,000,784 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2010/12/23 17:43:13 | 003,997,850 | R--- | C] () -- C:\Documents and Settings\Administrator\Desktop\ComboFix.exe
[2010/12/23 17:41:04 | 000,000,721 | ---- | C] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\FlashPeak SlimBrowser.lnk
[2010/12/23 15:50:42 | 000,000,210 | ---- | C] () -- C:\Boot.bak
[2010/12/23 15:50:39 | 000,260,272 | RHS- | C] () -- C:\cmldr
[2010/12/23 15:47:01 | 000,256,512 | ---- | C] () -- C:\WINDOWS\PEV.exe
[2010/12/23 15:47:01 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
[2010/12/23 15:47:01 | 000,089,088 | ---- | C] () -- C:\WINDOWS\MBR.exe
[2010/12/23 15:47:01 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
[2010/12/23 15:47:01 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
[2010/12/23 15:37:47 | 000,000,715 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\FlashPeak SlimBrowser.lnk
[2010/12/23 15:29:39 | 000,000,000 | ---- | C] () -- C:\autoexec.bat
[2010/12/23 15:24:43 | 000,000,330 | -H-- | C] () -- C:\WINDOWS\tasks\MP Scheduled Scan.job
[2010/12/10 16:35:15 | 000,507,360 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\sdsetup_aff.exe
[2010/12/10 14:28:07 | 000,284,000 | ---- | C] () -- C:\Documents and Settings\Administrator\My Documents\Capture1.gif
[2010/12/10 12:28:41 | 000,001,598 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\True Sword.lnk
[2010/12/10 12:09:56 | 000,354,396 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\SysProt.zip
[2010/12/10 10:27:04 | 000,001,678 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\SUPERAntiSpyware Professional.lnk
[2010/12/09 08:30:35 | 195,674,112 | ---- | C] () -- C:\Documents and Settings\Administrator\My Documents\'s.BootCD.10.0.iso
[2010/12/09 08:04:07 | 000,660,752 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\iExplore.exe
[2010/12/09 07:59:32 | 000,000,136 | ---- | C] () -- C:\Documents and Settings\Administrator\Local Settings\Application Data\fusioncache.dat
[2010/12/09 07:58:38 | 000,000,782 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\Windows Media Player.lnk
[2010/12/09 06:37:43 | 000,000,472 | ---- | C] () -- C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job
[2010/12/09 06:20:14 | 000,000,867 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Ad-Aware.lnk
[2010/12/08 17:05:19 | 000,732,846 | ---- | C] () -- C:\WINDOWS\umcat_01.db
[2010/12/08 16:24:31 | 000,006,096 | RHS- | C] () -- C:\Documents and Settings\All Users\ntuser.pol
[2010/12/08 09:32:56 | 000,000,490 | -H-- | C] () -- C:\WINDOWS\tasks\Norton Security Scan for Administrator.job
[2010/11/30 08:14:47 | 000,001,855 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Nokia Software Updater.lnk
[2010/11/16 15:56:13 | 000,000,038 | ---- | C] () -- C:\WINDOWS\AviSplitter.INI
[2010/10/23 16:30:01 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\IPPCPUID.DLL
[2010/09/21 23:12:47 | 000,000,065 | ---- | C] () -- C:\WINDOWS\Caligari.ini
[2010/09/12 19:40:20 | 000,651,264 | ---- | C] () -- C:\WINDOWS\System32\libeay32.dll
[2010/09/12 19:40:20 | 000,283,904 | ---- | C] () -- C:\WINDOWS\System32\drivers\ar5523.sys
[2010/09/12 19:40:19 | 000,147,456 | ---- | C] () -- C:\WINDOWS\System32\ssleay32.dll
[2010/09/11 11:45:02 | 000,356,856 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\FontCache3.0.0.0.dat
[2010/05/27 08:12:29 | 000,010,240 | ---- | C] () -- C:\WINDOWS\System32\drivers\mdvrmng.sys
[2010/02/10 08:54:45 | 000,691,696 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2010/02/05 08:12:04 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2010/01/13 21:12:26 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\lxcevs.dll
[2009/11/27 09:28:47 | 000,105,472 | ---- | C] () -- C:\WINDOWS\PreConvert.dll
[2009/08/03 14:07:42 | 000,403,816 | ---- | C] () -- C:\WINDOWS\System32\OGACheckControl.dll
[2009/07/13 12:22:14 | 000,061,440 | ---- | C] () -- C:\WINDOWS\System32\ZDTRLib.DLL
[2009/07/13 12:22:14 | 000,057,344 | ---- | C] () -- C:\WINDOWS\System32\ZD12APP.dll
[2009/07/13 12:22:14 | 000,011,776 | ---- | C] () -- C:\WINDOWS\System32\InsDrvZD.dll
[2009/05/29 22:42:20 | 000,309,248 | ---- | C] () -- C:\WINDOWS\System32\sqlite36_engine.dll
[2009/04/20 10:38:17 | 000,000,126 | ---- | C] () -- C:\WINDOWS\Compall.INI
[2009/03/11 19:01:28 | 000,023,552 | ---- | C] () -- C:\WINDOWS\System32\DirectCOM.dll
[2009/01/22 14:23:29 | 000,000,376 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2008/12/08 16:30:01 | 000,000,005 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\DragToDiscUserNameD.txt
[2008/12/08 15:44:36 | 000,000,005 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\DragToDiscUserNameE.txt
[2008/10/30 11:00:47 | 000,000,137 | ---- | C] () -- C:\WINDOWS\System32\09wutili.sys
[2008/09/18 14:06:36 | 000,000,070 | ---- | C] () -- C:\WINDOWS\forbes.ini
[2008/04/26 15:09:18 | 000,005,957 | ---- | C] () -- C:\WINDOWS\php_old.ini
[2008/03/27 14:05:39 | 000,000,043 | ---- | C] () -- C:\WINDOWS\gswin32.ini
[2008/02/07 09:05:18 | 000,163,840 | ---- | C] () -- C:\WINDOWS\System32\hppatusg01.dll
[2008/01/17 12:43:22 | 000,036,864 | ---- | C] () -- C:\WINDOWS\System32\ODBCSTF.DLL
[2008/01/17 12:24:30 | 000,050,326 | ---- | C] () -- C:\WINDOWS\dbetdf04.ini
[2007/09/27 09:51:02 | 000,020,698 | ---- | C] () -- C:\WINDOWS\System32\idxcntrs.ini
[2007/09/27 09:48:48 | 000,030,628 | ---- | C] () -- C:\WINDOWS\System32\gsrvctr.ini
[2007/09/27 09:48:28 | 000,031,698 | ---- | C] () -- C:\WINDOWS\System32\gthrctr.ini
[2007/09/18 00:21:44 | 000,000,125 | -HS- | C] () -- C:\Documents and Settings\All Users\Application Data\.zreglib
[2007/09/16 04:33:45 | 000,000,021 | ---- | C] () -- C:\WINDOWS\TemplateWizard.INI
[2007/09/15 12:42:51 | 000,237,568 | ---- | C] () -- C:\WINDOWS\System32\lame_enc.dll
[2007/09/11 11:53:11 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2007/09/11 11:45:27 | 000,056,056 | ---- | C] () -- C:\WINDOWS\System32\DLAAPI_W.DLL
[2007/09/11 11:45:27 | 000,000,292 | ---- | C] () -- C:\WINDOWS\wininit.ini
[2007/05/18 09:58:36 | 000,122,880 | ---- | C] () -- C:\WINDOWS\System32\FCSFORM.DLL
[2007/03/27 09:45:22 | 000,004,096 | ---- | C] () -- C:\WINDOWS\System32\sysres.dll
[2006/09/16 22:36:50 | 000,520,192 | ---- | C] () -- C:\WINDOWS\System32\CddbPlaylist2Roxio.dll
[2006/09/16 22:36:50 | 000,204,800 | ---- | C] () -- C:\WINDOWS\System32\CddbFileTaggerRoxio.dll
[2005/06/11 11:47:00 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\fpprintmon.dll
[2005/05/19 18:05:24 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\px.ini
[2005/02/01 12:36:12 | 001,323,080 | ---- | C] () -- C:\WINDOWS\DVBTBandDll.dll
[2005/01/27 13:10:08 | 000,045,056 | ---- | C] () -- C:\WINDOWS\SWBW.dll
[2004/08/11 16:24:19 | 000,000,791 | ---- | C] () -- C:\WINDOWS\orun32.ini
[2004/08/11 16:11:31 | 000,001,793 | ---- | C] () -- C:\WINDOWS\System32\fxsperf.ini
[2004/08/11 16:07:24 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2004/08/04 10:00:00 | 000,027,440 | ---- | C] () -- C:\WINDOWS\System32\drivers\secdrv.sys
[2004/08/04 00:56:46 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
========== LOP Check ==========
[2007/01/01 00:43:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Birdstep Technology
[2010/12/09 07:59:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\eBay
[2010/12/09 08:33:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\InfraRecorder
[2010/12/27 18:03:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\SlimBrowser
[2010/12/09 07:58:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Trusteer
[2010/12/08 09:16:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\TuneUp Software
[2010/12/09 07:59:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\vShare
[2010/12/09 07:59:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Windows Desktop Search
[2010/12/10 10:29:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Windows Search
[2010/05/27 08:15:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Birdstep Technology
[2008/04/08 13:51:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\COMMON FILES
[2010/02/10 08:54:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\DAEMON Tools Lite
[2010/05/27 09:06:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Eastman Kodak Company
[2007/12/09 17:35:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\eBay
[2007/09/18 00:29:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Elaborate Bytes
[2008/05/07 09:04:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\espionServerData
[2010/09/19 09:41:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\FreeDownloadManager.ORG
[2009/10/30 17:45:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\IndigoRose
[2010/11/30 08:18:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Installations
[2010/06/09 16:19:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\kds_kodak
[2008/06/28 08:10:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\LightScribe
[2010/11/08 11:58:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Nokia
[2010/07/02 11:52:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\NokiaMusic
[2010/07/02 12:45:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PC Suite
[2007/09/18 00:21:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SlySoft
[2009/02/06 11:33:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Steganos
[2009/07/24 15:41:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SupportSoft
[2010/12/10 16:37:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TEMP
[2009/06/05 09:49:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Trusteer
[2009/10/30 18:28:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TuneUp Software
[2009/01/14 12:21:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\WholeSecurity
[2010/12/09 06:20:18 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\{2162CCC0-3A5F-4887-B51F-CE5F195B3620}
[2009/07/23 12:35:16 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users\Application Data\{55A29068-F2CE-456C-9148-C869879E2357}
[2008/10/08 13:24:02 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\{B46E1EF5-0B37-4DB4-A4E2-9F2B41036185}
[2009/10/30 18:28:48 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users\Application Data\{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}
[2009/11/05 07:51:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Default User\Application Data\Trusteer
[2010/12/08 13:36:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Guest\Application Data\eBay
[2010/12/08 10:12:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Guest\Application Data\PC Suite
[2009/11/05 07:51:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Guest\Application Data\Trusteer
[2010/12/08 13:38:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Guest\Application Data\vShare
[2010/12/08 13:37:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Guest\Application Data\Windows Desktop Search
[2010/05/27 08:14:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Application Data\Birdstep Technology
[2009/10/30 08:20:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Application Data\BOM
[2009/03/09 06:08:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Application Data\Trusteer
[2009/10/30 19:00:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Application Data\TuneUp Software
[2009/04/15 08:01:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Application Data\Trusteer
[2010/12/27 18:00:00 | 000,000,486 | ---- | M] () -- C:\WINDOWS\Tasks\1-Click Maintenance.job
[2010/12/27 18:01:14 | 000,000,472 | ---- | M] () -- C:\WINDOWS\Tasks\Ad-Aware Update (Weekly).job
[2007/01/01 02:03:02 | 000,000,330 | -H-- | M] () -- C:\WINDOWS\Tasks\MP Scheduled Scan.job
[2010/12/27 18:21:00 | 000,000,410 | -H-- | M] () -- C:\WINDOWS\Tasks\User_Feed_Synchronization-{9453D5F3-28BC-47B0-BFC1-2C8D7B24ECB1}.job
========== Purity Check ==========
========== Custom Scans ==========
< %SYSTEMDRIVE%\*.exe >
[2010/10/23 17:55:39 | 000,553,984 | R--- | M] (OldTimer Tools) -- C:\OTLPE.exe
[2007/01/01 05:15:39 | 000,647,728 | ---- | M] (Xceed Software Inc. 1-450-442-2626 info@xceedsoft.com www.xceedsoft.com) -- C:\R92578.EXE
[2001/05/24 11:59:30 | 000,162,304 | ---- | M] () -- C:\UNWISE.EXE
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
[2004/08/04 10:00:00 | 000,380,957 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\WINDOWS\system32\expsrv.dll
[2004/08/04 10:00:00 | 001,355,776 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\WINDOWS\system32\msvbvm50.dll
[2004/08/04 10:00:00 | 001,392,671 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\WINDOWS\system32\msvbvm60.dll
< %systemroot%\Tasks\*.job /lockedfiles >
< %systemroot%\system32\drivers\*.sys /lockedfiles >
[2010/02/10 08:54:45 | 000,691,696 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\system32\drivers\sptd.sys
< %systemroot%\System32\config\*.sav >
[2007/01/01 09:33:32 | 000,364,544 | ---- | M] () -- C:\WINDOWS\system32\config\default.sav
[2007/01/01 08:57:38 | 000,024,576 | ---- | M] () -- C:\WINDOWS\system32\config\sam.sav
[2007/01/01 08:57:38 | 000,262,144 | ---- | M] () -- C:\WINDOWS\system32\config\security.sav
[2007/01/01 09:57:00 | 050,855,936 | ---- | M] () -- C:\WINDOWS\system32\config\software.sav
[2007/01/01 09:57:00 | 007,864,320 | ---- | M] () -- C:\WINDOWS\system32\config\system.sav
< %systemroot%\system32\drivers\*.sys /90 >
[2010/12/03 09:05:34 | 000,064,288 | ---- | M] (Lavasoft AB) -- C:\WINDOWS\system32\drivers\Lbd.sys
[2010/12/20 18:08:40 | 000,020,952 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\system32\drivers\mbam.sys
[2010/12/20 18:09:00 | 000,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\system32\drivers\mbamswissarmy.sys
[2010/10/03 22:43:44 | 000,059,240 | ---- | M] (Trusteer Ltd.) -- C:\WINDOWS\system32\drivers\RapportKELL.sys
[2010/12/23 15:54:44 | 000,057,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\drivers\redbook.sys
[2010/12/09 06:30:54 | 000,098,392 | ---- | M] (Sunbelt Software) -- C:\WINDOWS\system32\drivers\SBREDrv.sys
< End of report >
#13
dave1708
- Topic Starter
-
- Members
- 11 posts
- OFFLINE
- Local time:06:57 PM
Posted 27 December 2010 - 01:33 PM
And the cmd:
# Copyright © 1993-1999 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host
127.0.0.1 localhost
# Copyright © 1993-1999 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host
127.0.0.1 localhost
#14
sundavis
-
- Malware Response Team
- 2,708 posts
- OFFLINE
- Gender:Not Telling
- Local time:06:57 PM
Posted 27 December 2010 - 01:50 PM
Hi dave1708,
Step1
After that, please proceed the next steps accordingly.
In your next reply, please post back:
1.OTL delete log
2.Eset Online scanner Report
Let me know if you have any remaining issues on your pc.
Step1
- Please start OTL on your desktop.
- Under the Custom Scans/Fixes box at the bottom, copy/paste the following contents of code box.
:OTL SRV - File not found [Auto | Stopped] -- C:\WINDOWS\System32\bjqeulfx.dll -- (tsjccvfq) DRV - File not found [Kernel | System | Stopped] -- C:\WINDOWS\System32\drivers\nsysutmz.sys -- (nsysutmz) :Files C:\WINDOWS\System32\drivers\nsysutmz.sys C:\WINDOWS\system32\bjqeulfx.dll :Commands [purity] [emptytemp] [EMPTYFLASH] [start explorer] [Reboot]
- Click Run Fix button on the top.
- Click OK and let it run unhindered.
- OTL will ask to reboot the machine. Please OK the prompt.
- A report will open. Copy and Paste that report in your next reply.
After that, please proceed the next steps accordingly.
In your next reply, please post back:
1.OTL delete log
2.Eset Online scanner Report
Let me know if you have any remaining issues on your pc.
#15
dave1708
- Topic Starter
-
- Members
- 11 posts
- OFFLINE
- Local time:06:57 PM
Posted 27 December 2010 - 02:25 PM
OTL dlete log:
All processes killed
========== OTL ==========
Service tsjccvfq stopped successfully!
Service tsjccvfq deleted successfully!
File C:\WINDOWS\System32\bjqeulfx.dll not found.
Service nsysutmz stopped successfully!
Service nsysutmz deleted successfully!
File C:\WINDOWS\System32\drivers\nsysutmz.sys not found.
========== FILES ==========
File\Folder C:\WINDOWS\System32\drivers\nsysutmz.sys not found.
File\Folder C:\WINDOWS\system32\bjqeulfx.dll not found.
========== COMMANDS ==========
[EMPTYTEMP]
User: Adminiatrator
User: Administrator
->Temp folder emptied: 789054 bytes
->Temporary Internet Files folder emptied: 2237222 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 0 bytes
->Flash cache emptied: 0 bytes
User: All Users
User: David
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Guest
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->FireFox cache emptied: 0 bytes
->Flash cache emptied: 0 bytes
User: LocalService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 33273 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 0 bytes
Total Files Cleaned = 3.00 mb
[EMPTYFLASH]
User: Adminiatrator
User: Administrator
->Flash cache emptied: 0 bytes
User: All Users
User: David
User: Default User
User: Guest
->Flash cache emptied: 0 bytes
User: LocalService
User: NetworkService
Total Flash Files Cleaned = 0.00 mb
OTL by OldTimer - Version 3.2.18.0 log created on 12272010_190231
Files\Folders moved on Reboot...
Registry entries deleted on Reboot...
All processes killed
========== OTL ==========
Service tsjccvfq stopped successfully!
Service tsjccvfq deleted successfully!
File C:\WINDOWS\System32\bjqeulfx.dll not found.
Service nsysutmz stopped successfully!
Service nsysutmz deleted successfully!
File C:\WINDOWS\System32\drivers\nsysutmz.sys not found.
========== FILES ==========
File\Folder C:\WINDOWS\System32\drivers\nsysutmz.sys not found.
File\Folder C:\WINDOWS\system32\bjqeulfx.dll not found.
========== COMMANDS ==========
[EMPTYTEMP]
User: Adminiatrator
User: Administrator
->Temp folder emptied: 789054 bytes
->Temporary Internet Files folder emptied: 2237222 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 0 bytes
->Flash cache emptied: 0 bytes
User: All Users
User: David
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Guest
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->FireFox cache emptied: 0 bytes
->Flash cache emptied: 0 bytes
User: LocalService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 33273 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 0 bytes
Total Files Cleaned = 3.00 mb
[EMPTYFLASH]
User: Adminiatrator
User: Administrator
->Flash cache emptied: 0 bytes
User: All Users
User: David
User: Default User
User: Guest
->Flash cache emptied: 0 bytes
User: LocalService
User: NetworkService
Total Flash Files Cleaned = 0.00 mb
OTL by OldTimer - Version 3.2.18.0 log created on 12272010_190231
Files\Folders moved on Reboot...
Registry entries deleted on Reboot...
0 user(s) are reading this topic
0 members, 0 guests, 0 anonymous users
