Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

need help my laptop wont boot up no more in no mode


  • This topic is locked This topic is locked
20 replies to this topic

#1 soliz53

soliz53

  • Members
  • 45 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:san diego
  • Local time:11:48 PM

Posted 27 May 2011 - 10:17 PM

well i downloaded a file online and it was infected so now i cant run windows. i currently have a windows 7 cpu. after alot of research i decided to use norton bootable recovery tool after it ran throughout the night, this morning mention the malware BOOT.TIDSERV.C and it said it was unable to fix

i tried to remove the virus by removing the hd from my laptop and scanning it with norton and nothing it said it couldnt fix it either but i can recover all my stuff but im scared to do that cuse i dont want to infect other stuff in the process. so if anyone could help thank in advance.

BC AdBot (Login to Remove)

 


#2 Farbar

Farbar

    Just Curious


  • Security Developer
  • 21,706 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Netherlands
  • Local time:08:48 AM

Posted 28 May 2011 - 04:06 AM

Hi soliz53,

Welcome to Bleeping computer. I will be assisting you.

For x32 (x86) bit systems download Farbar Recovery Scan Tool and save it to a flash drive.
For x64 bit systems download Farbar Recovery Scan Tool x64 and save it to a flash drive.

Plug the flashdrive into the infected PC.

Enter System Recovery Options.

To enter System Recovery Options from the Advanced Boot Options:
  • Restart the computer.
  • As soon as the BIOS is loaded begin tapping the F8 key until Advanced Boot Options appears.
  • Use the arrow keys to select the Repair your computer menu item.
  • Choose your language settings, and then click Next.
  • Select the operating system you want to repair, and then click Next.
  • Select your user account an click Next.

On the System Recovery Options menu you will get the following options:
Startup Repair
System Restore
Windows Complete PC Restore
Windows Memory Diagnostic Tool
Scan your computer's memory for errors.
Command Prompt
[*]Select Command Prompt
[*]In the command window type in notepad and press Enter.
[*]The notepad opens. Under File menu select Open.
[*]Select "Computer" and find your flash drive letter and close the notepad.
[*]In the command window type e:\frst.exe (for x64 bit version type e:\frst64) and press Enter
Note: Replace letter e with the drive letter of your flash drive.
[*]The tool will start to run.
[*]When the tool opens click Yes to disclaimer.
[*]Press Scan button.
[*]It will make a log (FRST.txt) on the flash drive. Please copy and paste it to your reply.[/list]

#3 soliz53

soliz53
  • Topic Starter

  • Members
  • 45 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:san diego
  • Local time:11:48 PM

Posted 28 May 2011 - 10:36 AM

thank you very much for helping me.. oh its a 64bit system cuse that is the only one that worked. the first one didnt work.

here is the file.

Scan result of Farbars's Recovery Tool (FRST written by farbar) Version 2.0.8
Ran by SYSTEM at 2011-05-28 08:23:52
Running from F:\
Windows 7 Home Premium (X64) OS Language: English(US)
The current controlset is ControlSet001

========================== Registry ==========================

HKLM\...\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup (NVIDIA Corporation)[16395880 2009-11-02]
HKLM\...\Run: [lxcrmon.exe] "C:\Program Files (x86)\Lexmark 2400 Series\lxcrmon.exe" ()[291496 2009-05-01]
HKLM\...\Run: [EzPrint] "C:\Program Files (x86)\Lexmark 2400 Series\ezprint.exe" (Lexmark International Inc.)[82600 2009-05-01]
HKLM\...\Run: [LXCRCATS] rundll32 C:\Windows\system32\spool\DRIVERS\x64\3\LXCRtime.dll,RunDLLEntry (Lexmark International Inc.)[31744 2006-11-21]
HKLM\...\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s (Realtek Semiconductor)[10060320 2010-02-09]
HKLM\...\Run: [Zune Launcher] "C:\Program Files\Zune\ZuneLauncher.exe" (Microsoft Corporation)[163568 2010-11-11]
HKLM-x32\...\Run: [avast5] "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui (AVAST Software)[3396624 2011-01-13]
HKLM-x32\...\Run: [RemoteControl] "C:\Program Files (x86)\CyberLink\PowerDVD\PDVDServ.exe" (Cyberlink Corp.)[29696 2006-09-18]
HKLM-x32\...\Run: [LanguageShortcut] "C:\Program Files (x86)\CyberLink\PowerDVD\Language\Language.exe" ()[49152 2006-09-29]
HKLM-x32\...\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime (Apple Inc.)[421888 2010-11-29]
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe" (Adobe Systems Incorporated)[35736 2011-01-30]
HKLM-x32\...\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" (Adobe Systems Incorporated)[932288 2010-11-10]
HKLM-x32\...\Run: [ISBMgr.exe] "C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe" (Sony Corporation)[320880 2009-08-26]
HKLM-x32\...\Run: [AdobeCS4ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" -launchedbylogin (Adobe Systems Incorporated)[611712 2008-08-14]
HKLM-x32\...\Run: [Adobe Acrobat Speed Launcher] "C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe" (Adobe Systems Incorporated)[38840 2011-01-31]
HKLM-x32\...\Run: []
HKLM-x32\...\Run: [Acrobat Assistant 8.0] "C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe" (Adobe Systems Inc.)[640440 2010-09-22]
HKLM-x32\...\Run: [Adobe_ID0ENQBO] C:\PROGRA~2\COMMON~1\Adobe\ADOBEV~1\Server\bin\VERSIO~2.EXE (Adobe Systems Incorporated)[378224 2008-08-15]
HKLM-x32\...\Run: [AppleSyncNotifier] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe (Apple Inc.)[58656 2011-04-20]
HKLM-x32\...\Run: [DivXUpdate] "C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW ()[1230704 2011-02-14]
HKLM-x32\...\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" (Sun Microsystems, Inc.)[249064 2010-10-29]
HKLM-x32\...\Run: [NPSStartup]
HKLM-x32\...\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe" (Apple Inc.)[421160 2011-04-27]
HKLM-x32\...\Run: [TkBellExe] "C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe" -osboot (RealNetworks, Inc.)[273544 2011-05-04]
HKU\Default\...\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (Microsoft Corporation)[1475584 2010-11-20]
HKU\Default User\...\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (Microsoft Corporation)[1475584 2010-11-20]
HKU\Owner\...\Run: [uTorrent] "C:\Program Files (x86)\uTorrent\uTorrent.exe" (BitTorrent, Inc.)[399736 2011-03-27]
HKU\Owner\...\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe" (Nero AG)[153136 2007-03-12]
HKU\Owner\...\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun (DT Soft Ltd)[1305408 2011-01-20]
HKU\Owner\...\Run: [AutoStartNPSAgent] C:\Program Files (x86)\Samsung\Samsung New PC Studio\NPSAgent.exe (Samsung Electronics Co., Ltd.)[95576 2010-07-04]
HKU\Owner\...\Run: [SandboxieControl] "C:\Program Files\Sandboxie\SbieCtrl.exe" (tzuk)[576232 2010-07-04]
HKLM\...\RunOnce: [*Restore] C:\Windows\system32\rstrui.exe /RUNONCE (Microsoft Corporation)[296960 2010-11-20]
HKLM-x32\...\Winlogon: [Userinit] userinit.exe (Microsoft Corporation)[30208 2009-07-13]
Winlogon\Notify\ScCertProp: wlnotify.dll [X]


==================== Services ====================

3 Adobe Version Cue CS4; "C:\Program Files (x86)\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe" -win32service [284016 2008-08-15] (Adobe Systems Incorporated)
3 AeLookupSvc; C:\Windows\System32\aelupsvc.dll [72192 2009-07-13] (Microsoft Corporation)
3 ALG; C:\Windows\System32\alg.exe [79360 2009-07-13] (Microsoft Corporation)
3 AppIDSvc; C:\Windows\System32\appidsvc.dll [32256 2009-07-13] (Microsoft Corporation)
3 Appinfo; C:\Windows\System32\appinfo.dll [70656 2010-11-20] (Microsoft Corporation)
2 Apple Mobile Device; "C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe" [37664 2011-02-18] (Apple Inc.)
2 AudioEndpointBuilder; C:\Windows\System32\Audiosrv.dll [679424 2010-11-20] (Microsoft Corporation)
2 AudioSrv; C:\Windows\System32\Audiosrv.dll [679424 2010-11-20] (Microsoft Corporation)
2 avast! Antivirus; "C:\Program Files\Alwil Software\Avast5\AvastSvc.exe" [40384 2011-01-13] (AVAST Software)
3 AxInstSV; C:\Windows\System32\AxInstSV.dll [114688 2010-11-20] (Microsoft Corporation)
3 BDESVC; C:\Windows\System32\bdesvc.dll [100864 2009-07-13] (Microsoft Corporation)
2 BFE; C:\Windows\System32\bfe.dll [705024 2010-11-20] (Microsoft Corporation)
2 BITS; C:\Windows\System32\qmgr.dll [849920 2010-11-20] (Microsoft Corporation)
2 Bonjour Service; "C:\Program Files (x86)\Bonjour\mDNSResponder.exe" [349472 2011-04-06] (Apple Inc.)
3 Browser; C:\Windows\System32\browser.dll [136192 2010-11-20] (Microsoft Corporation)
3 bthserv; C:\Windows\System32\bthserv.dll [83968 2009-07-13] (Microsoft Corporation)
2 CertPropSvc; C:\Windows\System32\certprop.dll [80384 2010-11-20] (Microsoft Corporation)
4 clr_optimization_v2.0.50727_32; C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [66384 2009-06-10] (Microsoft Corporation)
4 clr_optimization_v2.0.50727_64; C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe [89920 2009-06-10] (Microsoft Corporation)
2 clr_optimization_v4.0.30319_32; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [130384 2010-03-18] (Microsoft Corporation)
2 clr_optimization_v4.0.30319_64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [138576 2010-03-18] (Microsoft Corporation)
3 COMSysApp; C:\Windows\System32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235} [9728 2009-07-13] (Microsoft Corporation)
2 CryptSvc; C:\Windows\System32\cryptsvc.dll [177152 2010-11-20] (Microsoft Corporation)
2 DcomLaunch; C:\Windows\System32\rpcss.dll [512000 2010-11-20] (Microsoft Corporation)
3 defragsvc; C:\Windows\System32\defragsvc.dll [291328 2009-07-13] (Microsoft Corporation)
2 Dhcp; C:\Windows\System32\dhcpcore.dll [317952 2010-11-20] (Microsoft Corporation)
2 Dnscache; C:\Windows\System32\dnsrslvr.dll [183296 2011-03-02] (Microsoft Corporation)
3 dot3svc; C:\Windows\System32\dot3svc.dll [252416 2010-11-20] (Microsoft Corporation)
2 DPS; C:\Windows\System32\dps.dll [162816 2010-11-20] (Microsoft Corporation)
3 EapHost; C:\Windows\System32\eapsvc.dll [111104 2009-07-13] (Microsoft Corporation)
2 EFS; C:\Windows\System32\lsass.exe [31232 2009-07-13] (Microsoft Corporation)
3 ehRecvr; C:\Windows\ehome\ehRecvr.exe [696832 2010-11-20] (Microsoft Corporation)
3 ehSched; C:\Windows\ehome\ehsched.exe [127488 2009-07-13] (Microsoft Corporation)
2 eventlog; C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted [27136 2009-07-13] (Microsoft Corporation)
2 EventSystem; C:\Windows\System32\es.dll [402944 2009-07-13] (Microsoft Corporation)
3 Fax; C:\Windows\System32\fxssvc.exe [689152 2010-11-20] (Microsoft Corporation)
3 fdPHost; C:\Windows\System32\fdPHost.dll [16384 2009-07-13] (Microsoft Corporation)
3 FDResPub; C:\Windows\System32\fdrespub.dll [34816 2009-07-13] (Microsoft Corporation)
3 FLEXnet Licensing Service; "C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe" [655624 2011-02-23] (Acresso Software Inc.)
3 FLEXnet Licensing Service 64; "C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe" [1038088 2011-02-23] (Acresso Software Inc.)
2 FontCache; C:\Windows\System32\FntCache.dll [1139200 2011-02-19] (Microsoft Corporation)
3 FontCache3.0.0.0; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [42856 2010-11-04] (Microsoft Corporation)
2 gpsvc; C:\Windows\System32\gpsvc.dll [777728 2010-11-20] (Microsoft Corporation)
3 hidserv; C:\Windows\System32\hidserv.dll [38912 2009-07-13] (Microsoft Corporation)
3 hkmsvc; C:\Windows\System32\kmsvc.dll [90624 2010-11-20] (Microsoft Corporation)
3 HomeGroupListener; C:\Windows\System32\ListSvc.dll [232448 2010-11-20] (Microsoft Corporation)
3 HomeGroupProvider; C:\Windows\System32\provsvc.dll [187904 2010-11-20] (Microsoft Corporation)
3 IDriverT; "C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe" [69632 2005-04-03] (Macrovision Corporation)
3 idsvc; "C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe" [856400 2010-11-04] (Microsoft Corporation)
3 IKEEXT; C:\Windows\System32\ikeext.dll [853504 2010-11-20] (Microsoft Corporation)
3 IPBusEnum; C:\Windows\System32\ipbusenum.dll [101888 2009-07-13] (Microsoft Corporation)
2 iphlpsvc; C:\Windows\System32\iphlpsvc.dll [569344 2010-11-20] (Microsoft Corporation)
3 iPod Service; "C:\Program Files\iPod\bin\iPodService.exe" [934176 2011-04-27] (Apple Inc.)
3 KeyIso; C:\Windows\System32\lsass.exe [31232 2009-07-13] (Microsoft Corporation)
3 KtmRm; C:\Windows\System32\msdtckrm.dll [368640 2009-07-13] (Microsoft Corporation)
2 LanmanServer; C:\Windows\System32\srvsvc.dll [236032 2010-11-20] (Microsoft Corporation)
2 LanmanWorkstation; C:\Windows\System32\wkssvc.dll [118784 2010-11-20] (Microsoft Corporation)
3 lltdsvc; C:\Windows\System32\lltdsvc.dll [300032 2009-07-13] (Microsoft Corporation)
2 lmhosts; C:\Windows\System32\lmhsvc.dll [23552 2009-07-13] (Microsoft Corporation)
2 lxcr_device; C:\Windows\system32\lxcrcoms.exe -service [566192 2006-12-11] ( )
4 Mcx2Svc; C:\Windows\System32\Mcx2Svc.dll [84992 2010-11-20] (Microsoft Corporation)
2 MDM; "C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE" [322120 2003-06-19] (Microsoft Corporation)
2 MMCSS; C:\Windows\System32\mmcss.dll [67584 2009-07-13] (Microsoft Corporation)
2 MpsSvc; C:\Windows\System32\mpssvc.dll [828416 2010-11-20] (Microsoft Corporation)
3 MSDTC; C:\Windows\System32\msdtc.exe [141824 2009-07-13] (Microsoft Corporation)
3 MSiSCSI; C:\Windows\System32\iscsiexe.dll [156672 2009-07-13] (Microsoft Corporation)
3 msiserver; C:\Windows\System32\msiexec.exe /V [128000 2010-11-20] (Microsoft Corporation)
3 napagent; C:\Windows\System32\qagentRT.dll [476160 2010-11-20] (Microsoft Corporation)
3 NBService; C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe [779824 2007-03-14] (Nero AG)
3 Netlogon; C:\Windows\System32\lsass.exe [31232 2009-07-13] (Microsoft Corporation)
3 Netman; C:\Windows\System32\netman.dll [360448 2009-07-13] (Microsoft Corporation)
3 netprofm; C:\Windows\System32\netprofm.dll [459776 2009-07-13] (Microsoft Corporation)
4 NetTcpPortSharing; "C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe" [116560 2009-06-10] (Microsoft Corporation)
2 NlaSvc; C:\Windows\System32\nlasvc.dll [303616 2010-11-20] (Microsoft Corporation)
3 NMIndexingService; "C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe" [271920 2007-03-12] (Nero AG)
2 nsi; C:\Windows\System32\nsisvc.dll [25600 2009-07-13] (Microsoft Corporation)
2 nvsvc; C:\Windows\system32\nvvsvc.exe [392296 2009-11-02] (NVIDIA Corporation)
3 ose; "C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE" [89136 2003-07-28] (Microsoft Corporation)
3 p2pimsvc; C:\Windows\System32\pnrpsvc.dll [327168 2009-07-13] (Microsoft Corporation)
3 p2psvc; C:\Windows\System32\p2psvc.dll [438784 2009-07-13] (Microsoft Corporation)
2 PcaSvc; C:\Windows\System32\pcasvc.dll [186368 2009-07-13] (Microsoft Corporation)
3 PerfHost; C:\Windows\SysWow64\perfhost.exe [20992 2009-07-13] (Microsoft Corporation)
3 pla; C:\Windows\System32\pla.dll [1389056 2010-11-20] (Microsoft Corporation)
2 PlugPlay; C:\Windows\System32\umpnpmgr.dll [404480 2010-11-20] (Microsoft Corporation)
3 PNRPAutoReg; C:\Windows\System32\pnrpauto.dll [25088 2009-07-13] (Microsoft Corporation)
3 PNRPsvc; C:\Windows\System32\pnrpsvc.dll [327168 2009-07-13] (Microsoft Corporation)
3 PolicyAgent; C:\Windows\System32\ipsecsvc.dll [501248 2010-11-20] (Microsoft Corporation)
2 Power; C:\Windows\System32\umpo.dll [163840 2009-07-13] (Microsoft Corporation)
2 ProfSvc; C:\Windows\System32\profsvc.dll [209920 2010-11-20] (Microsoft Corporation)
3 ProtectedStorage; C:\Windows\System32\lsass.exe [31232 2009-07-13] (Microsoft Corporation)
3 QWAVE; C:\Windows\system32\qwave.dll [242688 2009-07-13] (Microsoft Corporation)
3 RasAuto; C:\Windows\System32\rasauto.dll [99328 2009-07-13] (Microsoft Corporation)
3 RasMan; C:\Windows\System32\rasmans.dll [344064 2010-11-20] (Microsoft Corporation)
4 RemoteAccess; C:\Windows\System32\mprdim.dll [97792 2009-07-13] (Microsoft Corporation)
3 RemoteRegistry; C:\Windows\System32\regsvc.dll [159232 2009-07-13] (Microsoft Corporation)
2 RichVideo; "C:\Program Files (x86)\CyberLink\Shared Files\RichVideo.exe" [167936 2005-08-08] ()
2 RpcEptMapper; C:\Windows\System32\RpcEpMap.dll [67072 2009-07-13] (Microsoft Corporation)
3 RpcLocator; C:\Windows\System32\locator.exe [10240 2009-07-13] (Microsoft Corporation)
2 RpcSs; C:\Windows\System32\rpcss.dll [512000 2010-11-20] (Microsoft Corporation)
2 SamSs; C:\Windows\System32\lsass.exe [31232 2009-07-13] (Microsoft Corporation)
2 SbieSvc; "C:\Program Files\Sandboxie\SbieSvc.exe" [99048 2010-07-04] (tzuk)
2 SCardSvr; C:\Windows\System32\SCardSvr.dll [190976 2009-07-13] (Microsoft Corporation)
2 Schedule; C:\Windows\System32\schedsvc.dll [1110016 2010-11-20] (Microsoft Corporation)
3 SCPolicySvc; C:\Windows\System32\certprop.dll [80384 2010-11-20] (Microsoft Corporation)
3 SDRSVC; C:\Windows\System32\SDRSVC.dll [170496 2010-11-20] (Microsoft Corporation)
3 seclogon; C:\Windows\system32\seclogon.dll [30720 2010-11-20] (Microsoft Corporation)
2 SENS; C:\Windows\System32\sens.dll [64512 2009-07-13] (Microsoft Corporation)
3 SensrSvc; C:\Windows\System32\sensrsvc.dll [29184 2009-07-13] (Microsoft Corporation)
3 SessionEnv; C:\Windows\System32\sessenv.dll [121856 2010-11-20] (Microsoft Corporation)
3 SharedAccess; C:\Windows\System32\ipnathlp.dll [359424 2009-07-13] (Microsoft Corporation)
2 ShellHWDetection; C:\Windows\System32\shsvcs.dll [370688 2010-11-20] (Microsoft Corporation)
3 SNMPTRAP; C:\Windows\System32\snmptrap.exe [14336 2009-07-13] (Microsoft Corporation)
2 Spooler; C:\Windows\System32\spoolsv.exe [559104 2010-11-20] (Microsoft Corporation)
2 sppsvc; C:\Windows\System32\sppsvc.exe [3524608 2010-11-20] (Microsoft Corporation)
3 sppuinotify; C:\Windows\System32\sppuinotify.dll [65536 2009-07-13] (Microsoft Corporation)
3 SSDPSRV; C:\Windows\System32\ssdpsrv.dll [193024 2009-07-13] (Microsoft Corporation)
3 SstpSvc; C:\Windows\System32\sstpsvc.dll [75264 2009-07-13] (Microsoft Corporation)
2 stisvc; C:\Windows\System32\wiaservc.dll [580096 2010-11-20] (Microsoft Corporation)
3 swprv; C:\Windows\System32\swprv.dll [524288 2009-07-13] (Microsoft Corporation)
2 SysMain; C:\Windows\System32\sysmain.dll [1743360 2010-11-20] (Microsoft Corporation)
3 TabletInputService; C:\Windows\System32\TabSvc.dll [92672 2010-11-20] (Microsoft Corporation)
3 TapiSrv; C:\Windows\System32\tapisrv.dll [316928 2010-11-20] (Microsoft Corporation)
3 TBS; C:\Windows\System32\tbssvc.dll [65536 2009-07-13] (Microsoft Corporation)
3 TermService; C:\Windows\System32\termsrv.dll [680960 2010-11-20] (Microsoft Corporation)
2 Themes; C:\Windows\System32\themeservice.dll [44544 2009-07-13] (Microsoft Corporation)
3 THREADORDER; C:\Windows\System32\mmcss.dll [67584 2009-07-13] (Microsoft Corporation)
2 TrkWks; C:\Windows\System32\trkwks.dll [119808 2009-07-13] (Microsoft Corporation)
3 TrustedInstaller; C:\Windows\servicing\TrustedInstaller.exe [194048 2010-11-20] (Microsoft Corporation)
3 UI0Detect; C:\Windows\System32\UI0Detect.exe [40960 2009-07-13] (Microsoft Corporation)
3 upnphost; C:\Windows\System32\upnphost.dll [353792 2009-07-13] (Microsoft Corporation)
2 UxSms; C:\Windows\System32\uxsms.dll [38912 2009-07-13] (Microsoft Corporation)
2 VAIO Event Service; "C:\Program Files (x86)\Sony\VAIO Event Service\VESMgr.exe" [204648 2009-11-30] (Sony Corporation)
3 VAIO Power Management; "C:\Program Files\Sony\VAIO Power Management\SPMService.exe" [571248 2009-11-30] (Sony Corporation)
3 VaultSvc; C:\Windows\System32\lsass.exe [31232 2009-07-13] (Microsoft Corporation)
2 VcmIAlzMgr; "C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe" [529776 2010-02-19] (Sony Corporation)
3 vds; C:\Windows\System32\vds.exe [533504 2010-11-20] (Microsoft Corporation)
3 VSS; C:\Windows\System32\vssvc.exe [1600512 2010-11-20] (Microsoft Corporation)
3 W32Time; C:\Windows\System32\w32time.dll [381952 2009-07-13] (Microsoft Corporation)
3 WatAdminSvc; C:\Windows\System32\Wat\WatAdminSvc.exe [1255736 2011-02-08] (Microsoft Corporation)
3 wbengine; "C:\Windows\system32\wbengine.exe" [1504256 2010-11-20] (Microsoft Corporation)
3 WbioSrvc; C:\Windows\System32\wbiosrvc.dll [202240 2009-07-13] (Microsoft Corporation)
3 wcncsvc; C:\Windows\System32\wcncsvc.dll [367104 2010-11-20] (Microsoft Corporation)
3 WcsPlugInService; C:\Windows\System32\WcsPlugInService.dll [40960 2009-07-13] (Microsoft Corporation)
3 WdiServiceHost; C:\Windows\System32\wdi.dll [90624 2009-07-13] (Microsoft Corporation)
3 WdiSystemHost; C:\Windows\System32\wdi.dll [90624 2009-07-13] (Microsoft Corporation)
3 WebClient; C:\Windows\System32\webclnt.dll [258560 2010-11-20] (Microsoft Corporation)
3 Wecsvc; C:\Windows\System32\wecsvc.dll [237568 2009-07-13] (Microsoft Corporation)
3 wercplsupport; C:\Windows\System32\wercplsupport.dll [84480 2009-07-13] (Microsoft Corporation)
3 WerSvc; C:\Windows\System32\WerSvc.dll [76800 2009-07-13] (Microsoft Corporation)
2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-13] (Microsoft Corporation)
3 WinHttpAutoProxySvc; winhttp.dll [444416 2010-11-20] (Microsoft Corporation)
2 Winmgmt; C:\Windows\System32\wbem\WMIsvc.dll [242688 2009-07-13] (Microsoft Corporation)
3 WinRM; C:\Windows\System32\WsmSvc.dll [2018304 2010-11-20] (Microsoft Corporation)
2 WinVNC4; "C:\Program Files (x86)\RealVNC\VNC4\WinVNC4.exe" -service [439632 2008-10-15] (RealVNC Ltd.)
2 Wlansvc; C:\Windows\System32\wlansvc.dll [886784 2009-07-13] (Microsoft Corporation)
3 wmiApSrv; C:\Windows\System32\wbem\WmiApSrv.exe [203264 2009-07-13] (Microsoft Corporation)
2 WMPNetworkSvc; "C:\Program Files\Windows Media Player\wmpnetwk.exe" [1525248 2010-11-20] (Microsoft Corporation)
3 WMZuneComm; "C:\Program Files\Zune\WMZuneComm.exe" [306416 2010-11-11] (Microsoft Corporation)
3 WPCSvc; C:\Windows\System32\wpcsvc.dll [12288 2009-07-13] (Microsoft Corporation)
3 WPDBusEnum; C:\Windows\System32\wpdbusenum.dll [117248 2010-11-20] (Microsoft Corporation)
2 wscsvc; C:\Windows\System32\wscsvc.dll [97280 2009-07-13] (Microsoft Corporation)
2 WSearch; C:\Windows\System32\SearchIndexer.exe /Embedding [593408 2009-07-13] (Microsoft Corporation)
2 wuauserv; C:\Windows\System32\wuaueng.dll [2420736 2010-11-20] (Microsoft Corporation)
2 wudfsvc; C:\Windows\System32\WUDFSvc.dll [78848 2010-11-20] (Microsoft Corporation)
3 WwanSvc; C:\Windows\System32\wwansvc.dll [229888 2009-07-13] (Microsoft Corporation)
3 ZuneNetworkSvc; "C:\Program Files\Zune\ZuneNss.exe" [8251120 2010-11-11] (Microsoft Corporation)
3 ZuneWlanCfgSvc; "C:\Program Files\Zune\ZuneWlanCfgSvc.exe" [467696 2010-11-11] (Microsoft Corporation)

==================== Drivers ====================

3 1394ohci; C:\Windows\System32\drivers\1394ohci.sys [229888 2010-11-20] (Microsoft Corporation)
0 ACPI; C:\Windows\System32\drivers\ACPI.sys [334208 2010-11-20] (Microsoft Corporation)
3 AcpiPmi; C:\Windows\System32\drivers\acpipmi.sys [12800 2010-11-20] (Microsoft Corporation)
2 adfs; C:\Windows\System32\Drivers\adfs.sys [88632 2008-06-27] (Adobe Systems, Inc.)
3 adp94xx; C:\Windows\System32\DRIVERS\adp94xx.sys [491088 2009-07-13] (Adaptec, Inc.)
3 adpahci; C:\Windows\System32\DRIVERS\adpahci.sys [339536 2009-07-13] (Adaptec, Inc.)
3 adpu320; C:\Windows\System32\DRIVERS\adpu320.sys [182864 2009-07-13] (Adaptec, Inc.)
1 AFD; C:\Windows\System32\drivers\afd.sys [499712 2010-11-20] (Microsoft Corporation)
3 agp440; C:\Windows\System32\drivers\agp440.sys [61008 2009-07-13] (Microsoft Corporation)
3 aliide; C:\Windows\System32\drivers\aliide.sys [15440 2009-07-13] (Acer Laboratories Inc.)
3 amdide; C:\Windows\System32\drivers\amdide.sys [15440 2009-07-13] (Microsoft Corporation)
3 AmdK8; C:\Windows\System32\DRIVERS\amdk8.sys [64512 2009-07-13] (Microsoft Corporation)
3 AmdPPM; C:\Windows\System32\DRIVERS\amdppm.sys [60928 2009-07-13] (Microsoft Corporation)
3 amdsata; C:\Windows\System32\drivers\amdsata.sys [107904 2011-03-10] (Advanced Micro Devices)
3 amdsbs; C:\Windows\System32\DRIVERS\amdsbs.sys [194128 2009-07-13] (AMD Technologies Inc.)
0 amdxata; C:\Windows\System32\drivers\amdxata.sys [27008 2011-03-10] (Advanced Micro Devices)
3 AppID; C:\Windows\System32\drivers\appid.sys [61440 2010-11-20] (Microsoft Corporation)
3 arc; C:\Windows\System32\DRIVERS\arc.sys [87632 2009-07-13] (Adaptec, Inc.)
3 arcsas; C:\Windows\System32\DRIVERS\arcsas.sys [97856 2009-07-13] (Adaptec, Inc.)
2 aswFsBlk; C:\Windows\System32\Drivers\aswFsBlk.sys [20560 2011-01-13] (AVAST Software)
2 aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [62032 2011-01-13] (AVAST Software)
1 aswRdr; C:\Windows\System32\Drivers\aswRdr.sys [29264 2011-01-13] (AVAST Software)
1 aswSP; C:\Windows\System32\Drivers\aswSP.sys [273488 2011-01-13] (AVAST Software)
1 aswTdi; C:\Windows\System32\Drivers\aswTdi.sys [51792 2011-01-13] (AVAST Software)
3 AsyncMac; C:\Windows\System32\DRIVERS\asyncmac.sys [23040 2009-07-13] (Microsoft Corporation)
0 atapi; C:\Windows\System32\drivers\atapi.sys [24128 2009-07-13] (Microsoft Corporation)
3 athr; C:\Windows\System32\DRIVERS\athrx.sys [1542656 2009-11-19] (Atheros Communications, Inc.)
3 b06bdrv; C:\Windows\System32\DRIVERS\bxvbda.sys [468480 2009-06-10] (Broadcom Corporation)
3 b57nd60a; C:\Windows\System32\DRIVERS\b57nd60a.sys [270848 2009-06-10] (Broadcom Corporation)
1 Beep; C:\Windows\System32\Drivers\Beep.sys [6656 2009-07-13] (Microsoft Corporation)
1 blbdrive; C:\Windows\System32\DRIVERS\blbdrive.sys [45056 2009-07-13] (Microsoft Corporation)
3 bowser; C:\Windows\System32\DRIVERS\bowser.sys [90624 2011-02-22] (Microsoft Corporation)
3 BrFiltLo; C:\Windows\System32\DRIVERS\BrFiltLo.sys [18432 2009-06-10] (Brother Industries, Ltd.)
3 BrFiltUp; C:\Windows\System32\DRIVERS\BrFiltUp.sys [8704 2009-06-10] (Brother Industries, Ltd.)
3 Brserid; C:\Windows\System32\Drivers\Brserid.sys [286720 2009-07-13] (Brother Industries Ltd.)
3 BrSerWdm; C:\Windows\System32\Drivers\BrSerWdm.sys [47104 2009-06-10] (Brother Industries Ltd.)
3 BrUsbMdm; C:\Windows\System32\Drivers\BrUsbMdm.sys [14976 2009-06-10] (Brother Industries Ltd.)
3 BrUsbSer; C:\Windows\System32\Drivers\BrUsbSer.sys [14720 2009-06-10] (Brother Industries Ltd.)
3 BthEnum; C:\Windows\System32\drivers\BthEnum.sys [41984 2009-07-13] (Microsoft Corporation)
3 BTHMODEM; C:\Windows\System32\DRIVERS\bthmodem.sys [72192 2009-07-13] (Microsoft Corporation)
3 BthPan; C:\Windows\System32\DRIVERS\bthpan.sys [118784 2009-07-13] (Microsoft Corporation)
3 BTHPORT; C:\Windows\System32\Drivers\BTHport.sys [552448 2010-11-20] (Microsoft Corporation)
3 BTHUSB; C:\Windows\System32\Drivers\BTHUSB.sys [80384 2010-11-20] (Microsoft Corporation)
3 btusbflt; C:\Windows\System32\drivers\btusbflt.sys [54824 2010-04-14] (Broadcom Corporation.)
4 cdfs; C:\Windows\System32\DRIVERS\cdfs.sys [92160 2009-07-13] (Microsoft Corporation)
1 cdrom; C:\Windows\System32\DRIVERS\cdrom.sys [147456 2010-11-20] (Microsoft Corporation)
3 circlass; C:\Windows\System32\DRIVERS\circlass.sys [45568 2009-07-13] (Microsoft Corporation)
0 CLFS; C:\Windows\System32\CLFS.sys [367696 2009-07-13] (Microsoft Corporation)
3 CmBatt; C:\Windows\System32\DRIVERS\CmBatt.sys [17664 2009-07-13] (Microsoft Corporation)
3 cmdide; C:\Windows\System32\drivers\cmdide.sys [17488 2009-07-13] (CMD Technology, Inc.)
0 CNG; C:\Windows\System32\Drivers\cng.sys [459248 2010-11-20] (Microsoft Corporation)
0 Compbatt; C:\Windows\System32\DRIVERS\compbatt.sys [21584 2009-07-13] (Microsoft Corporation)
3 CompositeBus; C:\Windows\System32\drivers\CompositeBus.sys [38912 2010-11-20] (Microsoft Corporation)
4 crcdisk; C:\Windows\System32\DRIVERS\crcdisk.sys [24144 2009-07-13] (Microsoft Corporation)
1 DfsC; C:\Windows\System32\Drivers\dfsc.sys [102400 2010-11-20] (Microsoft Corporation)
1 discache; C:\Windows\System32\drivers\discache.sys [40448 2009-07-13] (Microsoft Corporation)
0 Disk; C:\Windows\System32\DRIVERS\disk.sys [73280 2009-07-13] (Microsoft Corporation)
3 Dot4; C:\Windows\System32\DRIVERS\Dot4.sys [145920 2009-07-13] (Microsoft Corporation)
3 Dot4Print; C:\Windows\System32\drivers\Dot4Prt.sys [19968 2010-11-20] (Microsoft Corporation)
3 dot4usb; C:\Windows\System32\DRIVERS\dot4usb.sys [43008 2009-07-13] (Microsoft Corporation)
3 drmkaud; C:\Windows\System32\drivers\drmkaud.sys [5632 2009-07-13] (Microsoft Corporation)
1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [254528 2011-03-13] (DT Soft Ltd)
3 DXGKrnl; C:\Windows\System32\drivers\dxgkrnl.sys [982912 2010-11-20] (Microsoft Corporation)
3 ebdrv; C:\Windows\System32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
3 elxstor; C:\Windows\System32\DRIVERS\elxstor.sys [530496 2009-07-13] (Emulex)
3 ErrDev; C:\Windows\System32\drivers\errdev.sys [9728 2009-07-13] (Microsoft Corporation)
3 exfat; C:\Windows\System32\Drivers\exfat.sys [195072 2009-07-13] (Microsoft Corporation)
3 fastfat; C:\Windows\System32\Drivers\fastfat.sys [204800 2009-07-13] (Microsoft Corporation)
3 fdc; C:\Windows\System32\DRIVERS\fdc.sys [29696 2009-07-13] (Microsoft Corporation)
0 FileInfo; C:\Windows\System32\drivers\fileinfo.sys [70224 2009-07-13] (Microsoft Corporation)
3 Filetrace; C:\Windows\System32\drivers\filetrace.sys [34304 2009-07-13] (Microsoft Corporation)
3 flpydisk; C:\Windows\System32\DRIVERS\flpydisk.sys [24576 2009-07-13] (Microsoft Corporation)
0 FltMgr; C:\Windows\System32\drivers\fltmgr.sys [289664 2010-11-20] (Microsoft Corporation)
3 FsDepends; C:\Windows\System32\drivers\FsDepends.sys [55376 2009-07-13] (Microsoft Corporation)
0 Fs_Rec; C:\Windows\System32\Drivers\Fs_Rec.sys [23104 2009-07-13] (Microsoft Corporation)
0 fvevol; C:\Windows\System32\DRIVERS\fvevol.sys [223248 2010-11-20] (Microsoft Corporation)
3 gagp30kx; C:\Windows\System32\DRIVERS\gagp30kx.sys [65088 2009-07-13] (Microsoft Corporation)
3 GEARAspiWDM; C:\Windows\System32\DRIVERS\GEARAspiWDM.sys [34152 2009-05-18] (GEAR Software Inc.)
3 hcw85cir; C:\Windows\System32\drivers\hcw85cir.sys [31232 2009-06-10] (Hauppauge Computer Works, Inc.)
3 HdAudAddService; C:\Windows\System32\drivers\HdAudio.sys [350208 2010-11-20] (Microsoft Corporation)
3 HDAudBus; C:\Windows\System32\drivers\HDAudBus.sys [122368 2010-11-20] (Microsoft Corporation)
3 HidBatt; C:\Windows\System32\DRIVERS\HidBatt.sys [26624 2009-07-13] (Microsoft Corporation)
3 HidBth; C:\Windows\System32\DRIVERS\hidbth.sys [100864 2009-07-13] (Microsoft Corporation)
3 HidIr; C:\Windows\System32\DRIVERS\hidir.sys [46592 2009-07-13] (Microsoft Corporation)
3 HidUsb; C:\Windows\System32\DRIVERS\hidusb.sys [30208 2010-11-20] (Microsoft Corporation)
3 HpSAMD; C:\Windows\System32\drivers\HpSAMD.sys [78720 2010-11-20] (Hewlett-Packard Company)
3 HTTP; C:\Windows\System32\drivers\HTTP.sys [753664 2010-11-20] (Microsoft Corporation)
0 hwpolicy; C:\Windows\System32\drivers\hwpolicy.sys [14720 2010-11-20] (Microsoft Corporation)
3 i8042prt; C:\Windows\System32\drivers\i8042prt.sys [105472 2009-07-13] (Microsoft Corporation)
3 iaStorV; C:\Windows\System32\drivers\iaStorV.sys [410496 2011-03-10] (Intel Corporation)
3 iirsp; C:\Windows\System32\DRIVERS\iirsp.sys [44112 2009-07-13] (Intel Corp./ICP vortex GmbH)
3 IntcAzAudAddService; C:\Windows\System32\drivers\RTKVHD64.sys [2269600 2010-02-09] (Realtek Semiconductor Corp.)
3 intelide; C:\Windows\System32\drivers\intelide.sys [16960 2009-07-13] (Microsoft Corporation)
3 intelppm; C:\Windows\System32\DRIVERS\intelppm.sys [62464 2009-07-13] (Microsoft Corporation)
3 IpFilterDriver; C:\Windows\System32\DRIVERS\ipfltdrv.sys [82944 2010-11-20] (Microsoft Corporation)
3 IPMIDRV; C:\Windows\System32\drivers\IPMIDrv.sys [78848 2010-11-20] (Microsoft Corporation)
3 IPNAT; C:\Windows\System32\drivers\ipnat.sys [116224 2009-07-13] (Microsoft Corporation)
3 IRENUM; C:\Windows\System32\drivers\irenum.sys [17920 2009-07-13] (Microsoft Corporation)
3 isapnp; C:\Windows\System32\drivers\isapnp.sys [20544 2009-07-13] (Microsoft Corporation)
3 iScsiPrt; C:\Windows\System32\drivers\msiscsi.sys [273792 2010-11-20] (Microsoft Corporation)
3 ivusb; C:\Windows\System32\DRIVERS\ivusb.sys [29720 2010-07-28] (Initio Corporation)
3 kbdclass; C:\Windows\System32\DRIVERS\kbdclass.sys [50768 2009-07-13] (Microsoft Corporation)
3 kbdhid; C:\Windows\System32\DRIVERS\kbdhid.sys [33280 2010-11-20] (Microsoft Corporation)
0 KSecDD; C:\Windows\System32\Drivers\ksecdd.sys [95616 2010-11-20] (Microsoft Corporation)
0 KSecPkg; C:\Windows\System32\Drivers\ksecpkg.sys [152960 2010-11-20] (Microsoft Corporation)
3 ksthunk; C:\Windows\System32\drivers\ksthunk.sys [20992 2009-07-13] (Microsoft Corporation)
2 lltdio; C:\Windows\System32\DRIVERS\lltdio.sys [60928 2009-07-13] (Microsoft Corporation)
3 LSI_FC; C:\Windows\System32\DRIVERS\lsi_fc.sys [114752 2009-07-13] (LSI Corporation)
3 LSI_SAS; C:\Windows\System32\DRIVERS\lsi_sas.sys [106560 2009-07-13] (LSI Corporation)
3 LSI_SAS2; C:\Windows\System32\DRIVERS\lsi_sas2.sys [65600 2009-07-13] (LSI Corporation)
3 LSI_SCSI; C:\Windows\System32\DRIVERS\lsi_scsi.sys [115776 2009-07-13] (LSI Corporation)
2 luafv; C:\Windows\System32\drivers\luafv.sys [113152 2009-07-13] (Microsoft Corporation)
3 megasas; C:\Windows\System32\DRIVERS\megasas.sys [35392 2009-07-13] (LSI Corporation)
3 MegaSR; C:\Windows\System32\DRIVERS\MegaSR.sys [284736 2009-07-13] (LSI Corporation, Inc.)
3 Modem; C:\Windows\System32\drivers\modem.sys [40448 2009-07-13] (Microsoft Corporation)
3 monitor; C:\Windows\System32\DRIVERS\monitor.sys [30208 2009-07-13] (Microsoft Corporation)
3 mouclass; C:\Windows\System32\DRIVERS\mouclass.sys [49216 2009-07-13] (Microsoft Corporation)
3 mouhid; C:\Windows\System32\DRIVERS\mouhid.sys [31232 2009-07-13] (Microsoft Corporation)
0 mountmgr; C:\Windows\System32\drivers\mountmgr.sys [94592 2010-11-20] (Microsoft Corporation)
3 mpio; C:\Windows\System32\drivers\mpio.sys [155008 2010-11-20] (Microsoft Corporation)
3 mpsdrv; C:\Windows\System32\drivers\mpsdrv.sys [77312 2009-07-13] (Microsoft Corporation)
3 MRxDAV; C:\Windows\System32\drivers\mrxdav.sys [140800 2010-11-20] (Microsoft Corporation)
3 mrxsmb; C:\Windows\System32\DRIVERS\mrxsmb.sys [158208 2011-02-22] (Microsoft Corporation)
3 mrxsmb10; C:\Windows\System32\DRIVERS\mrxsmb10.sys [287744 2011-02-22] (Microsoft Corporation)
3 mrxsmb20; C:\Windows\System32\DRIVERS\mrxsmb20.sys [128000 2011-02-22] (Microsoft Corporation)
0 msahci; C:\Windows\System32\drivers\msahci.sys [31104 2010-11-20] (Microsoft Corporation)
3 msdsm; C:\Windows\System32\drivers\msdsm.sys [140672 2010-11-20] (Microsoft Corporation)
1 Msfs; C:\Windows\System32\Drivers\Msfs.sys [26112 2009-07-13] (Microsoft Corporation)
3 mshidkmdf; C:\Windows\System32\drivers\mshidkmdf.sys [8192 2009-07-13] (Microsoft Corporation)
0 msisadrv; C:\Windows\System32\drivers\msisadrv.sys [15424 2009-07-13] (Microsoft Corporation)
3 MSKSSRV; C:\Windows\System32\drivers\MSKSSRV.sys [11136 2009-07-13] (Microsoft Corporation)
3 MSPCLOCK; C:\Windows\System32\drivers\MSPCLOCK.sys [7168 2009-07-13] (Microsoft Corporation)
3 MSPQM; C:\Windows\System32\drivers\MSPQM.sys [6784 2009-07-13] (Microsoft Corporation)
3 MsRPC; C:\Windows\System32\Drivers\MsRPC.sys [366976 2010-11-20] (Microsoft Corporation)
1 mssmbios; C:\Windows\System32\drivers\mssmbios.sys [32320 2009-07-13] (Microsoft Corporation)
3 MSTEE; C:\Windows\System32\drivers\MSTEE.sys [8064 2009-07-13] (Microsoft Corporation)
3 MTConfig; C:\Windows\System32\DRIVERS\MTConfig.sys [15360 2009-07-13] (Microsoft Corporation)
0 Mup; C:\Windows\System32\Drivers\mup.sys [60496 2009-07-13] (Microsoft Corporation)
3 NativeWifiP; C:\Windows\System32\DRIVERS\nwifi.sys [318976 2009-07-13] (Microsoft Corporation)
0 NDIS; C:\Windows\System32\drivers\ndis.sys [951680 2010-11-20] (Microsoft Corporation)
3 NdisCap; C:\Windows\System32\DRIVERS\ndiscap.sys [35328 2009-07-13] (Microsoft Corporation)
3 NdisTapi; C:\Windows\System32\DRIVERS\ndistapi.sys [24064 2009-07-13] (Microsoft Corporation)
3 Ndisuio; C:\Windows\System32\DRIVERS\ndisuio.sys [56832 2010-11-20] (Microsoft Corporation)
3 NdisWan; C:\Windows\System32\DRIVERS\ndiswan.sys [164352 2010-11-20] (Microsoft Corporation)
3 NDProxy; C:\Windows\System32\Drivers\NDProxy.sys [57856 2010-11-20] (Microsoft Corporation)
3 Netaapl; C:\Windows\System32\DRIVERS\netaapl64.sys [22528 2010-04-19] (Apple Inc.)
1 NetBIOS; C:\Windows\System32\DRIVERS\netbios.sys [44544 2009-07-13] (Microsoft Corporation)
1 NetBT; C:\Windows\System32\DRIVERS\netbt.sys [261632 2010-11-20] (Microsoft Corporation)
3 nfrd960; C:\Windows\System32\DRIVERS\nfrd960.sys [51264 2009-07-13] (IBM Corporation)
1 Npfs; C:\Windows\System32\Drivers\Npfs.sys [44032 2009-07-13] (Microsoft Corporation)
1 nsiproxy; C:\Windows\System32\drivers\nsiproxy.sys [24576 2009-07-13] (Microsoft Corporation)
3 Ntfs; C:\Windows\System32\Drivers\Ntfs.sys [1659776 2011-03-10] (Microsoft Corporation)
1 Null; C:\Windows\System32\Drivers\Null.sys [6144 2009-07-13] (Microsoft Corporation)
3 NVHDA; C:\Windows\System32\drivers\nvhda64v.sys [84512 2009-12-14] (NVIDIA Corporation)
3 nvlddmkm; C:\Windows\System32\DRIVERS\nvlddmkm.sys [11684840 2009-12-14] (NVIDIA Corporation)
3 nvraid; C:\Windows\System32\drivers\nvraid.sys [148352 2011-03-10] (NVIDIA Corporation)
3 nvstor; C:\Windows\System32\drivers\nvstor.sys [166272 2011-03-10] (NVIDIA Corporation)
3 nv_agp; C:\Windows\System32\drivers\nv_agp.sys [122960 2009-07-13] (Microsoft Corporation)
3 ohci1394; C:\Windows\System32\drivers\ohci1394.sys [72832 2009-07-13] (Microsoft Corporation)
3 Parport; C:\Windows\System32\DRIVERS\parport.sys [97280 2009-07-13] (Microsoft Corporation)
0 partmgr; C:\Windows\System32\drivers\partmgr.sys [75136 2010-11-20] (Microsoft Corporation)
0 pci; C:\Windows\System32\drivers\pci.sys [184704 2010-11-20] (Microsoft Corporation)
3 pciide; C:\Windows\System32\drivers\pciide.sys [12352 2009-07-13] (Microsoft Corporation)
3 pcmcia; C:\Windows\System32\DRIVERS\pcmcia.sys [220752 2009-07-13] (Microsoft Corporation)
0 pcw; C:\Windows\System32\drivers\pcw.sys [50768 2009-07-13] (Microsoft Corporation)
2 PEAUTH; C:\Windows\System32\drivers\peauth.sys [651264 2009-07-13] (Microsoft Corporation)
3 PptpMiniport; C:\Windows\System32\DRIVERS\raspptp.sys [111104 2010-11-20] (Microsoft Corporation)
3 Processor; C:\Windows\System32\DRIVERS\processr.sys [60416 2009-07-13] (Microsoft Corporation)
1 Psched; C:\Windows\System32\DRIVERS\pacer.sys [131584 2010-11-20] (Microsoft Corporation)
0 PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [55856 2010-07-12] (Sonic Solutions)
3 ql2300; C:\Windows\System32\DRIVERS\ql2300.sys [1524816 2009-07-13] (QLogic Corporation)
3 ql40xx; C:\Windows\System32\DRIVERS\ql40xx.sys [128592 2009-07-13] (QLogic Corporation)
3 QWAVEdrv; C:\Windows\System32\drivers\qwavedrv.sys [46592 2009-07-13] (Microsoft Corporation)
3 RasAcd; C:\Windows\System32\DRIVERS\rasacd.sys [14848 2009-07-13] (Microsoft Corporation)
3 RasAgileVpn; C:\Windows\System32\DRIVERS\AgileVpn.sys [60416 2009-07-13] (Microsoft Corporation)
3 Rasl2tp; C:\Windows\System32\DRIVERS\rasl2tp.sys [129536 2010-11-20] (Microsoft Corporation)
3 RasPppoe; C:\Windows\System32\DRIVERS\raspppoe.sys [92672 2009-07-13] (Microsoft Corporation)
3 RasSstp; C:\Windows\System32\DRIVERS\rassstp.sys [83968 2009-07-13] (Microsoft Corporation)
1 rdbss; C:\Windows\System32\DRIVERS\rdbss.sys [309248 2010-11-20] (Microsoft Corporation)
3 rdpbus; C:\Windows\System32\DRIVERS\rdpbus.sys [24064 2009-07-13] (Microsoft Corporation)
1 RDPCDD; C:\Windows\System32\DRIVERS\RDPCDD.sys [7680 2009-07-13] (Microsoft Corporation)
1 RDPENCDD; C:\Windows\System32\drivers\rdpencdd.sys [7680 2009-07-13] (Microsoft Corporation)
1 RDPREFMP; C:\Windows\System32\drivers\rdprefmp.sys [8192 2009-07-13] (Microsoft Corporation)
3 RDPWD; C:\Windows\System32\Drivers\RDPWD.sys [210944 2010-11-20] (Microsoft Corporation)
0 rdyboost; C:\Windows\System32\drivers\rdyboost.sys [213888 2010-11-20] (Microsoft Corporation)
3 RFCOMM; C:\Windows\System32\DRIVERS\rfcomm.sys [158720 2009-07-13] (Microsoft Corporation)
2 rimspci; C:\Windows\System32\DRIVERS\rimssne64.sys [93696 2009-12-11] (REDC)
2 rspndr; C:\Windows\System32\DRIVERS\rspndr.sys [76800 2009-07-13] (Microsoft Corporation)
3 S3XXx64; C:\Windows\System32\DRIVERS\S3XXx64.sys [69376 2010-11-11] (SCM Microsystems Inc.)
3 SbieDrv; \??\C:\Program Files\Sandboxie\SbieDrv.sys [139880 2010-07-04] (tzuk)
3 sbp2port; C:\Windows\System32\drivers\sbp2port.sys [103808 2010-11-20] (Microsoft Corporation)
3 scfilter; C:\Windows\System32\DRIVERS\scfilter.sys [29696 2010-11-20] (Microsoft Corporation)
3 sdbus; C:\Windows\System32\drivers\sdbus.sys [109056 2010-11-20] (Microsoft Corporation)
2 secdrv; C:\Windows\System32\Drivers\secdrv.sys [23040 2009-06-10] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.)
3 Serenum; C:\Windows\System32\DRIVERS\serenum.sys [23552 2009-07-13] (Microsoft Corporation)
3 Serial; C:\Windows\System32\DRIVERS\serial.sys [94208 2009-07-13] (Microsoft Corporation)
3 sermouse; C:\Windows\System32\DRIVERS\sermouse.sys [26624 2009-07-13] (Microsoft Corporation)
3 SFEP; C:\Windows\System32\DRIVERS\SFEP.sys [11392 2007-08-03] (Sony Corporation)
3 sffdisk; C:\Windows\System32\DRIVERS\sffdisk.sys [14336 2009-07-13] (Microsoft Corporation)
3 sffp_mmc; C:\Windows\System32\drivers\sffp_mmc.sys [13824 2009-07-13] (Microsoft Corporation)
3 sffp_sd; C:\Windows\System32\DRIVERS\sffp_sd.sys [14336 2010-11-20] (Microsoft Corporation)
3 sfloppy; C:\Windows\System32\DRIVERS\sfloppy.sys [16896 2009-07-13] (Microsoft Corporation)
3 SiSRaid2; C:\Windows\System32\DRIVERS\SiSRaid2.sys [43584 2009-07-13] (Silicon Integrated Systems Corp.)
3 SiSRaid4; C:\Windows\System32\DRIVERS\sisraid4.sys [80464 2009-07-13] (Silicon Integrated Systems)
3 Smb; C:\Windows\System32\DRIVERS\smb.sys [93184 2009-07-13] (Microsoft Corporation)
0 spldr; C:\Windows\System32\Drivers\spldr.sys [19008 2009-07-13] (Microsoft Corporation)
3 srv; C:\Windows\System32\DRIVERS\srv.sys [467456 2011-02-22] (Microsoft Corporation)
3 srv2; C:\Windows\System32\DRIVERS\srv2.sys [411648 2011-02-22] (Microsoft Corporation)
3 srvnet; C:\Windows\System32\DRIVERS\srvnet.sys [167936 2011-02-22] (Microsoft Corporation)
3 stexstor; C:\Windows\System32\DRIVERS\stexstor.sys [24656 2009-07-13] (Promise Technology)
3 swenum; C:\Windows\System32\drivers\swenum.sys [12496 2009-07-13] (Microsoft Corporation)
0 Tcpip; C:\Windows\System32\drivers\tcpip.sys [1924480 2010-11-20] (Microsoft Corporation)
3 TCPIP6; C:\Windows\System32\DRIVERS\tcpip.sys [1924480 2010-11-20] (Microsoft Corporation)
2 tcpipreg; C:\Windows\System32\drivers\tcpipreg.sys [45056 2010-11-20] (Microsoft Corporation)
3 TDPIPE; C:\Windows\System32\drivers\tdpipe.sys [15872 2009-07-13] (Microsoft Corporation)
3 TDTCP; C:\Windows\System32\drivers\tdtcp.sys [23552 2009-07-13] (Microsoft Corporation)
1 tdx; C:\Windows\System32\DRIVERS\tdx.sys [119296 2010-11-20] (Microsoft Corporation)
1 TermDD; C:\Windows\System32\drivers\termdd.sys [63360 2010-11-20] (Microsoft Corporation)
3 TFsExDisk; \??\C:\Windows\System32\Drivers\TFsExDisk.sys [16448 2010-06-14] (Teruten Inc)
3 tssecsrv; C:\Windows\System32\DRIVERS\tssecsrv.sys [39424 2010-11-20] (Microsoft Corporation)
3 TsUsbFlt; C:\Windows\System32\drivers\tsusbflt.sys [59392 2010-11-20] (Microsoft Corporation)
3 tunnel; C:\Windows\System32\DRIVERS\tunnel.sys [125440 2010-11-20] (Microsoft Corporation)
3 uagp35; C:\Windows\System32\DRIVERS\uagp35.sys [64080 2009-07-13] (Microsoft Corporation)
4 udfs; C:\Windows\System32\DRIVERS\udfs.sys [328192 2010-11-20] (Microsoft Corporation)
3 uliagpkx; C:\Windows\System32\drivers\uliagpkx.sys [64592 2009-07-13] (Microsoft Corporation)
3 umbus; C:\Windows\System32\drivers\umbus.sys [48640 2010-11-20] (Microsoft Corporation)
3 UmPass; C:\Windows\System32\DRIVERS\umpass.sys [9728 2009-07-13] (Microsoft Corporation)
3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [51712 2011-02-18] (Apple, Inc.)
3 usbccgp; C:\Windows\System32\DRIVERS\usbccgp.sys [98816 2011-03-24] (Microsoft Corporation)
3 usbcir; C:\Windows\System32\drivers\usbcir.sys [100352 2009-07-13] (Microsoft Corporation)
3 usbehci; C:\Windows\System32\drivers\usbehci.sys [52736 2011-03-24] (Microsoft Corporation)
3 usbhub; C:\Windows\System32\DRIVERS\usbhub.sys [343040 2011-03-24] (Microsoft Corporation)
3 usbohci; C:\Windows\System32\drivers\usbohci.sys [25600 2011-03-24] (Microsoft Corporation)
3 usbprint; C:\Windows\System32\DRIVERS\usbprint.sys [25088 2009-07-13] (Microsoft Corporation)
3 usbscan; C:\Windows\System32\DRIVERS\usbscan.sys [41984 2009-07-13] (Microsoft Corporation)
3 USBSTOR; C:\Windows\System32\DRIVERS\USBSTOR.SYS [91648 2011-03-10] (Microsoft Corporation)
3 usbuhci; C:\Windows\System32\drivers\usbuhci.sys [30720 2011-03-24] (Microsoft Corporation)
3 usbvideo; C:\Windows\System32\Drivers\usbvideo.sys [184960 2010-11-20] (Microsoft Corporation)
0 vdrvroot; C:\Windows\System32\drivers\vdrvroot.sys [36432 2009-07-13] (Microsoft Corporation)
3 vga; C:\Windows\System32\DRIVERS\vgapnp.sys [29184 2009-07-13] (Microsoft Corporation)
1 VgaSave; C:\Windows\System32\drivers\vga.sys [29184 2009-07-13] (Microsoft Corporation)
3 vhdmp; C:\Windows\System32\drivers\vhdmp.sys [215936 2010-11-20] (Microsoft Corporation)
3 viaide; C:\Windows\System32\drivers\viaide.sys [17488 2009-07-13] (VIA Technologies, Inc.)
0 volmgr; C:\Windows\System32\drivers\volmgr.sys [71552 2010-11-20] (Microsoft Corporation)
0 volmgrx; C:\Windows\System32\drivers\volmgrx.sys [363392 2010-11-20] (Microsoft Corporation)
0 volsnap; C:\Windows\System32\drivers\volsnap.sys [295808 2010-11-20] (Microsoft Corporation)
3 vsmraid; C:\Windows\System32\DRIVERS\vsmraid.sys [161872 2009-07-13] (VIA Technologies Inc.,Ltd)
3 vwifibus; C:\Windows\System32\DRIVERS\vwifibus.sys [24576 2009-07-13] (Microsoft Corporation)
1 vwififlt; C:\Windows\System32\DRIVERS\vwififlt.sys [59904 2009-07-13] (Microsoft Corporation)
3 vwifimp; C:\Windows\System32\DRIVERS\vwifimp.sys [17920 2009-07-13] (Microsoft Corporation)
3 WacomPen; C:\Windows\System32\DRIVERS\wacompen.sys [27776 2009-07-13] (Microsoft Corporation)
3 WANARP; C:\Windows\System32\DRIVERS\wanarp.sys [88576 2010-11-20] (Microsoft Corporation)
1 Wanarpv6; C:\Windows\System32\DRIVERS\wanarp.sys [88576 2010-11-20] (Microsoft Corporation)
3 Wd; C:\Windows\System32\DRIVERS\wd.sys [21056 2009-07-13] (Microsoft Corporation)
3 WDC_SAM; C:\Windows\System32\DRIVERS\wdcsam64.sys [14464 2008-05-06] (Western Digital Technologies)
0 Wdf01000; C:\Windows\System32\drivers\Wdf01000.sys [654928 2009-07-13] (Microsoft Corporation)
1 WfpLwf; C:\Windows\System32\DRIVERS\wfplwf.sys [12800 2009-07-13] (Microsoft Corporation)
3 WIMMount; C:\Windows\System32\drivers\wimmount.sys [22096 2009-07-13] (Microsoft Corporation)
3 WinUsb; C:\Windows\System32\DRIVERS\WinUsb.sys [41984 2010-11-20] (Microsoft Corporation)
3 WmiAcpi; C:\Windows\System32\drivers\wmiacpi.sys [14336 2009-07-13] (Microsoft Corporation)
4 ws2ifsl; C:\Windows\System32\drivers\ws2ifsl.sys [21504 2009-07-13] (Microsoft Corporation)
3 WudfPf; C:\Windows\System32\drivers\WudfPf.sys [112128 2010-11-20] (Microsoft Corporation)
3 WUDFRd; C:\Windows\System32\DRIVERS\WUDFRd.sys [172544 2010-11-20] (Microsoft Corporation)
3 yukonw7; C:\Windows\System32\DRIVERS\yk62x64.sys [389120 2009-06-10] (Marvell)

========================= NetSvcs ============================

============ One Month Created Files and folders ============

2011-05-27 14:07 - 2011-05-27 14:07 - 0000000 ____D C:\NBRT
2011-05-26 18:07 - 2011-05-26 19:20 - 0000000 ____D C:\Users\Owner\Downloads\Disney Movies
2011-05-26 17:54 - 2011-05-26 17:54 - 0206952 ____A C:\Users\Owner\Desktop\jack.jpg
2011-05-24 20:43 - 2011-05-24 20:43 - 0000000 ____D C:\Users\Owner\AppData\Local\Google
2011-05-24 20:43 - 2011-05-24 20:43 - 0000000 ____D C:\Users\All Users\Google
2011-05-24 20:43 - 2011-05-24 20:43 - 0000000 ____D C:\ProgramData\Google
2011-05-24 20:32 - 2011-05-26 23:00 - 0000000 ____D C:\Users\Owner\Desktop\d2ntt
2011-05-23 18:20 - 2011-05-24 15:12 - 0000000 ____D C:\Users\Owner\Downloads\Madeas Big Happy Family 2011 TS XViD - IMAGiNE.[UsaBit.com]
2011-05-23 18:19 - 2011-05-24 15:12 - 0000000 ____D C:\Users\Owner\Downloads\Priest 2011 Cam x264 Feel-Free
2011-05-23 18:16 - 2011-05-24 15:12 - 0000000 ____D C:\Users\Owner\Downloads\Jumping The Broom 2011 CAM XVID READ NFO LKRG
2011-05-23 15:29 - 2011-05-23 17:49 - 0000000 ____D C:\Users\Owner\Downloads\Fast Five AKA Fast & Furious 5 (2011), TS(xvid), NL Subs, DMT
2011-05-23 15:25 - 2011-05-23 17:49 - 0000000 ____D C:\Users\Owner\Downloads\Pirates.of.the.Caribbean.On.Stranger.Tides.2011.TS.XviD.AC3.HQ.Hive-CM8
2011-05-23 15:23 - 2011-05-23 17:49 - 0000000 ____D C:\Users\Owner\Downloads\Pirates.of.The.Caribbean.4.2011.TS.XviD-BiDA.[UsaBit.com]
2011-05-21 12:39 - 2011-05-21 13:00 - 0000000 ____D C:\Users\Owner\Downloads\Something Borrowed TS XViD - IMAGiNE.[UsaBit.com]
2011-05-18 21:04 - 2011-05-18 21:04 - 0041472 ____A C:\Users\Owner\Documents\95081 soliz,eusebio-chapter-5-17.doc
2011-05-18 18:52 - 2011-05-18 20:32 - 0039424 ____A C:\Users\Owner\Documents\95081 soliz,eusebio-chapter-5-12.doc
2011-05-17 20:27 - 2011-05-27 06:39 - 0000000 ___RD C:\Users\Owner\Podcasts
2011-05-17 20:24 - 2011-05-17 20:26 - 0000000 ____D C:\Program Files\Zune
2011-05-17 20:24 - 2011-05-17 20:24 - 0000927 ____A C:\Users\Public\Desktop\Zune.lnk
2011-05-17 20:01 - 2011-05-17 20:05 - 125460744 ____A (Microsoft Corporation) C:\Users\Owner\Downloads\ZuneSetupPkg.exe
2011-05-17 20:00 - 2011-05-17 20:00 - 0000000 ___AH C:\Windows\System32\Drivers\Msft_User_ZuneDriver_01_09_00.Wdf
2011-05-17 20:00 - 2011-05-17 20:00 - 0000000 ___AH C:\Windows\System32\Drivers\Msft_Kernel_WinUsb_01009.Wdf
2011-05-14 21:00 - 2011-05-14 21:01 - 0000151 ____A C:\Windows\PhotoSnapViewer.INI
2011-05-14 21:00 - 2011-05-14 21:00 - 0150208 ____A C:\Users\Owner\Documents\MUSEUM.jpg
2011-05-14 11:51 - 2011-05-14 11:51 - 0001482 ____A C:\Users\Owner\Desktop\Diablo II.exe - Shortcut4.lnk
2011-05-14 11:50 - 2011-05-14 11:50 - 0001482 ____A C:\Users\Owner\Desktop\Diablo II.exe - Shortcut3.lnk
2011-05-14 11:48 - 2011-05-14 11:55 - 0000000 ____D C:\Program Files (x86)\Diablo II 4
2011-05-14 11:47 - 2011-05-14 11:55 - 0000000 ____D C:\Program Files (x86)\Diablo II 3
2011-05-14 11:38 - 2011-05-14 11:38 - 0000000 ___RD C:\Sandbox
2011-05-14 11:37 - 2011-05-14 11:39 - 0001489 ____A C:\Users\Owner\Desktop\Diablo II.exe - Shortcut2.lnk
2011-05-14 11:26 - 2011-05-18 17:20 - 0003720 ____A C:\Windows\Sandboxie.ini
2011-05-14 11:26 - 2011-05-14 11:25 - 0000896 ____A C:\Users\Owner\Desktop\Sandboxed Web Browser.lnk
2011-05-14 11:25 - 2011-05-27 06:37 - 0000000 ____D C:\Users\Owner\Desktop\sandboxie
2011-05-14 11:25 - 2011-05-14 11:25 - 0000000 ____D C:\Program Files\Sandboxie
2011-05-14 11:20 - 2011-05-27 06:39 - 0000000 ___AD C:\Users\Owner\Desktop\D2NT
2011-05-14 11:20 - 2011-05-27 06:39 - 0000000 ____D C:\Users\Owner\Desktop\Young_Love's D2NT 3.0 Rush Bot
2011-05-14 11:20 - 2011-05-24 19:56 - 0047188 ____A C:\Users\Owner\Desktop\magic_rare.nip
2011-05-14 11:20 - 2011-05-14 11:20 - 0000000 ___AD C:\Users\Owner\Desktop\modified file for d2nt extreme
2011-05-14 11:00 - 2011-05-27 06:36 - 0000000 ____D C:\Users\Owner\Desktop\maphack
2011-05-14 10:10 - 2011-05-14 10:12 - 0074752 ____A C:\Users\Owner\Documents\Eusebio Soliz Jr Humanities 110.doc
2011-05-14 09:28 - 2011-05-14 09:28 - 0002086 ____A C:\Users\Public\Desktop\SDFormatter.lnk
2011-05-14 09:28 - 2011-05-14 09:28 - 0000000 ____D C:\Program Files (x86)\SDA
2011-05-12 21:39 - 2011-05-12 21:40 - 0128243 ____A C:\Users\Owner\Downloads\photo(3).JPG
2011-05-12 17:24 - 2011-05-27 06:37 - 0000000 ____D C:\Users\Owner\Downloads\nds roms 5001-5600
2011-05-12 05:58 - 2011-05-12 05:58 - 9702400 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 3695416 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2011-05-12 05:58 - 2011-05-12 05:58 - 3695416 ____A (Microsoft Corporation) C:\Windows\System32\ieapfltr.dat
2011-05-12 05:58 - 2011-05-12 05:58 - 2382848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2011-05-12 05:58 - 2011-05-12 05:58 - 2382848 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2011-05-12 05:58 - 2011-05-12 05:58 - 2303488 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 2136064 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 1797632 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 1785344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 17773056 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 1492992 ____A (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl
2011-05-12 05:58 - 2011-05-12 05:58 - 1427456 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2011-05-12 05:58 - 2011-05-12 05:58 - 1389056 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 1344000 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 12268544 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 1126912 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 1102336 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 10884096 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0818176 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0716800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0697344 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0603648 ____A (Microsoft Corporation) C:\Windows\System32\vbscript.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0580608 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0534528 ____A (Microsoft Corporation) C:\Windows\System32\ieapfltr.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0452608 ____A (Microsoft Corporation) C:\Windows\System32\dxtmsft.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0448512 ____A (Microsoft Corporation) C:\Windows\System32\html.iec
2011-05-12 05:58 - 2011-05-12 05:58 - 0434176 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0420864 ____A (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0403248 ____A (Microsoft Corporation) C:\Windows\System32\iedkcs32.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0367104 ____A (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2011-05-12 05:58 - 2011-05-12 05:58 - 0353792 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0353584 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0282112 ____A (Microsoft Corporation) C:\Windows\System32\dxtrans.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0267776 ____A (Microsoft Corporation) C:\Windows\System32\ieaksie.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0249344 ____A (Microsoft Corporation) C:\Windows\System32\webcheck.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0248320 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0236544 ____A (Microsoft Corporation) C:\Windows\System32\url.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0231936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0227840 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieaksie.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0223232 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0222208 ____A (Microsoft Corporation) C:\Windows\System32\msls31.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0203776 ____A (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0197120 ____A (Microsoft Corporation) C:\Windows\System32\msrating.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0176640 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0173056 ____A (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe
2011-05-12 05:58 - 2011-05-12 05:58 - 0165888 ____A (Microsoft Corporation) C:\Windows\System32\iexpress.exe
2011-05-12 05:58 - 2011-05-12 05:58 - 0163840 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieakui.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0163840 ____A (Microsoft Corporation) C:\Windows\System32\ieakui.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0162304 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0161792 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0160256 ____A (Microsoft Corporation) C:\Windows\System32\wextract.exe
2011-05-12 05:58 - 2011-05-12 05:58 - 0160256 ____A (Microsoft Corporation) C:\Windows\System32\ieakeng.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0152064 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2011-05-12 05:58 - 2011-05-12 05:58 - 0150528 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2011-05-12 05:58 - 2011-05-12 05:58 - 0149504 ____A (Microsoft Corporation) C:\Windows\System32\occache.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0145920 ____A (Microsoft Corporation) C:\Windows\System32\iepeers.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0142848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2011-05-12 05:58 - 2011-05-12 05:58 - 0135168 ____A (Microsoft Corporation) C:\Windows\System32\IEAdvpack.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0130560 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieakeng.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0123392 ____A (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0118784 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0114176 ____A (Microsoft Corporation) C:\Windows\System32\admparse.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0111616 ____A (Microsoft Corporation) C:\Windows\System32\iesysprep.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0110592 ____A (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0103936 ____A (Microsoft Corporation) C:\Windows\System32\inseng.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0101888 ____A (Microsoft Corporation) C:\Windows\SysWOW64\admparse.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0096256 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0091648 ____A (Microsoft Corporation) C:\Windows\System32\SetIEInstalledDate.exe
2011-05-12 05:58 - 2011-05-12 05:58 - 0089088 ____A (Microsoft Corporation) C:\Windows\System32\RegisterIEPKEYs.exe
2011-05-12 05:58 - 2011-05-12 05:58 - 0089088 ____A (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe
2011-05-12 05:58 - 2011-05-12 05:58 - 0086528 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0085504 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0085504 ____A (Microsoft Corporation) C:\Windows\System32\iesetup.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0082432 ____A (Microsoft Corporation) C:\Windows\System32\icardie.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0078848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0076800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2011-05-12 05:58 - 2011-05-12 05:58 - 0076800 ____A (Microsoft Corporation) C:\Windows\System32\tdc.ocx
2011-05-12 05:58 - 2011-05-12 05:58 - 0074752 ____A (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2011-05-12 05:58 - 2011-05-12 05:58 - 0074752 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0074240 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ie4uinit.exe
2011-05-12 05:58 - 2011-05-12 05:58 - 0072822 ____A C:\Windows\SysWOW64\ieuinit.inf
2011-05-12 05:58 - 2011-05-12 05:58 - 0072822 ____A C:\Windows\System32\ieuinit.inf
2011-05-12 05:58 - 2011-05-12 05:58 - 0072704 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0066048 ____A (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0065024 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0065024 ____A (Microsoft Corporation) C:\Windows\System32\pngfilt.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0063488 ____A (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2011-05-12 05:58 - 2011-05-12 05:58 - 0055296 ____A (Microsoft Corporation) C:\Windows\System32\msfeedsbs.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0054272 ____A (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0049664 ____A (Microsoft Corporation) C:\Windows\System32\imgutil.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0048640 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0048640 ____A (Microsoft Corporation) C:\Windows\System32\mshtmler.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0041472 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0039936 ____A (Microsoft Corporation) C:\Windows\System32\iernonce.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0035840 ____A (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0031744 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0030720 ____A (Microsoft Corporation) C:\Windows\System32\licmgr10.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0023552 ____A (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0012288 ____A (Microsoft Corporation) C:\Windows\System32\mshta.exe
2011-05-12 05:58 - 2011-05-12 05:58 - 0011776 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2011-05-12 05:58 - 2011-05-12 05:58 - 0010752 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2011-05-12 05:58 - 2011-05-12 05:58 - 0010752 ____A (Microsoft Corporation) C:\Windows\System32\msfeedssync.exe
2011-05-10 20:21 - 2011-05-18 17:20 - 4157437 ___AH C:\Users\Owner\AppData\Local\IconCache.db
2011-05-10 18:18 - 2011-04-08 23:02 - 5562240 ____A (Microsoft Corporation) C:\Windows\System32\ntoskrnl.exe
2011-05-10 18:18 - 2011-04-08 22:02 - 3967872 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2011-05-10 18:18 - 2011-04-08 22:02 - 3912576 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2011-05-10 18:18 - 2011-03-24 19:29 - 0343040 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\usbhub.sys
2011-05-10 18:18 - 2011-03-24 19:29 - 0325120 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\usbport.sys
2011-05-10 18:18 - 2011-03-24 19:29 - 0098816 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\usbccgp.sys
2011-05-10 18:18 - 2011-03-24 19:29 - 0052736 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\usbehci.sys
2011-05-10 18:18 - 2011-03-24 19:29 - 0030720 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\usbuhci.sys
2011-05-10 18:18 - 2011-03-24 19:29 - 0025600 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\usbohci.sys
2011-05-10 18:18 - 2011-03-24 19:28 - 0007936 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\usbd.sys
2011-05-08 11:15 - 2011-05-14 09:31 - 0000000 ____D C:\Users\Owner\Desktop\new ds games
2011-05-08 11:02 - 2011-05-27 06:39 - 0000000 ____D C:\Users\Owner\Desktop\ds r4 update
2011-05-08 11:02 - 2011-05-26 23:00 - 0000000 ____D C:\Users\Owner\Documents\ds r4 update
2011-05-07 19:32 - 2011-05-07 21:14 - 0000000 ____D C:\Users\Owner\Documents\Macworld USA - June 2011 (Malestrom)
2011-05-07 19:32 - 2011-05-07 21:14 - 0000000 ____D C:\Users\Owner\Documents\Mac Life - June 2011 (Malestrom)
2011-05-07 19:30 - 2011-05-07 21:14 - 0000000 ____D C:\Users\Owner\Documents\Stuff - June 2011 (UK) (Malestrom)
2011-05-07 19:30 - 2011-05-07 19:30 - 0000000 ____D C:\Users\Owner\Documents\Advanced Sex Explicit Positions for Explosive Lovemaking
2011-05-07 19:29 - 2011-05-07 21:14 - 0000000 ____D C:\Users\Owner\Documents\PC World - June 2011 (True PDF) (Malestrom)
2011-05-07 19:12 - 2011-05-07 19:23 - 733825024 ____A C:\Users\Owner\Downloads\aaf-arctic.blast.2010.dvdrip.xvid.avi
2011-05-06 19:53 - 2011-05-06 20:49 - 0000000 ____D C:\Users\Owner\Downloads\Thor 2011 TS XviD Feel-Free
2011-05-06 19:52 - 2011-05-06 20:55 - 0000000 ____D C:\Users\Owner\Downloads\Thor 2011 TS READNFO XViD - IMAGiNE
2011-05-06 12:03 - 2011-05-12 05:59 - 0005522 ____A C:\Windows\IE9_main.log
2011-05-04 20:18 - 2011-05-04 20:56 - 0000000 ____D C:\Users\Owner\Downloads\Tyler Perry's Madea's Big Happy Family (The Play)
2011-05-04 19:59 - 2011-05-04 19:59 - 2101631 ____A C:\Users\Owner\Downloads\photo(2).JPG
2011-05-04 19:59 - 2011-05-04 19:59 - 1992400 ____A C:\Users\Owner\Downloads\photo(1).JPG
2011-05-04 19:59 - 2011-05-04 19:59 - 1873508 ____A C:\Users\Owner\Downloads\photo.JPG
2011-05-04 14:26 - 2011-05-04 14:26 - 0001042 ____A C:\Users\Public\Desktop\RealPlayer.lnk
2011-05-04 14:24 - 2011-05-04 14:24 - 0675088 ____A (RealNetworks, Inc.) C:\Users\Owner\Downloads\RealPlayer.exe
2011-05-02 12:54 - 2011-05-02 12:54 - 0001783 ____A C:\Users\Public\Desktop\iTunes.lnk
2011-05-02 12:54 - 2011-05-02 12:54 - 0000000 ____D C:\Program Files\iTunes
2011-05-02 12:54 - 2011-05-02 12:54 - 0000000 ____D C:\Program Files\iPod
2011-05-02 12:52 - 2011-05-02 12:52 - 0000000 ____D C:\Program Files\Bonjour
2011-05-02 12:52 - 2011-05-02 12:52 - 0000000 ____D C:\Program Files (x86)\Bonjour
2011-05-02 12:50 - 2011-05-02 12:50 - 0187996 ___AH C:\Windows\SysWOW64\mlfcache.dat
2011-04-30 20:38 - 2011-04-30 20:38 - 0021840 ____A C:\Windows\SysWOW64\SIntfNT.dll
2011-04-30 20:38 - 2011-04-30 20:38 - 0017212 ____A C:\Windows\SysWOW64\SIntf32.dll
2011-04-30 20:38 - 2011-04-30 20:38 - 0012067 ____A C:\Windows\SysWOW64\SIntf16.dll
2011-04-30 20:23 - 2011-04-30 20:38 - 0001907 ____A C:\Users\Owner\Desktop\Diablo II - Lord of Destruction.lnk
2011-04-30 16:29 - 2011-05-14 11:56 - 0041567 ____A C:\Windows\DIIUnin.dat
2011-04-30 16:29 - 2011-04-30 16:29 - 0094208 ____A (Blizzard Entertainment) C:\Windows\DIIUnin.exe
2011-04-30 16:29 - 2011-04-30 16:29 - 0002829 ____A C:\Windows\DIIUnin.pif
2011-04-30 16:15 - 2011-05-18 17:12 - 0000000 ____D C:\Program Files (x86)\Diablo II
2011-04-30 10:31 - 2011-04-30 14:24 - 0000000 ____D C:\Users\Owner\Downloads\Soul Surfer 2011 CAM XVID LKRG
2011-04-28 12:44 - 2011-05-18 05:46 - 0000000 ____D C:\Program Files (x86)\Diablo II111
2011-04-28 07:01 - 2011-04-28 07:01 - 0068608 ____A C:\Users\Owner\Documents\dominant eltt.doc


============ 3 Months Modified Files and folders =============

2011-05-28 08:24 - 2011-05-28 08:23 - 0000000 ____D C:\FRST
2011-05-27 14:07 - 2011-05-27 14:07 - 0000000 ____D C:\NBRT
2011-05-27 06:39 - 2011-05-17 20:27 - 0000000 ___RD C:\Users\Owner\Podcasts
2011-05-27 06:39 - 2011-05-14 11:20 - 0000000 ___AD C:\Users\Owner\Desktop\D2NT
2011-05-27 06:39 - 2011-05-14 11:20 - 0000000 ____D C:\Users\Owner\Desktop\Young_Love's D2NT 3.0 Rush Bot
2011-05-27 06:39 - 2011-05-08 11:02 - 0000000 ____D C:\Users\Owner\Desktop\ds r4 update
2011-05-27 06:39 - 2011-04-20 18:35 - 0000000 ____D C:\Users\Owner\Desktop\e
2011-05-27 06:39 - 2011-04-20 17:37 - 0000000 ____D C:\Users\Owner\Downloads\The.Dilemma.2011.BDRip.XviD.Larceny
2011-05-27 06:39 - 2011-04-12 19:29 - 0000000 ____D C:\Users\Owner\Desktop\redsnow jailbreak
2011-05-27 06:39 - 2011-04-04 09:13 - 0000000 ____D C:\Users\Owner\Desktop\ATG REF CD
2011-05-27 06:39 - 2011-03-29 06:52 - 0000000 ____D C:\Users\Owner\Desktop\WinX DVD Ripper Platinum 6.0.2 build 20110112 + Serial [TrT-TcT]
2011-05-27 06:39 - 2011-03-14 15:15 - 0000000 ____D C:\Users\Owner\games
2011-05-27 06:39 - 2011-03-14 09:12 - 0000000 ____D C:\Users\Owner\Desktop\Thundercats Complete All 130 Episodes
2011-05-27 06:39 - 2011-03-09 08:17 - 0000000 ____D C:\Users\Owner\Desktop\q music
2011-05-27 06:39 - 2011-03-07 12:57 - 0000000 ____D C:\Users\Owner\Desktop\wii
2011-05-27 06:39 - 2011-02-20 11:01 - 0000000 ____D C:\Users\Owner\AppData\Roaming\dvdcss
2011-05-27 06:39 - 2011-02-08 21:01 - 0000000 ____D C:\Users\Owner\AppData\Roaming\uTorrent
2011-05-27 06:39 - 2011-02-08 11:16 - 0000000 ____D C:\users\Owner
2011-05-27 06:39 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\System32\wfp
2011-05-27 06:39 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\System32\wbem
2011-05-27 06:39 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\System32\NDF
2011-05-27 06:39 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\System32\DriverStore
2011-05-27 06:39 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\servicing
2011-05-27 06:39 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\AppCompat
2011-05-27 06:38 - 2011-04-13 19:34 - 0000000 ____D C:\Users\Owner\AppData\Local\Downloaded Installations
2011-05-27 06:38 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\registration
2011-05-27 06:37 - 2011-05-14 11:25 - 0000000 ____D C:\Users\Owner\Desktop\sandboxie
2011-05-27 06:37 - 2011-05-12 17:24 - 0000000 ____D C:\Users\Owner\Downloads\nds roms 5001-5600
2011-05-27 06:37 - 2011-03-15 15:49 - 0000000 ____D C:\Users\Owner\Documents\BioWare
2011-05-27 06:37 - 2011-02-24 16:09 - 0000000 ____D C:\Users\Owner\Documents\mags
2011-05-27 06:36 - 2011-05-14 11:00 - 0000000 ____D C:\Users\Owner\Desktop\maphack
2011-05-27 06:36 - 2011-04-03 18:55 - 0000000 ____D C:\Users\Owner\AppData\Roaming\Digiarty
2011-05-27 06:36 - 2011-03-13 11:19 - 0000000 ____D C:\Users\Owner\AppData\Roaming\Kalypso Media
2011-05-27 06:36 - 2011-02-09 12:35 - 0000000 ____D C:\Users\Owner\AppData\Roaming\Real
2011-05-27 06:36 - 2011-02-08 21:37 - 0000000 ____D C:\Users\Owner\AppData\Roaming\Mozilla
2011-05-27 06:36 - 2011-02-08 21:06 - 0000000 ____D C:\Users\Owner\AppData\Roaming\vlc
2011-05-27 06:36 - 2011-02-08 20:00 - 0000000 ____D C:\Users\Owner\AppData\Roaming\Macromedia
2011-05-27 06:36 - 2011-02-08 20:00 - 0000000 ____D C:\Users\Owner\AppData\Roaming\Adobe
2011-05-27 06:36 - 2011-02-08 11:16 - 0000000 ____D C:\Users\Owner\AppData\LocalLow
2011-05-27 06:36 - 2011-02-08 11:16 - 0000000 ____D C:\Users\Owner\AppData\Local\VirtualStore
2011-05-27 06:35 - 2011-02-09 12:35 - 0000000 ____D C:\Users\All Users\Real
2011-05-27 06:35 - 2011-02-09 12:35 - 0000000 ____D C:\ProgramData\Real
2011-05-27 06:35 - 2011-02-08 21:37 - 0000000 ____D C:\Users\Owner\AppData\Local\Mozilla
2011-05-27 06:35 - 2009-07-13 19:18 - 0000000 __SHD C:\$Recycle.Bin
2011-05-26 23:11 - 2011-04-04 09:13 - 0000000 ____D C:\Users\Owner\Documents\ATG REF CD
2011-05-26 23:00 - 2011-05-24 20:32 - 0000000 ____D C:\Users\Owner\Desktop\d2ntt
2011-05-26 23:00 - 2011-05-08 11:02 - 0000000 ____D C:\Users\Owner\Documents\ds r4 update
2011-05-26 23:00 - 2011-04-12 19:29 - 0000000 ____D C:\Users\Owner\Documents\redsnow jailbreak
2011-05-26 23:00 - 2011-03-07 12:57 - 0000000 ____D C:\Users\Owner\Documents\wii
2011-05-26 20:22 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\System32\LogFiles
2011-05-26 19:20 - 2011-05-26 18:07 - 0000000 ____D C:\Users\Owner\Downloads\Disney Movies
2011-05-26 17:54 - 2011-05-26 17:54 - 0206952 ____A C:\Users\Owner\Desktop\jack.jpg
2011-05-24 20:43 - 2011-05-24 20:43 - 0000000 ____D C:\Users\Owner\AppData\Local\Google
2011-05-24 20:43 - 2011-05-24 20:43 - 0000000 ____D C:\Users\All Users\Google
2011-05-24 20:43 - 2011-05-24 20:43 - 0000000 ____D C:\ProgramData\Google
2011-05-24 19:56 - 2011-05-14 11:20 - 0047188 ____A C:\Users\Owner\Desktop\magic_rare.nip
2011-05-24 15:12 - 2011-05-23 18:20 - 0000000 ____D C:\Users\Owner\Downloads\Madeas Big Happy Family 2011 TS XViD - IMAGiNE.[UsaBit.com]
2011-05-24 15:12 - 2011-05-23 18:19 - 0000000 ____D C:\Users\Owner\Downloads\Priest 2011 Cam x264 Feel-Free
2011-05-24 15:12 - 2011-05-23 18:16 - 0000000 ____D C:\Users\Owner\Downloads\Jumping The Broom 2011 CAM XVID READ NFO LKRG
2011-05-23 17:49 - 2011-05-23 15:29 - 0000000 ____D C:\Users\Owner\Downloads\Fast Five AKA Fast & Furious 5 (2011), TS(xvid), NL Subs, DMT
2011-05-23 17:49 - 2011-05-23 15:25 - 0000000 ____D C:\Users\Owner\Downloads\Pirates.of.the.Caribbean.On.Stranger.Tides.2011.TS.XviD.AC3.HQ.Hive-CM8
2011-05-23 17:49 - 2011-05-23 15:23 - 0000000 ____D C:\Users\Owner\Downloads\Pirates.of.The.Caribbean.4.2011.TS.XviD-BiDA.[UsaBit.com]
2011-05-21 13:00 - 2011-05-21 12:39 - 0000000 ____D C:\Users\Owner\Downloads\Something Borrowed TS XViD - IMAGiNE.[UsaBit.com]
2011-05-20 15:31 - 2011-02-09 12:34 - 0000600 ____A C:\Users\Owner\AppData\Roaming\winscp.rnd
2011-05-18 21:04 - 2011-05-18 21:04 - 0041472 ____A C:\Users\Owner\Documents\95081 soliz,eusebio-chapter-5-17.doc
2011-05-18 20:36 - 2011-02-08 20:11 - 0000000 ____D C:\Users\Owner\AppData\Roaming\Apple Computer
2011-05-18 20:36 - 2011-02-08 20:11 - 0000000 ____D C:\Users\Owner\AppData\Local\Apple Computer
2011-05-18 20:32 - 2011-05-18 18:52 - 0039424 ____A C:\Users\Owner\Documents\95081 soliz,eusebio-chapter-5-12.doc
2011-05-18 17:50 - 2011-02-20 15:01 - 0000000 ____D C:\Users\Owner\AppData\Local\ElevatedDiagnostics
2011-05-18 17:22 - 2011-02-08 11:08 - 3207122944 __ASH C:\hiberfil.sys
2011-05-18 17:20 - 2011-05-14 11:26 - 0003720 ____A C:\Windows\Sandboxie.ini
2011-05-18 17:20 - 2011-05-10 20:21 - 4157437 ___AH C:\Users\Owner\AppData\Local\IconCache.db
2011-05-18 17:20 - 2011-02-08 11:16 - 1357342 ____A C:\Windows\WindowsUpdate.log
2011-05-18 17:12 - 2011-04-30 16:15 - 0000000 ____D C:\Program Files (x86)\Diablo II
2011-05-18 05:46 - 2011-04-28 12:44 - 0000000 ____D C:\Program Files (x86)\Diablo II111
2011-05-17 21:39 - 2009-07-13 21:13 - 0726316 ____A C:\Windows\System32\PerfStringBackup.INI
2011-05-17 21:39 - 2009-07-13 18:36 - 0624178 ____A C:\Windows\System32\perfh009.dat
2011-05-17 21:39 - 2009-07-13 18:36 - 0106522 ____A C:\Windows\System32\perfc009.dat
2011-05-17 20:38 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\Microsoft.NET
2011-05-17 20:27 - 2009-07-13 20:51 - 0050882 ____A C:\Windows\setupact.log
2011-05-17 20:26 - 2011-05-17 20:24 - 0000000 ____D C:\Program Files\Zune
2011-05-17 20:25 - 2009-07-13 20:45 - 0015504 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2011-05-17 20:25 - 2009-07-13 20:45 - 0015504 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2011-05-17 20:24 - 2011-05-17 20:24 - 0000927 ____A C:\Users\Public\Desktop\Zune.lnk
2011-05-17 20:23 - 2009-07-13 19:20 - 0000000 ____D C:\Program Files\Common Files\Microsoft Shared
2011-05-17 20:05 - 2011-05-17 20:01 - 125460744 ____A (Microsoft Corporation) C:\Users\Owner\Downloads\ZuneSetupPkg.exe
2011-05-17 20:00 - 2011-05-17 20:00 - 0000000 ___AH C:\Windows\System32\Drivers\Msft_User_ZuneDriver_01_09_00.Wdf
2011-05-17 20:00 - 2011-05-17 20:00 - 0000000 ___AH C:\Windows\System32\Drivers\Msft_Kernel_WinUsb_01009.Wdf
2011-05-17 20:00 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\System32\pt-PT
2011-05-17 20:00 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\System32\pt-BR
2011-05-17 20:00 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\System32\nl-NL
2011-05-17 20:00 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\System32\it-IT
2011-05-17 20:00 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\System32\fr-FR
2011-05-17 20:00 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\System32\es-ES
2011-05-17 20:00 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\System32\de-DE
2011-05-14 21:01 - 2011-05-14 21:00 - 0000151 ____A C:\Windows\PhotoSnapViewer.INI
2011-05-14 21:00 - 2011-05-14 21:00 - 0150208 ____A C:\Users\Owner\Documents\MUSEUM.jpg
2011-05-14 11:56 - 2011-04-30 16:29 - 0041567 ____A C:\Windows\DIIUnin.dat
2011-05-14 11:55 - 2011-05-14 11:48 - 0000000 ____D C:\Program Files (x86)\Diablo II 4
2011-05-14 11:55 - 2011-05-14 11:47 - 0000000 ____D C:\Program Files (x86)\Diablo II 3
2011-05-14 11:51 - 2011-05-14 11:51 - 0001482 ____A C:\Users\Owner\Desktop\Diablo II.exe - Shortcut4.lnk
2011-05-14 11:50 - 2011-05-14 11:50 - 0001482 ____A C:\Users\Owner\Desktop\Diablo II.exe - Shortcut3.lnk
2011-05-14 11:50 - 2009-07-13 19:20 - 0000000 ___RD C:\Program Files (x86)
2011-05-14 11:39 - 2011-05-14 11:37 - 0001489 ____A C:\Users\Owner\Desktop\Diablo II.exe - Shortcut2.lnk
2011-05-14 11:38 - 2011-05-14 11:38 - 0000000 ___RD C:\Sandbox
2011-05-14 11:25 - 2011-05-14 11:26 - 0000896 ____A C:\Users\Owner\Desktop\Sandboxed Web Browser.lnk
2011-05-14 11:25 - 2011-05-14 11:25 - 0000000 ____D C:\Program Files\Sandboxie
2011-05-14 11:20 - 2011-05-14 11:20 - 0000000 ___AD C:\Users\Owner\Desktop\modified file for d2nt extreme
2011-05-14 10:12 - 2011-05-14 10:10 - 0074752 ____A C:\Users\Owner\Documents\Eusebio Soliz Jr Humanities 110.doc
2011-05-14 09:31 - 2011-05-08 11:15 - 0000000 ____D C:\Users\Owner\Desktop\new ds games
2011-05-14 09:28 - 2011-05-14 09:28 - 0002086 ____A C:\Users\Public\Desktop\SDFormatter.lnk
2011-05-14 09:28 - 2011-05-14 09:28 - 0000000 ____D C:\Program Files (x86)\SDA
2011-05-12 21:40 - 2011-05-12 21:39 - 0128243 ____A C:\Users\Owner\Downloads\photo(3).JPG
2011-05-12 16:01 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\rescache
2011-05-12 15:24 - 2009-07-13 21:08 - 0000006 ___AH C:\Windows\Tasks\SA.DAT
2011-05-12 15:23 - 2011-02-08 12:43 - 0014072 ____A C:\Windows\PFRO.log
2011-05-12 05:59 - 2011-05-06 12:03 - 0005522 ____A C:\Windows\IE9_main.log
2011-05-12 05:58 - 2011-05-12 05:58 - 9702400 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 3695416 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2011-05-12 05:58 - 2011-05-12 05:58 - 3695416 ____A (Microsoft Corporation) C:\Windows\System32\ieapfltr.dat
2011-05-12 05:58 - 2011-05-12 05:58 - 2382848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2011-05-12 05:58 - 2011-05-12 05:58 - 2382848 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2011-05-12 05:58 - 2011-05-12 05:58 - 2303488 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 2136064 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 1797632 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 1785344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 17773056 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 1492992 ____A (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl
2011-05-12 05:58 - 2011-05-12 05:58 - 1427456 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2011-05-12 05:58 - 2011-05-12 05:58 - 1389056 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 1344000 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 12268544 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 1126912 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 1102336 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 10884096 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0818176 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0716800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0697344 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0603648 ____A (Microsoft Corporation) C:\Windows\System32\vbscript.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0580608 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0534528 ____A (Microsoft Corporation) C:\Windows\System32\ieapfltr.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0452608 ____A (Microsoft Corporation) C:\Windows\System32\dxtmsft.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0448512 ____A (Microsoft Corporation) C:\Windows\System32\html.iec
2011-05-12 05:58 - 2011-05-12 05:58 - 0434176 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0420864 ____A (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0403248 ____A (Microsoft Corporation) C:\Windows\System32\iedkcs32.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0367104 ____A (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2011-05-12 05:58 - 2011-05-12 05:58 - 0353792 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0353584 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0282112 ____A (Microsoft Corporation) C:\Windows\System32\dxtrans.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0267776 ____A (Microsoft Corporation) C:\Windows\System32\ieaksie.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0249344 ____A (Microsoft Corporation) C:\Windows\System32\webcheck.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0248320 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0236544 ____A (Microsoft Corporation) C:\Windows\System32\url.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0231936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0227840 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieaksie.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0223232 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0222208 ____A (Microsoft Corporation) C:\Windows\System32\msls31.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0203776 ____A (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0197120 ____A (Microsoft Corporation) C:\Windows\System32\msrating.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0176640 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0173056 ____A (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe
2011-05-12 05:58 - 2011-05-12 05:58 - 0165888 ____A (Microsoft Corporation) C:\Windows\System32\iexpress.exe
2011-05-12 05:58 - 2011-05-12 05:58 - 0163840 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieakui.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0163840 ____A (Microsoft Corporation) C:\Windows\System32\ieakui.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0162304 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0161792 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0160256 ____A (Microsoft Corporation) C:\Windows\System32\wextract.exe
2011-05-12 05:58 - 2011-05-12 05:58 - 0160256 ____A (Microsoft Corporation) C:\Windows\System32\ieakeng.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0152064 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2011-05-12 05:58 - 2011-05-12 05:58 - 0150528 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2011-05-12 05:58 - 2011-05-12 05:58 - 0149504 ____A (Microsoft Corporation) C:\Windows\System32\occache.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0145920 ____A (Microsoft Corporation) C:\Windows\System32\iepeers.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0142848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2011-05-12 05:58 - 2011-05-12 05:58 - 0135168 ____A (Microsoft Corporation) C:\Windows\System32\IEAdvpack.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0130560 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieakeng.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0123392 ____A (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0118784 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0114176 ____A (Microsoft Corporation) C:\Windows\System32\admparse.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0111616 ____A (Microsoft Corporation) C:\Windows\System32\iesysprep.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0110592 ____A (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0103936 ____A (Microsoft Corporation) C:\Windows\System32\inseng.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0101888 ____A (Microsoft Corporation) C:\Windows\SysWOW64\admparse.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0096256 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0091648 ____A (Microsoft Corporation) C:\Windows\System32\SetIEInstalledDate.exe
2011-05-12 05:58 - 2011-05-12 05:58 - 0089088 ____A (Microsoft Corporation) C:\Windows\System32\RegisterIEPKEYs.exe
2011-05-12 05:58 - 2011-05-12 05:58 - 0089088 ____A (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe
2011-05-12 05:58 - 2011-05-12 05:58 - 0086528 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0085504 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0085504 ____A (Microsoft Corporation) C:\Windows\System32\iesetup.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0082432 ____A (Microsoft Corporation) C:\Windows\System32\icardie.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0078848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0076800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2011-05-12 05:58 - 2011-05-12 05:58 - 0076800 ____A (Microsoft Corporation) C:\Windows\System32\tdc.ocx
2011-05-12 05:58 - 2011-05-12 05:58 - 0074752 ____A (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2011-05-12 05:58 - 2011-05-12 05:58 - 0074752 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0074240 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ie4uinit.exe
2011-05-12 05:58 - 2011-05-12 05:58 - 0072822 ____A C:\Windows\SysWOW64\ieuinit.inf
2011-05-12 05:58 - 2011-05-12 05:58 - 0072822 ____A C:\Windows\System32\ieuinit.inf
2011-05-12 05:58 - 2011-05-12 05:58 - 0072704 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0066048 ____A (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0065024 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0065024 ____A (Microsoft Corporation) C:\Windows\System32\pngfilt.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0063488 ____A (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2011-05-12 05:58 - 2011-05-12 05:58 - 0055296 ____A (Microsoft Corporation) C:\Windows\System32\msfeedsbs.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0054272 ____A (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0049664 ____A (Microsoft Corporation) C:\Windows\System32\imgutil.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0048640 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0048640 ____A (Microsoft Corporation) C:\Windows\System32\mshtmler.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0041472 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0039936 ____A (Microsoft Corporation) C:\Windows\System32\iernonce.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0035840 ____A (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0031744 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0030720 ____A (Microsoft Corporation) C:\Windows\System32\licmgr10.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0023552 ____A (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2011-05-12 05:58 - 2011-05-12 05:58 - 0012288 ____A (Microsoft Corporation) C:\Windows\System32\mshta.exe
2011-05-12 05:58 - 2011-05-12 05:58 - 0011776 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2011-05-12 05:58 - 2011-05-12 05:58 - 0010752 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2011-05-12 05:58 - 2011-05-12 05:58 - 0010752 ____A (Microsoft Corporation) C:\Windows\System32\msfeedssync.exe
2011-05-12 05:58 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\PolicyDefinitions
2011-05-11 16:14 - 2011-02-20 13:56 - 0000000 ____D C:\Program Files\lx_cats
2011-05-10 20:21 - 2011-02-08 11:44 - 44548040 ____A (Microsoft Corporation) C:\Windows\System32\MRT.exe
2011-05-07 21:14 - 2011-05-07 19:32 - 0000000 ____D C:\Users\Owner\Documents\Macworld USA - June 2011 (Malestrom)
2011-05-07 21:14 - 2011-05-07 19:32 - 0000000 ____D C:\Users\Owner\Documents\Mac Life - June 2011 (Malestrom)
2011-05-07 21:14 - 2011-05-07 19:30 - 0000000 ____D C:\Users\Owner\Documents\Stuff - June 2011 (UK) (Malestrom)
2011-05-07 21:14 - 2011-05-07 19:29 - 0000000 ____D C:\Users\Owner\Documents\PC World - June 2011 (True PDF) (Malestrom)
2011-05-07 19:30 - 2011-05-07 19:30 - 0000000 ____D C:\Users\Owner\Documents\Advanced Sex Explicit Positions for Explosive Lovemaking
2011-05-07 19:23 - 2011-05-07 19:12 - 733825024 ____A C:\Users\Owner\Downloads\aaf-arctic.blast.2010.dvdrip.xvid.avi
2011-05-06 20:55 - 2011-05-06 19:52 - 0000000 ____D C:\Users\Owner\Downloads\Thor 2011 TS READNFO XViD - IMAGiNE
2011-05-06 20:49 - 2011-05-06 19:53 - 0000000 ____D C:\Users\Owner\Downloads\Thor 2011 TS XviD Feel-Free
2011-05-04 20:56 - 2011-05-04 20:18 - 0000000 ____D C:\Users\Owner\Downloads\Tyler Perry's Madea's Big Happy Family (The Play)
2011-05-04 19:59 - 2011-05-04 19:59 - 2101631 ____A C:\Users\Owner\Downloads\photo(2).JPG
2011-05-04 19:59 - 2011-05-04 19:59 - 1992400 ____A C:\Users\Owner\Downloads\photo(1).JPG
2011-05-04 19:59 - 2011-05-04 19:59 - 1873508 ____A C:\Users\Owner\Downloads\photo.JPG
2011-05-04 14:26 - 2011-05-04 14:26 - 0001042 ____A C:\Users\Public\Desktop\RealPlayer.lnk
2011-05-04 14:26 - 2011-02-09 12:35 - 0272896 ____A (Progressive Networks) C:\Windows\SysWOW64\pncrt.dll
2011-05-04 14:26 - 2011-02-09 12:35 - 0198848 ____A (RealNetworks, Inc.) C:\Windows\SysWOW64\rmoc3260.dll
2011-05-04 14:26 - 2011-02-09 12:35 - 0006656 ____A (RealNetworks, Inc.) C:\Windows\SysWOW64\pndx5016.dll
2011-05-04 14:26 - 2011-02-09 12:35 - 0005632 ____A (RealNetworks, Inc.) C:\Windows\SysWOW64\pndx5032.dll
2011-05-04 14:26 - 2011-02-09 12:35 - 0000000 ____D C:\Program Files (x86)\Real
2011-05-04 14:25 - 2011-02-08 20:07 - 0499712 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msvcp71.dll
2011-05-04 14:24 - 2011-05-04 14:24 - 0675088 ____A (RealNetworks, Inc.) C:\Users\Owner\Downloads\RealPlayer.exe
2011-05-02 12:54 - 2011-05-02 12:54 - 0001783 ____A C:\Users\Public\Desktop\iTunes.lnk
2011-05-02 12:54 - 2011-05-02 12:54 - 0000000 ____D C:\Program Files\iTunes
2011-05-02 12:54 - 2011-05-02 12:54 - 0000000 ____D C:\Program Files\iPod
2011-05-02 12:54 - 2011-03-03 16:47 - 0000000 ____D C:\Program Files (x86)\iTunes
2011-05-02 12:52 - 2011-05-02 12:52 - 0000000 ____D C:\Program Files\Bonjour
2011-05-02 12:52 - 2011-05-02 12:52 - 0000000 ____D C:\Program Files (x86)\Bonjour
2011-05-02 12:50 - 2011-05-02 12:50 - 0187996 ___AH C:\Windows\SysWOW64\mlfcache.dat
2011-05-02 12:50 - 2011-03-03 16:43 - 0002491 ____A C:\Users\Public\Desktop\Safari.lnk
2011-05-02 12:50 - 2011-03-03 16:42 - 0000000 ____D C:\Program Files (x86)\Safari
2011-04-30 20:38 - 2011-04-30 20:38 - 0021840 ____A C:\Windows\SysWOW64\SIntfNT.dll
2011-04-30 20:38 - 2011-04-30 20:38 - 0017212 ____A C:\Windows\SysWOW64\SIntf32.dll
2011-04-30 20:38 - 2011-04-30 20:38 - 0012067 ____A C:\Windows\SysWOW64\SIntf16.dll
2011-04-30 20:38 - 2011-04-30 20:23 - 0001907 ____A C:\Users\Owner\Desktop\Diablo II - Lord of Destruction.lnk
2011-04-30 16:29 - 2011-04-30 16:29 - 0094208 ____A (Blizzard Entertainment) C:\Windows\DIIUnin.exe
2011-04-30 16:29 - 2011-04-30 16:29 - 0002829 ____A C:\Windows\DIIUnin.pif
2011-04-30 14:24 - 2011-04-30 10:31 - 0000000 ____D C:\Users\Owner\Downloads\Soul Surfer 2011 CAM XVID LKRG
2011-04-30 10:24 - 2011-02-08 19:41 - 0000000 ____D C:\Program Files (x86)\Mozilla Firefox
2011-04-28 13:12 - 2011-02-08 21:06 - 0000083 ____A C:\Users\Owner\AppData\default.pls
2011-04-28 08:02 - 2011-03-14 15:34 - 0000000 ____D C:\Users\Owner\Documents\My Games
2011-04-28 07:01 - 2011-04-28 07:01 - 0068608 ____A C:\Users\Owner\Documents\dominant eltt.doc
2011-04-27 06:52 - 2011-03-27 14:05 - 0061440 ____A C:\Users\Owner\Documents\JO TRNG - SFTM.doc
2011-04-27 06:43 - 2011-04-27 06:43 - 0000162 ___AH C:\Users\Owner\Documents\~$FETY WALK THRU checksheet V.doc
2011-04-27 06:40 - 2011-04-27 06:40 - 0000162 ___AH C:\Users\Owner\Documents\~$ TRNG - SFTM.doc
2011-04-26 19:16 - 2011-04-26 18:12 - 0025600 ____A C:\Users\Owner\Documents\astro midterm questions.doc
2011-04-24 07:45 - 2011-03-08 14:51 - 0000000 ____D C:\_AcroTemp
2011-04-20 20:14 - 2011-04-20 18:56 - 0000000 ____D C:\Users\Owner\Downloads\The.Roommate.2011.BRRip.Xvid {1337x}-Noir
2011-04-20 20:14 - 2011-04-20 18:43 - 0000000 ____D C:\Users\Owner\Downloads\The Lincoln Lawyer 2011 TS XViD DTRG
2011-04-20 19:27 - 2011-04-20 18:23 - 1425293032 ____A C:\Users\Owner\Downloads\The.Company.Men.2011.DVDRip.XViD.AC3-T0XiCiNK.avi
2011-04-20 19:12 - 2011-04-20 17:37 - 1470008112 ____A C:\Users\Owner\Downloads\Blood Out 2011 DVDRIP XViD - IMAGiNE.avi
2011-04-20 19:04 - 2011-04-20 19:03 - 24988645 ____A C:\Users\Owner\Downloads\R4i V1.36b English.zip
2011-04-20 18:54 - 2011-04-20 17:34 - 1468258304 ____A C:\Users\Owner\Downloads\The.Hit.List.2011.BRRip.XviD.AC3-ELiTE.avi
2011-04-20 18:42 - 2011-04-20 18:23 - 737634304 ____A C:\Users\Owner\Downloads\Artic Blast 2011 FRENCH DVDRIP XVID-FwD.avi
2011-04-20 18:25 - 2011-04-20 17:55 - 0000000 ____D C:\Users\Owner\Downloads\Scream 4 2011 TS XViD DTRG - SAFCuk009
2011-04-20 18:25 - 2011-04-20 17:36 - 0000000 ____D C:\Users\Owner\Downloads\Just Go With It[2011]R5 XviD-ExtraTorrentRG
2011-04-20 18:25 - 2011-04-20 17:35 - 0000000 ____D C:\Users\Owner\Downloads\No Strings Attached (2011) PPVRIP IFLIX www.IWANNADOWNLOAD.com
2011-04-19 15:22 - 2011-04-18 19:12 - 0000000 ____D C:\Users\Owner\Downloads\Hanna 2011 CAM XVID LKRG
2011-04-15 19:16 - 2011-04-15 19:07 - 681680434 ____A C:\Users\Owner\Downloads\iPod4,1_4.3.1_8G4_Restore.ipsw
2011-04-15 18:30 - 2009-07-13 20:45 - 3021768 ____A C:\Windows\System32\FNTCACHE.DAT
2011-04-15 16:17 - 2011-04-09 11:19 - 0000000 ____D C:\Users\Owner\Documents\astronamy class
2011-04-15 11:33 - 2011-04-15 11:33 - 0279442 ____A C:\Windows\ntbtlog.txt
2011-04-14 18:16 - 2011-04-14 18:03 - 0000000 ____D C:\Users\Owner\Downloads\Rio.2011.TS.XviD.Feel-Free
2011-04-14 15:56 - 2011-04-14 15:56 - 0418793 ____A C:\Users\Owner\Documents\QuickStudy.essays.and.term.papers_found_@_[redsamara.com].pdf
2011-04-13 19:40 - 2011-04-13 19:40 - 0002142 ____A C:\Users\Public\Desktop\Samsung New PC Studio.lnk
2011-04-13 19:38 - 2011-04-13 19:38 - 0000000 ____D C:\Users\All Users\Samsung
2011-04-13 19:38 - 2011-04-13 19:38 - 0000000 ____D C:\ProgramData\Samsung
2011-04-13 19:38 - 2011-04-13 19:36 - 0000000 ____D C:\Program Files (x86)\Samsung
2011-04-13 19:38 - 2011-04-13 16:51 - 0000000 ____D C:\Users\Owner\Downloads\Insidious 2011 CAM XVID READ NFO LKRG
2011-04-13 19:37 - 2011-04-13 19:37 - 0000000 ____D C:\Users\Owner\Documents\Samsung
2011-04-13 19:37 - 2011-04-13 19:37 - 0000000 ____D C:\Users\Owner\Documents\My NPS Files
2011-04-13 19:37 - 2011-04-13 19:37 - 0000000 ____D C:\Users\Owner\AppData\Roaming\Samsung
2011-04-13 19:36 - 2011-04-13 19:36 - 0000000 ____D C:\Program Files (x86)\MarkAny
2011-04-13 19:36 - 2011-02-08 20:07 - 0000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2011-04-13 12:05 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\LiveKernelReports
2011-04-11 13:06 - 2011-04-11 13:06 - 0004684 ____A C:\Users\Owner\Documents\PrintTable.jsp.htm
2011-04-11 13:06 - 2011-04-11 13:06 - 0000000 ____D C:\Users\Owner\Documents\PrintTable.jsp_files
2011-04-11 07:29 - 2011-04-11 07:29 - 0314026 ____A C:\Users\Owner\Documents\SIU.pdf
2011-04-09 14:06 - 2011-04-09 14:06 - 0002270 ____A C:\Users\Owner\Desktop\Scan a document or picture - Shortcut.lnk
2011-04-08 23:02 - 2011-05-10 18:18 - 5562240 ____A (Microsoft Corporation) C:\Windows\System32\ntoskrnl.exe
2011-04-08 22:02 - 2011-05-10 18:18 - 3967872 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2011-04-08 22:02 - 2011-05-10 18:18 - 3912576 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2011-04-07 19:21 - 2011-04-07 19:21 - 0178223 ____A C:\Users\Owner\Documents\hummanities quiz one.png
2011-04-06 15:26 - 2011-04-06 15:26 - 0237856 ____A (Apple Inc.) C:\Windows\System32\dnssdX.dll
2011-04-06 15:26 - 2011-04-06 15:26 - 0119584 ____A (Apple Inc.) C:\Windows\System32\dns-sd.exe
2011-04-06 15:26 - 2011-04-06 15:26 - 0096544 ____A (Apple Inc.) C:\Windows\System32\dnssd.dll
2011-04-06 15:26 - 2011-04-06 15:26 - 0069408 ____A (Apple Inc.) C:\Windows\System32\jdns_sd.dll
2011-04-06 15:20 - 2011-04-06 15:20 - 0197920 ____A (Apple Inc.) C:\Windows\SysWOW64\dnssdX.dll
2011-04-06 15:20 - 2011-04-06 15:20 - 0107808 ____A (Apple Inc.) C:\Windows\SysWOW64\dns-sd.exe
2011-04-06 15:20 - 2011-04-06 15:20 - 0091424 ____A (Apple Inc.) C:\Windows\SysWOW64\dnssd.dll
2011-04-06 15:20 - 2011-04-06 15:20 - 0075040 ____A (Apple Inc.) C:\Windows\SysWOW64\jdns_sd.dll
2011-04-05 19:33 - 2011-04-05 19:33 - 0180077 ____A C:\Users\Owner\Documents\second quiz.png
2011-04-05 18:52 - 2011-04-05 18:52 - 0184228 ____A C:\Users\Owner\Documents\first quiz.png
2011-04-05 15:45 - 2011-02-23 17:19 - 0000000 ____D C:\Users\All Users\FLEXnet
2011-04-05 15:45 - 2011-02-23 17:19 - 0000000 ____D C:\ProgramData\FLEXnet
2011-04-04 11:40 - 2011-04-04 11:39 - 0122368 ____A C:\Users\Owner\Documents\quiz1.doc
2011-04-03 18:55 - 2011-04-03 18:55 - 0001330 ____A C:\Users\Public\Desktop\WinX DVD Ripper Platinum.lnk
2011-04-03 18:55 - 2011-04-03 18:55 - 0000000 ____D C:\Program Files (x86)\Digiarty
2011-03-29 06:48 - 2011-03-29 06:48 - 0000000 ____D C:\THE_RETURN_OF_THE_KING
2011-03-29 06:46 - 2011-02-08 19:35 - 0000000 ____D C:\Users\All Users\DVD Shrink
2011-03-29 06:46 - 2011-02-08 19:35 - 0000000 ____D C:\ProgramData\DVD Shrink
2011-03-28 20:39 - 2011-02-08 21:05 - 0000000 ____D C:\Users\Owner\AppData\Local\Ahead
2011-03-28 19:47 - 2011-03-28 19:45 - 0000000 ____D C:\Users\Owner\Documents\Algebra and Trigonometry-Mantesh
2011-03-28 19:45 - 2011-03-28 19:34 - 0000000 ____D C:\Users\Owner\Documents\PC Magazine-April 2011
2011-03-28 18:12 - 2011-02-08 21:02 - 0000000 ____D C:\Program Files (x86)\uTorrent
2011-03-28 18:11 - 2011-02-08 19:41 - 0001134 ____A C:\Users\Public\Desktop\Mozilla Firefox.lnk
2011-03-27 14:05 - 2011-03-27 14:05 - 0064512 ____A C:\Users\Owner\Documents\SAFETY WALK THRU checksheet V.doc
2011-03-27 14:05 - 2011-03-27 14:05 - 0061440 ___AH C:\Users\Owner\Documents\~WRL3158.tmp
2011-03-24 19:29 - 2011-05-10 18:18 - 0343040 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\usbhub.sys
2011-03-24 19:29 - 2011-05-10 18:18 - 0325120 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\usbport.sys
2011-03-24 19:29 - 2011-05-10 18:18 - 0098816 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\usbccgp.sys
2011-03-24 19:29 - 2011-05-10 18:18 - 0052736 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\usbehci.sys
2011-03-24 19:29 - 2011-05-10 18:18 - 0030720 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\usbuhci.sys
2011-03-24 19:29 - 2011-05-10 18:18 - 0025600 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\usbohci.sys
2011-03-24 19:28 - 2011-05-10 18:18 - 0007936 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\usbd.sys
2011-03-20 17:59 - 2011-03-20 17:59 - 0000000 ____D C:\Users\Owner\AppData\Roaming\CyberLink
2011-03-20 10:17 - 2011-03-20 10:17 - 0002297 ____A C:\Users\Owner\Documents\nero10.txt
2011-03-19 10:21 - 2011-03-19 10:21 - 0000000 ____D C:\Users\Owner\Documents\NeroVision
2011-03-15 15:54 - 2011-03-15 15:54 - 0000000 ____D C:\Users\All Users\Electronic Arts
2011-03-15 15:54 - 2011-03-15 15:54 - 0000000 ____D C:\Users\All Users\EA Core
2011-03-15 15:54 - 2011-03-15 15:54 - 0000000 ____D C:\ProgramData\Electronic Arts
2011-03-15 15:54 - 2011-03-15 15:54 - 0000000 ____D C:\ProgramData\EA Core
2011-03-15 15:48 - 2011-03-15 15:31 - 0000000 ____D C:\Program Files (x86)\Dragon Age 2
2011-03-15 15:46 - 2011-03-15 15:17 - 0015309 ____A C:\Users\Owner\Documents\Install Dragon Age 2.log
2011-03-15 15:38 - 2011-02-08 20:17 - 0255847 ____A C:\Windows\DirectX.log
2011-03-15 14:55 - 2011-03-15 14:55 - 0000000 ____D C:\Users\Owner\Documents\EA Games
2011-03-15 14:54 - 2011-03-15 14:54 - 0000000 ____D C:\Users\Owner\AppData\Local\EA Games
2011-03-15 14:44 - 2011-03-15 14:44 - 0000000 ____D C:\Program Files (x86)\EA Games
2011-03-14 20:30 - 2011-03-14 18:27 - 0000000 ____D C:\Users\Owner\Documents\600.iBooks.for.iPhone.iPad.TL
2011-03-14 18:34 - 2011-03-14 18:18 - 0000000 ____D C:\Users\Owner\Documents\Kindle
2011-03-14 18:29 - 2011-03-14 18:21 - 0000000 ____D C:\Users\Owner\Documents\Excel 2010 Formulas
2011-03-14 18:29 - 2011-03-14 18:20 - 0000000 ____D C:\Users\Owner\Documents\Tap! The iPhone and iPad Magazine – April 2011-Mantesh
2011-03-14 18:29 - 2011-03-14 18:19 - 0000000 ____D C:\Users\Owner\Documents\PC Pro - May 2011-Mantesh
2011-03-14 16:31 - 2011-03-14 16:31 - 0000615 ____A C:\Users\Owner\Desktop\AutoRun.exe - Shortcut.lnk
2011-03-14 15:30 - 2011-03-14 15:30 - 0002157 ____A C:\Users\Public\Desktop\Age of Empires III.lnk
2011-03-14 15:28 - 2011-03-14 15:28 - 0000000 ____D C:\Program Files (x86)\Microsoft Games
2011-03-14 14:54 - 2011-03-14 14:54 - 0001926 ____A C:\Users\Public\Desktop\Bejeweled 3.lnk
2011-03-14 14:54 - 2011-03-14 14:54 - 0000000 ____D C:\Users\Owner\AppData\Local\GameHouse
2011-03-14 14:54 - 2011-03-14 14:54 - 0000000 ____D C:\Users\All Users\Trymedia
2011-03-14 14:54 - 2011-03-14 14:54 - 0000000 ____D C:\ProgramData\Trymedia
2011-03-14 14:54 - 2011-03-14 14:53 - 0015117 ____A C:\Windows\Bejeweled 3 Setup Log.txt
2011-03-14 14:54 - 2011-03-14 14:53 - 0000000 ____D C:\Program Files (x86)\Bejeweled 3
2011-03-14 14:53 - 2011-03-14 14:53 - 0000000 ____D C:\Windows\Bejeweled 3
2011-03-13 11:16 - 2011-03-13 11:16 - 0000000 ____D C:\Program Files (x86)\Kalypso Media
2011-03-13 11:15 - 2011-03-13 11:11 - 0000000 ____D C:\Users\Owner\AppData\Roaming\DAEMON Tools Lite
2011-03-13 11:14 - 2011-03-13 11:12 - 0000000 ____D C:\Program Files (x86)\DAEMON Tools Lite
2011-03-13 11:13 - 2011-03-13 11:13 - 0254528 ____A (DT Soft Ltd) C:\Windows\System32\Drivers\dtsoftbus01.sys
2011-03-13 11:13 - 2011-03-13 11:13 - 0001950 ____A C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
2011-03-13 11:13 - 2011-03-13 11:13 - 0000000 ____D C:\Program Files (x86)\DAEMON Tools Toolbar
2011-03-13 11:11 - 2011-03-13 11:11 - 0000000 ____D C:\Users\All Users\DAEMON Tools Lite
2011-03-13 11:11 - 2011-03-13 11:11 - 0000000 ____D C:\ProgramData\DAEMON Tools Lite
2011-03-12 04:08 - 2011-04-26 18:22 - 1465344 ____A (Microsoft Corporation) C:\Windows\System32\XpsPrint.dll
2011-03-12 03:23 - 2011-04-26 18:22 - 0870912 ____A (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2011-03-11 10:15 - 2011-02-21 10:51 - 0000000 ____D C:\Users\Owner\AppData\Roaming\DivX
2011-03-10 22:41 - 2011-04-26 18:21 - 1659776 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\ntfs.sys
2011-03-10 22:41 - 2011-04-26 18:21 - 0410496 ____A (Intel Corporation) C:\Windows\System32\Drivers\iaStorV.sys
2011-03-10 22:41 - 2011-04-26 18:21 - 0189824 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\storport.sys
2011-03-10 22:41 - 2011-04-26 18:21 - 0166272 ____A (NVIDIA Corporation) C:\Windows\System32\Drivers\nvstor.sys
2011-03-10 22:41 - 2011-04-26 18:21 - 0148352 ____A (NVIDIA Corporation) C:\Windows\System32\Drivers\nvraid.sys
2011-03-10 22:41 - 2011-04-26 18:21 - 0107904 ____A (Advanced Micro Devices) C:\Windows\System32\Drivers\amdsata.sys
2011-03-10 22:41 - 2011-04-26 18:21 - 0027008 ____A (Advanced Micro Devices) C:\Windows\System32\Drivers\amdxata.sys
2011-03-10 22:34 - 2011-04-14 14:17 - 1395712 ____A (Microsoft Corporation) C:\Windows\System32\mfc42.dll
2011-03-10 22:34 - 2011-04-14 14:17 - 1359872 ____A (Microsoft Corporation) C:\Windows\System32\mfc42u.dll
2011-03-10 22:33 - 2011-04-26 18:21 - 2565632 ____A (Microsoft Corporation) C:\Windows\System32\esent.dll
2011-03-10 22:30 - 2011-04-26 18:21 - 0096768 ____A (Microsoft Corporation) C:\Windows\System32\fsutil.exe
2011-03-10 21:33 - 2011-04-26 18:21 - 1699328 ____A (Microsoft Corporation) C:\Windows\SysWOW64\esent.dll
2011-03-10 21:33 - 2011-04-14 14:17 - 1164288 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mfc42u.dll
2011-03-10 21:33 - 2011-04-14 14:17 - 1137664 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mfc42.dll
2011-03-10 21:31 - 2011-04-26 18:21 - 0074240 ____A (Microsoft Corporation) C:\Windows\SysWOW64\fsutil.exe
2011-03-10 21:22 - 2011-03-10 21:21 - 0000000 ____D C:\Users\Owner\.shshart
2011-03-10 21:22 - 2011-03-10 20:41 - 0000000 ____D C:\Users\Owner\.shsh
2011-03-10 20:41 - 2011-03-10 20:41 - 0000000 ____D C:\Users\All Users\Sun
2011-03-10 20:41 - 2011-03-10 20:41 - 0000000 ____D C:\ProgramData\Sun
2011-03-10 20:40 - 2011-03-10 20:40 - 0472808 ____A (Sun Microsystems, Inc.) C:\Windows\SysWOW64\deployJava1.dll
2011-03-10 20:40 - 2011-03-10 20:40 - 0157472 ____A (Sun Microsystems, Inc.) C:\Windows\SysWOW64\javaws.exe
2011-03-10 20:40 - 2011-03-10 20:40 - 0145184 ____A (Sun Microsystems, Inc.) C:\Windows\SysWOW64\javaw.exe
2011-03-10 20:40 - 2011-03-10 20:40 - 0145184 ____A (Sun Microsystems, Inc.) C:\Windows\SysWOW64\java.exe
2011-03-10 20:40 - 2011-03-10 20:40 - 0000000 ____D C:\Program Files (x86)\Java
2011-03-10 20:38 - 2011-03-10 20:38 - 0000000 ____D C:\Users\All Users\McAfee
2011-03-10 20:38 - 2011-03-10 20:38 - 0000000 ____D C:\ProgramData\McAfee
2011-03-10 20:37 - 2011-04-26 18:21 - 0091648 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\USBSTOR.SYS
2011-03-10 20:01 - 2011-03-10 19:57 - 1731072 ____A () C:\Users\Owner\Desktop\tinyumbrella-4.30.01.exe
2011-03-10 19:13 - 2011-03-10 19:06 - 0000000 ____D C:\Users\Owner\Documents\chevos phone mobile subtrate
2011-03-10 19:01 - 2011-03-10 19:01 - 0000000 ____D C:\Users\Owner\Documents\artsphonemobilesubstuff
2011-03-10 17:05 - 2011-03-10 17:05 - 0079759 ____A C:\Users\Owner\Documents\taaprovel.pdf
2011-03-10 17:01 - 2011-03-10 17:01 - 1229437 ____A C:\Users\Owner\Documents\degree.pdf
2011-03-09 20:57 - 2011-03-09 20:57 - 0110190 ____A C:\Users\Owner\Documents\fafsa.pdf
2011-03-09 08:26 - 2011-03-09 08:26 - 0000000 ___AH C:\Windows\System32\Drivers\Msft_Kernel_netaapl64_01009.Wdf
2011-03-08 16:08 - 2009-07-13 20:45 - 0000000 ____D C:\Windows\debug
2011-03-08 15:23 - 2011-02-23 17:00 - 0000000 ____D C:\Program Files\Adobe
2011-03-08 15:16 - 2011-02-19 21:38 - 0000000 ____D C:\Program Files (x86)\Adobe
2011-03-08 14:54 - 2011-02-23 16:07 - 0002021 ____A C:\Users\Public\Desktop\Adobe Acrobat 9 Pro.lnk
2011-03-08 12:28 - 2011-03-08 12:23 - 0000000 ____D C:\Users\Owner\Documents\call of duty wii game
2011-03-07 22:29 - 2011-04-14 14:16 - 0976896 ____A (Microsoft Corporation) C:\Windows\System32\inetcomm.dll
2011-03-07 21:28 - 2011-04-14 14:16 - 0741376 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2011-03-07 20:15 - 2011-03-07 20:10 - 0000000 ____D C:\Users\Owner\AppData\Local\Divinity 2
2011-03-07 20:15 - 2011-03-07 20:04 - 0000000 ____D C:\Program Files (x86)\Divinity II - DKS Demo
2011-03-07 20:13 - 2011-03-07 20:13 - 0000000 ____D C:\Windows\SysWOW64\AGEIA
2011-03-07 20:13 - 2011-03-07 20:13 - 0000000 ____D C:\Program Files (x86)\AGEIA Technologies
2011-03-07 20:10 - 2011-03-07 20:10 - 0002114 ____A C:\Users\Owner\Desktop\Divinity II - DKS Demo.lnk
2011-03-07 20:10 - 2011-03-07 20:10 - 0000000 ____D C:\Users\All Users\Divinity 2
2011-03-07 20:10 - 2011-03-07 20:10 - 0000000 ____D C:\ProgramData\Divinity 2
2011-03-07 19:43 - 2011-03-07 19:43 - 0000000 ____D C:\Users\Owner\AppData\Local\DDMSettings
2011-03-07 19:42 - 2011-03-07 19:42 - 0001609 ____A C:\Users\Owner\Desktop\DivX Movies.lnk
2011-03-07 19:42 - 2011-03-07 19:41 - 0002116 ____A C:\Users\Public\Desktop\DivX Plus Converter.lnk
2011-03-07 19:42 - 2011-02-21 10:50 - 0000000 ____D C:\Program Files (x86)\DivX
2011-03-07 19:42 - 2011-02-21 10:49 - 0000000 ____D C:\Users\All Users\DivX
2011-03-07 19:42 - 2011-02-21 10:49 - 0000000 ____D C:\ProgramData\DivX
2011-03-07 19:41 - 2011-03-07 19:41 - 0001112 ____A C:\Users\Public\Desktop\DivX Plus Player.lnk
2011-03-07 19:41 - 2011-02-21 10:51 - 0000000 ____D C:\Program Files\DivX
2011-03-07 19:39 - 2011-03-07 19:38 - 0000000 ____D C:\Users\Owner\AppData\Roaming\Media Player Classic
2011-03-07 19:15 - 2011-03-07 13:43 - 405012480 ____A C:\Users\Owner\Documents\Super Mario Galaxy 2 [WII][PAL][MULTI5][www.zonatorrent.com].iso
2011-03-07 13:50 - 2011-03-07 13:50 - 0011264 ____A C:\Users\Owner\Documents\New Microsoft Word Document.doc
2011-03-06 21:33 - 2011-04-14 14:16 - 1230336 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll_old0
2011-03-06 21:33 - 2011-04-14 14:16 - 0981504 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll_old0
2011-03-04 12:10 - 2011-02-24 19:53 - 0000000 ____D C:\Users\Owner\Documents\PC Gamer - January 2011
2011-03-02 22:24 - 2011-04-14 14:16 - 0357888 ____A (Microsoft Corporation) C:\Windows\System32\dnsapi.dll
2011-03-02 22:24 - 2011-04-14 14:16 - 0183296 ____A (Microsoft Corporation) C:\Windows\System32\dnsrslvr.dll
2011-03-02 22:21 - 2011-04-14 14:16 - 0030208 ____A (Microsoft Corporation) C:\Windows\System32\dnscacheugc.exe
2011-03-02 21:38 - 2011-04-14 14:16 - 0270336 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2011-03-02 21:36 - 2011-04-14 14:16 - 0028672 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dnscacheugc.exe
2011-03-02 19:52 - 2011-04-14 14:17 - 3135488 ____A (Microsoft Corporation) C:\Windows\System32\win32k.sys

============ Known DLLs ============

[2009-07-13 16:41] - [2009-07-13 17:40] - 0877056 ____A (Microsoft Corporation) C:\Windows\System32\advapi32.dll
[2011-02-23 23:41] - [2010-11-20 04:18] - 0640512 ____A (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
[2009-07-13 16:00] - [2009-07-13 17:40] - 0607744 ____A (Microsoft Corporation) C:\Windows\System32\clbcatq.dll
[2009-07-13 15:44] - [2009-07-13 17:15] - 0522240 ____A (Microsoft Corporation) C:\Windows\SysWOW64\clbcatq.dll
[2011-02-23 23:41] - [2010-11-20 05:25] - 0594432 ____A (Microsoft Corporation) C:\Windows\System32\comdlg32.dll
[2011-02-23 23:41] - [2010-11-20 04:18] - 0485888 ____A (Microsoft Corporation) C:\Windows\SysWOW64\COMDLG32.dll
[2011-02-23 23:41] - [2010-11-20 05:26] - 0403968 ____A (Microsoft Corporation) C:\Windows\System32\gdi32.dll
[2011-02-23 23:41] - [2010-11-20 04:08] - 0311296 ____A (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
[2011-05-12 05:58] - [2011-05-12 05:58] - 2136064 ____A (Microsoft Corporation) C:\Windows\System32\IERTUTIL.dll
[2011-05-12 05:58] - [2011-05-12 05:58] - 1785344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\IERTUTIL.dll
[2011-02-23 23:40] - [2010-11-20 05:26] - 0076800 ____A (Microsoft Corporation) C:\Windows\System32\imagehlp.dll
[2011-02-23 23:40] - [2010-11-20 04:19] - 0155136 ____A (Microsoft Corporation) C:\Windows\SysWOW64\IMAGEHLP.dll
[2009-07-13 15:38] - [2009-07-13 17:41] - 0167424 ____A (Microsoft Corporation) C:\Windows\System32\IMM32.dll
[2011-02-23 23:40] - [2010-11-20 04:08] - 0119808 ____A (Microsoft Corporation) C:\Windows\SysWOW64\IMM32.dll
[2011-02-23 23:41] - [2010-11-20 05:26] - 1161216 ____A (Microsoft Corporation) C:\Windows\System32\kernel32.dll
[2011-02-23 23:41] - [2010-11-20 04:08] - 0837632 ____A (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
[2009-07-13 15:38] - [2009-07-13 17:41] - 0041984 ____A (Microsoft Corporation) C:\Windows\System32\LPK.dll
[2009-07-13 15:25] - [2009-07-13 17:11] - 0025600 ____A (Microsoft Corporation) C:\Windows\SysWOW64\LPK.dll
[2009-07-13 15:40] - [2009-07-13 17:41] - 1067008 ____A (Microsoft Corporation) C:\Windows\System32\MSCTF.dll
[2009-07-13 15:28] - [2009-07-13 17:15] - 0828928 ____A (Microsoft Corporation) C:\Windows\SysWOW64\MSCTF.dll
[2009-07-13 15:19] - [2009-07-13 17:41] - 0634880 ____A (Microsoft Corporation) C:\Windows\System32\MSVCRT.dll
[2009-07-13 15:12] - [2009-07-13 17:15] - 0690688 ____A (Microsoft Corporation) C:\Windows\SysWOW64\MSVCRT.dll
[2009-07-13 15:26] - [2009-07-13 17:31] - 0002560 ____A (Microsoft Corporation) C:\Windows\System32\NORMALIZ.dll
[2009-07-13 15:15] - [2009-07-13 17:09] - 0002048 ____A (Microsoft Corporation) C:\Windows\SysWOW64\NORMALIZ.dll
[2009-07-13 15:21] - [2009-07-13 17:41] - 0013824 ____A (Microsoft Corporation) C:\Windows\System32\NSI.dll
[2009-07-13 15:12] - [2009-07-13 17:16] - 0008704 ____A (Microsoft Corporation) C:\Windows\SysWOW64\NSI.dll
[2011-02-23 23:41] - [2010-11-20 05:27] - 2086912 ____A (Microsoft Corporation) C:\Windows\System32\ole32.dll
[2011-02-23 23:41] - [2010-11-20 04:20] - 1414144 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
[2011-02-23 23:41] - [2010-11-20 05:27] - 0861696 ____A (Microsoft Corporation) C:\Windows\System32\oleaut32.dll
[2011-02-23 23:40] - [2010-11-20 04:20] - 0571904 ____A (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
[2009-07-13 15:26] - [2009-07-13 17:41] - 0009216 ____A (Microsoft Corporation) C:\Windows\System32\PSAPI.dll
[2009-07-13 15:15] - [2009-07-13 17:16] - 0006144 ____A (Microsoft Corporation) C:\Windows\SysWOW64\PSAPI.dll
[2011-02-23 23:41] - [2010-11-20 05:27] - 1219584 ____A (Microsoft Corporation) C:\Windows\System32\rpcrt4.dll
[2011-02-23 23:40] - [2010-11-20 04:08] - 0663040 ____A (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
[2009-07-13 15:20] - [2009-07-13 17:41] - 0113664 ____A (Microsoft Corporation) C:\Windows\System32\sechost.dll
[2009-07-13 15:11] - [2009-07-13 17:16] - 0092160 ____A (Microsoft Corporation) C:\Windows\SysWOW64\sechost.dll
[2011-02-23 23:41] - [2010-11-20 05:27] - 1900544 ____A (Microsoft Corporation) C:\Windows\System32\Setupapi.dll
[2011-02-23 23:41] - [2010-11-20 04:21] - 1667584 ____A (Microsoft Corporation) C:\Windows\SysWOW64\Setupapi.dll
[2011-02-23 23:42] - [2010-11-20 05:27] - 14174208 ____A (Microsoft Corporation) C:\Windows\System32\shell32.dll
[2011-02-23 23:41] - [2010-11-20 04:21] - 12872192 ____A (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
[2011-02-23 23:41] - [2010-11-20 05:27] - 0448512 ____A (Microsoft Corporation) C:\Windows\System32\SHLWAPI.dll
[2011-02-23 23:41] - [2010-11-20 04:21] - 0350208 ____A (Microsoft Corporation) C:\Windows\SysWOW64\SHLWAPI.dll
[2011-05-12 05:58] - [2011-05-12 05:58] - 1344000 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
[2011-05-12 05:58] - [2011-05-12 05:58] - 1102336 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
[2011-02-23 23:41] - [2010-11-20 05:27] - 1008128 ____A (Microsoft Corporation) C:\Windows\System32\user32.dll
[2011-02-23 23:41] - [2010-11-20 04:08] - 0833024 ____A (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
[2011-02-23 23:41] - [2010-11-20 05:27] - 0800256 ____A (Microsoft Corporation) C:\Windows\System32\USP10.dll
[2011-02-23 23:41] - [2010-11-20 04:21] - 0626176 ____A (Microsoft Corporation) C:\Windows\SysWOW64\USP10.dll
[2009-07-13 15:57] - [2009-07-13 17:41] - 0029184 ____A (Microsoft Corporation) C:\Windows\System32\version.dll
[2009-07-13 15:41] - [2009-07-13 17:16] - 0021504 ____A (Microsoft Corporation) C:\Windows\SysWOW64\version.dll
[2011-05-12 05:58] - [2011-05-12 05:58] - 1389056 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll
[2011-05-12 05:58] - [2011-05-12 05:58] - 1126912 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
[2011-02-23 23:41] - [2010-11-20 05:27] - 0312832 ____A (Microsoft Corporation) C:\Windows\System32\wldap32.dll
[2011-02-23 23:41] - [2010-11-20 04:21] - 0269824 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wldap32.dll
[2011-02-23 23:41] - [2010-11-20 05:27] - 0297984 ____A (Microsoft Corporation) C:\Windows\System32\WS2_32.dll
[2011-02-23 23:41] - [2010-11-20 04:21] - 0206848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WS2_32.dll

======================= Bamital Check ========================

C:\Windows\System32\winlogon.exe
[2011-02-23 23:41] - [2010-11-20 05:25] - 0390656 ____A (Microsoft Corporation) 1151B1BAA6F350B1DB6598E0FEA7C457

C:\Windows\System32\wininit.exe
[2009-07-13 15:52] - [2009-07-13 17:39] - 0129024 ____A (Microsoft Corporation) 94355C28C1970635A31B3FE52EB7CEBA

C:\Windows\explorer.exe
[2011-04-26 18:22] - [2011-02-24 22:19] - 2871808 ____A (Microsoft Corporation) 332FEAB1435662FC6C672E25BEB37BE3


========================= Memory info ========================

Percentage of memory in use: 16%
Total physical RAM: 4078.07 MB
Available physical RAM: 3415.48 MB
Total Pagefile: 4076.22 MB
Available Pagefile: 3404.13 MB
Total Virtual: 8192 MB
Available Virtual: 8191.91 MB

======================= Partitions ===========================

1 Drive c: () (Fixed) (Total:698.54 GB) (Free:274.61 GB) NTFS
3 Drive f: (USB DISK) (Removable) (Total:3.77 GB) (Free:3.76 GB) FAT32
4 Drive x: (Boot) (Fixed) (Total:0.03 GB) (Free:0.03 GB) NTFS
5 Drive y: (System Reserved) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS

#4 Farbar

Farbar

    Just Curious


  • Security Developer
  • 21,706 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Netherlands
  • Local time:08:48 AM

Posted 29 May 2011 - 06:08 AM

Well done. :thumbup2:

Your log(s) show that you are using so called peer-to-peer or file-sharing programs. These programs allow to share files between users as the name(s) suggest. In today's world the cyber crime has come to an enormous dimension and any means is used to infect personal computers to make use of their stored data or machine power for further propagation of the malware files. A popular means is the use of file-sharing tools as a tremendous amount of prospective victims can be reached through it.

It is therefore possible to be infected by downloading manipulated files via peer-to-peer tools and thus suggested to be used with intense care. Some further readings on this subject, along the included links, are as follows: "File-Sharing, otherwise known as Peer To Peer" and "Risks of File-Sharing Technology."

Removal Instructions

Open notepad. Please copy the contents of the code box below. (To do this highlight the contents of the box, right click on it and select copy. Right-click in the open notepad and select Paste). Save it on the flashdrive as fixlist.txt

cmd: bootrec /FixMbr
cmd: bcdedit /set {default} winpe no

NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system

Now please enter System Recovery Options.
Run FRST64 and press the Fix button just once and wait.
The tool will make a log on the flashdrive (Fixlog.txt) please post it to your reply.

#5 Farbar

Farbar

    Just Curious


  • Security Developer
  • 21,706 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Netherlands
  • Local time:08:48 AM

Posted 29 May 2011 - 06:23 AM

After doing the above fix please restart and tell me how it went.

#6 soliz53

soliz53
  • Topic Starter

  • Members
  • 45 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:san diego
  • Local time:11:48 PM

Posted 29 May 2011 - 09:48 AM

sorry for the delay but its only 730 am here so i just woke up lol.. oh and as for the peer to peer yes i am aware of the risk i had been very carfull up untill now lol i bet you hear that alot. well i was ok till i clicked on an exe file from a non trusted guy on the site and it got me. trust me it wont happen again. as for my anti virius on that laptop im going to change it to norton like on all my other cpus avast sucks lol.

Fix result of Farbars's Recovery Tool (FRST written by farbar version 2.0.8)
Ran by SYSTEM at 2011-05-29 07:46:43 R:1
Running from F:\

==============================================


========= bootrec /FixMbr =========

ÿþT h e o p e r a t i o n c o m p l e t e d s u c c e s s f u l l y .

========= End of CMD: =========


========= bcdedit /set {default} winpe no =========

The operation completed successfully.

========= End of CMD: =========

Edited by soliz53, 29 May 2011 - 09:52 AM.


#7 Farbar

Farbar

    Just Curious


  • Security Developer
  • 21,706 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Netherlands
  • Local time:08:48 AM

Posted 29 May 2011 - 10:29 AM

Please restart and let the system boot normally and tell me how it went.

#8 soliz53

soliz53
  • Topic Starter

  • Members
  • 45 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:san diego
  • Local time:11:48 PM

Posted 29 May 2011 - 10:55 AM

well it took awhile to load but it did. thank you very much is there anything else i need to do from this point... so what did you do exactly



#9 Farbar

Farbar

    Just Curious


  • Security Developer
  • 21,706 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Netherlands
  • Local time:08:48 AM

Posted 29 May 2011 - 11:45 AM

Great. :thumbsup:

WE took care of TDL4 MBR infection. We need to make sure nothing is left behind.

Please perform the following scan:
  • Download DDS by sUBs from the following links. Save it to your desktop.
  • Double click on the DDS icon, allow it to run. When done it will open two logs:
    • DDS.txt
    • Attach.txt
  • Copy and paste the logs to your reply.


#10 soliz53

soliz53
  • Topic Starter

  • Members
  • 45 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:san diego
  • Local time:11:48 PM

Posted 29 May 2011 - 12:13 PM

here is the dds.txt
.
DDS (Ver_11-05-19.01) - NTFSx86
Internet Explorer: 9.0.8112.16421 BrowserJavaVersion: 1.6.0_24
Run by Owner at 10:04:34 on 2011-05-29
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.4078.2514 [GMT -7:00]
.
AV: avast! Antivirus *Enabled/Updated* {C37D8F93-0602-E43C-40AA-47DAD597F308}
SP: avast! Antivirus *Enabled/Updated* {781C6E77-2038-EBB2-7A1A-7CA8AE10B9B5}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\nvvsvc.exe
C:\Program Files\Sandboxie\SbieSvc.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\taskhost.exe
C:\Program Files (x86)\Lexmark 2400 Series\lxcrmon.exe
C:\Program Files (x86)\Lexmark 2400 Series\ezprint.exe
C:\Program Files\Zune\ZuneLauncher.exe
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe
C:\Program Files (x86)\Bonjour\mDNSResponder.exe
C:\Windows\system32\lxcrcoms.exe
C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files (x86)\CyberLink\Shared Files\RichVideo.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files (x86)\Sony\VAIO Event Service\VESMgr.exe
C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
C:\Program Files (x86)\Samsung\Samsung New PC Studio\NPSAgent.exe
C:\Program Files\Sandboxie\SbieCtrl.exe
C:\Program Files\Sony\VAIO Power Management\SPMgr.exe
C:\Windows\SysWOW64\DllHost.exe
C:\Program Files (x86)\RealVNC\VNC4\WinVNC4.exe
C:\Program Files\Alwil Software\Avast5\AvastUI.exe
C:\Program Files (x86)\CyberLink\PowerDVD\PDVDServ.exe
C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe
C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\acrotray.exe
C:\Program Files (x86)\Sony\VAIO Event Service\VESMgrSub.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe
C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe
C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
C:\Windows\system32\WUDFHost.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\SysWOW64\DllHost.exe
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Program Files\Sony\VAIO Power Management\SPMService.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\system32\sppsvc.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\SearchProtocolHost.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Windows\System32\svchost.exe -k secsvcs
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\servicing\TrustedInstaller.exe
C:\Windows\system32\wuauclt.exe
C:\Windows\System32\svchost.exe -k WerSvcGroup
C:\Windows\system32\vssvc.exe
C:\Windows\System32\svchost.exe -k swprv
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\Owner\Desktop\dds.scr
C:\Windows\SysWOW64\WSCRIPT.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = my.daemon-search.com
uInternet Settings,ProxyOverride = *.local
mWinlogon: Userinit=userinit.exe
BHO: ContributeBHO Class: {074c1dc5-9320-4a9a-947d-c042949c6216} - C:\Program Files (x86)\Adobe\/Adobe Contribute CS4/contributeieplugin.dll
BHO: Lexmark Toolbar: {1017a80c-6f09-4548-a84d-edd6ac9525f0} - C:\Program Files\Lexmark Toolbar\toolband.dll
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: RealPlayer Download and Record Plugin for Internet Explorer: {3049c3e9-b461-4bc5-8870-4c09146192ca} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
BHO: DivX Plus Web Player HTML5 <video>: {326e768d-4182-46fd-9c16-1449a49795f4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll
BHO: DivX HiQ: {593ddec6-7468-4cdd-90e1-42dadaa222e9} - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll
BHO: Adobe PDF Conversion Toolbar Helper: {ae7cd045-e861-484f-8273-0445ee161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
BHO: Java™ Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
BHO: SmartSelect Class: {f4971ee7-daa0-4053-9964-665d8ee6a077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
TB: Lexmark Toolbar: {1017a80c-6f09-4548-a84d-edd6ac9525f0} - C:\Program Files\Lexmark Toolbar\toolband.dll
TB: Adobe PDF: {47833539-d0c5-4125-9fa8-0819e2eaac93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
TB: Contribute Toolbar: {517bdde4-e3a7-4570-b21e-2b52b6139fc7} - C:\Program Files (x86)\Adobe\/Adobe Contribute CS4/contributeieplugin.dll
TB: DAEMON Tools Toolbar: {32099aac-c132-4136-9e9a-4e364a424e17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll
uRun: [uTorrent] "C:\Program Files (x86)\uTorrent\uTorrent.exe"
uRun: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe"
uRun: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
uRun: [AutoStartNPSAgent] C:\Program Files (x86)\Samsung\Samsung New PC Studio\NPSAgent.exe
uRun: [SandboxieControl] "C:\Program Files\Sandboxie\SbieCtrl.exe"
mRun: [avast5] "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui
mRun: [RemoteControl] "C:\Program Files (x86)\CyberLink\PowerDVD\PDVDServ.exe"
mRun: [LanguageShortcut] "C:\Program Files (x86)\CyberLink\PowerDVD\Language\Language.exe"
mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
mRun: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun: [ISBMgr.exe] "C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe"
mRun: [AdobeCS4ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" -launchedbylogin
mRun: [Adobe Acrobat Speed Launcher] "C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe"
mRun: [<NO NAME>]
mRun: [Acrobat Assistant 8.0] "C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe"
mRun: [Adobe_ID0ENQBO] C:\PROGRA~2\COMMON~1\Adobe\ADOBEV~1\Server\bin\VERSIO~2.EXE
mRun: [AppleSyncNotifier] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe
mRun: [DivXUpdate] "C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun: [NPSStartup]
mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
mRun: [TkBellExe] "C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe" -osboot
mPolicies-explorer: NoActiveDesktop = 1 (0x1)
mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)
mPolicies-system: ConsentPromptBehaviorAdmin = 0 (0x0)
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableLUA = 0 (0x0)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
mPolicies-system: PromptOnSecureDesktop = 0 (0x0)
IE: Append Link Target to Existing PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Append to Existing PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert Link Target to Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Convert to Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~1\OFFICE11\EXCEL.EXE/3000
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - C:\PROGRA~2\MICROS~1\OFFICE11\REFIEBAR.DLL
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/flashplayer/current/swflash.cab
Notify: VESWinlogon - VESWinlogon.dll
TB-X64: DAEMON Tools Toolbar: {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar64.dll
TB-X64: {1017A80C-6F09-4548-A84D-EDD6AC9525F0} - No File
TB-X64: {47833539-D0C5-4125-9FA8-0819E2EAAC93} - No File
mRun-x64: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
mRun-x64: [lxcrmon.exe] "C:\Program Files (x86)\Lexmark 2400 Series\lxcrmon.exe"
mRun-x64: [EzPrint] "C:\Program Files (x86)\Lexmark 2400 Series\ezprint.exe"
mRun-x64: [LXCRCATS] rundll32 C:\Windows\system32\spool\DRIVERS\x64\3\LXCRtime.dll,RunDLLEntry
mRun-x64: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
mRun-x64: [Zune Launcher] "C:\Program Files\Zune\ZuneLauncher.exe"
Hosts: 74.208.10.249 gs.apple.com
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\58c0jifs.default\
FF - prefs.js: browser.startup.homepage - hxxp://us.mg1.mail.yahoo.com/neo/launch?.rand=8khd3mqfqotaf|http://forums.d2jsp.org/pm.php|http://seaport.coastline.edu/OnlineCourseViewer/SectionQuizzes.cfm?SectionID=15325|http://www.blizzhackers.cc/viewforum.php?f=171
FF - prefs.js: network.proxy.type - 0
FF - component: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext\components\nprpffbrowserrecordext.dll
FF - component: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext\components\nprpffbrowserrecordlegacyext.dll
FF - component: C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\58c0jifs.default\extensions\DTToolbar@toolbarnet.com\components\DTToolbarFF.dll
FF - plugin: C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll
FF - plugin: C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll
FF - plugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll
FF - plugin: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll
FF - plugin: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll
.
============= SERVICES / DRIVERS ===============
.
R0 PxHlpa64;PxHlpa64;C:\Windows\system32\Drivers\PxHlpa64.sys --> C:\Windows\system32\Drivers\PxHlpa64.sys [?]
R1 aswSP;aswSP;C:\Windows\system32\drivers\aswSP.sys --> C:\Windows\system32\drivers\aswSP.sys [?]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;C:\Windows\system32\DRIVERS\dtsoftbus01.sys --> C:\Windows\system32\DRIVERS\dtsoftbus01.sys [?]
R1 vwififlt;Virtual WiFi Filter Driver;C:\Windows\system32\DRIVERS\vwififlt.sys --> C:\Windows\system32\DRIVERS\vwififlt.sys [?]
R2 aswFsBlk;aswFsBlk;C:\Windows\system32\drivers\aswFsBlk.sys --> C:\Windows\system32\drivers\aswFsBlk.sys [?]
R2 aswMonFlt;aswMonFlt;\??\C:\Windows\system32\drivers\aswMonFlt.sys --> C:\Windows\system32\drivers\aswMonFlt.sys [?]
R2 avast! Antivirus;avast! Antivirus;C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2011-2-8 40384]
R2 rimspci;rimspci;C:\Windows\system32\DRIVERS\rimssne64.sys --> C:\Windows\system32\DRIVERS\rimssne64.sys [?]
R2 VcmIAlzMgr;VAIO Content Metadata Intelligent Analyzing Manager;C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe [2010-2-19 529776]
R3 btusbflt;Bluetooth USB Filter;C:\Windows\system32\drivers\btusbflt.sys --> C:\Windows\system32\drivers\btusbflt.sys [?]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver;C:\Windows\system32\drivers\nvhda64v.sys --> C:\Windows\system32\drivers\nvhda64v.sys [?]
R3 SbieDrv;SbieDrv;C:\Program Files\Sandboxie\SbieDrv.sys [2010-7-4 139880]
R3 SFEP;Sony Firmware Extension Parser;C:\Windows\system32\DRIVERS\SFEP.sys --> C:\Windows\system32\DRIVERS\SFEP.sys [?]
R3 VAIO Power Management;VAIO Power Management;C:\Program Files\Sony\VAIO Power Management\SPMService.exe [2011-2-21 571248]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service;C:\Windows\system32\DRIVERS\vwifimp.sys --> C:\Windows\system32\DRIVERS\vwifimp.sys [?]
R3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;C:\Windows\system32\DRIVERS\yk62x64.sys --> C:\Windows\system32\DRIVERS\yk62x64.sys [?]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S3 Adobe Version Cue CS4;Adobe Version Cue CS4;C:\Program Files (x86)\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe [2008-8-15 284016]
S3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64;C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2011-2-23 1038088]
S3 ivusb;Initio Driver for USB Default Controller;C:\Windows\system32\DRIVERS\ivusb.sys --> C:\Windows\system32\DRIVERS\ivusb.sys [?]
S3 Netaapl;Apple Mobile Device Ethernet Service;C:\Windows\system32\DRIVERS\netaapl64.sys --> C:\Windows\system32\DRIVERS\netaapl64.sys [?]
S3 S3XXx64;SCR3xx USB SmartCardReader64;C:\Windows\system32\DRIVERS\S3XXx64.sys --> C:\Windows\system32\DRIVERS\S3XXx64.sys [?]
S3 TFsExDisk;TFsExDisk;C:\Windows\System32\drivers\TFsExDisk.Sys [2011-4-13 16448]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\system32\drivers\tsusbflt.sys --> C:\Windows\system32\drivers\tsusbflt.sys [?]
S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\system32\Drivers\usbaapl64.sys --> C:\Windows\system32\Drivers\usbaapl64.sys [?]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\system32\Wat\WatAdminSvc.exe --> C:\Windows\system32\Wat\WatAdminSvc.exe [?]
S3 WDC_SAM;WD SCSI Pass Thru driver;C:\Windows\system32\DRIVERS\wdcsam64.sys --> C:\Windows\system32\DRIVERS\wdcsam64.sys [?]
S3 WMZuneComm;Zune Windows Mobile Connectivity Service;C:\Program Files\Zune\WMZuneComm.exe [2010-11-11 306416]
.
=============== Created Last 30 ================
.
2011-05-29 17:05:30 8718160 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{EDDFD531-1CCE-478D-AAC0-DAFC546B1CE5}\mpengine.dll
2011-05-29 15:55:14 8802128 ------w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{2C9072D5-BD2D-4866-B563-5AF1B6C8210D}\mpengine.dll
2011-05-28 16:23:45 -------- d-----w- C:\FRST
2011-05-27 22:07:47 -------- d-----w- C:\NBRT
2011-05-25 04:43:07 -------- d-----w- C:\Users\Owner\AppData\Local\Google
2011-05-18 04:27:05 -------- d-----r- C:\Users\Owner\Podcasts
2011-05-18 04:26:17 -------- d-----w- C:\Windows\System32\drivers\UMDF\pt-BR
2011-05-18 04:26:16 -------- d-----w- C:\Windows\System32\drivers\UMDF\pt-PT
2011-05-18 04:26:14 -------- d-----w- C:\Windows\System32\drivers\UMDF\nl-NL
2011-05-18 04:26:12 -------- d-----w- C:\Windows\System32\drivers\UMDF\it-IT
2011-05-18 04:26:10 -------- d-----w- C:\Windows\System32\drivers\UMDF\de-DE
2011-05-18 04:26:08 -------- d-----w- C:\Windows\System32\drivers\UMDF\fr-FR
2011-05-18 04:26:07 -------- d-----w- C:\Windows\System32\drivers\UMDF\es-ES
2011-05-14 19:48:21 -------- d-----w- C:\Program Files (x86)\Diablo II 4
2011-05-14 19:47:06 -------- d-----w- C:\Program Files (x86)\Diablo II 3
2011-05-14 19:38:20 -------- d-----r- C:\Sandbox
2011-05-14 19:25:39 -------- d-----w- C:\Program Files\Sandboxie
2011-05-14 17:28:36 -------- d-----w- C:\Program Files (x86)\SDA
2011-05-12 13:59:36 2594608 ----a-w- C:\Program Files\Internet Explorer\ienrbreakaway.exe
2011-05-11 02:18:44 5562240 ----a-w- C:\Windows\System32\ntoskrnl.exe
2011-05-11 02:18:41 3967872 ----a-w- C:\Windows\SysWow64\ntkrnlpa.exe
2011-05-11 02:18:41 3912576 ----a-w- C:\Windows\SysWow64\ntoskrnl.exe
2011-05-11 02:18:37 98816 ----a-w- C:\Windows\System32\drivers\usbccgp.sys
2011-05-11 02:18:37 7936 ----a-w- C:\Windows\System32\drivers\usbd.sys
2011-05-11 02:18:37 52736 ----a-w- C:\Windows\System32\drivers\usbehci.sys
2011-05-11 02:18:37 343040 ----a-w- C:\Windows\System32\drivers\usbhub.sys
2011-05-11 02:18:37 325120 ----a-w- C:\Windows\System32\drivers\usbport.sys
2011-05-11 02:18:37 30720 ----a-w- C:\Windows\System32\drivers\usbuhci.sys
2011-05-11 02:18:37 25600 ----a-w- C:\Windows\System32\drivers\usbohci.sys
2011-05-04 22:26:24 -------- d-----w- C:\Program Files (x86)\Common Files\xing shared
2011-05-02 20:54:06 -------- d-----w- C:\Program Files\iTunes
2011-05-02 20:54:06 -------- d-----w- C:\Program Files\iPod
2011-05-02 20:52:08 -------- d-----w- C:\Program Files\Bonjour
2011-05-02 20:52:08 -------- d-----w- C:\Program Files (x86)\Bonjour
2011-05-01 04:38:58 21840 ----a-w- C:\Windows\SysWow64\SIntfNT.dll
2011-05-01 04:38:58 17212 ----a-w- C:\Windows\SysWow64\SIntf32.dll
2011-05-01 04:38:58 12067 ----a-w- C:\Windows\SysWow64\SIntf16.dll
2011-05-01 00:29:22 94208 ----a-w- C:\Windows\DIIUnin.exe
2011-05-01 00:29:22 2829 ----a-w- C:\Windows\DIIUnin.pif
2011-05-01 00:15:43 -------- d-----w- C:\Program Files (x86)\Diablo II
.
==================== Find3M ====================
.
2011-05-25 02:14:10 270720 ------w- C:\Windows\System32\MpSigStub.exe
2011-05-04 22:25:58 499712 ----a-w- C:\Windows\SysWow64\msvcp71.dll
2011-04-06 23:26:58 96544 ----a-w- C:\Windows\System32\dnssd.dll
2011-04-06 23:26:58 69408 ----a-w- C:\Windows\System32\jdns_sd.dll
2011-04-06 23:26:58 237856 ----a-w- C:\Windows\System32\dnssdX.dll
2011-04-06 23:26:58 119584 ----a-w- C:\Windows\System32\dns-sd.exe
2011-04-06 23:20:16 91424 ----a-w- C:\Windows\SysWow64\dnssd.dll
2011-04-06 23:20:16 75040 ----a-w- C:\Windows\SysWow64\jdns_sd.dll
2011-04-06 23:20:16 197920 ----a-w- C:\Windows\SysWow64\dnssdX.dll
2011-04-06 23:20:16 107808 ----a-w- C:\Windows\SysWow64\dns-sd.exe
2011-03-13 19:13:18 254528 ----a-w- C:\Windows\System32\drivers\dtsoftbus01.sys
2011-03-12 12:08:49 1465344 ----a-w- C:\Windows\System32\XpsPrint.dll
2011-03-12 11:23:45 870912 ----a-w- C:\Windows\SysWow64\XpsPrint.dll
2011-03-11 06:41:37 189824 ----a-w- C:\Windows\System32\drivers\storport.sys
2011-03-11 06:41:34 166272 ----a-w- C:\Windows\System32\drivers\nvstor.sys
2011-03-11 06:41:34 1659776 ----a-w- C:\Windows\System32\drivers\ntfs.sys
2011-03-11 06:41:34 148352 ----a-w- C:\Windows\System32\drivers\nvraid.sys
2011-03-11 06:41:26 410496 ----a-w- C:\Windows\System32\drivers\iaStorV.sys
2011-03-11 06:41:12 27008 ----a-w- C:\Windows\System32\drivers\amdxata.sys
2011-03-11 06:41:12 107904 ----a-w- C:\Windows\System32\drivers\amdsata.sys
2011-03-11 06:34:51 1359872 ----a-w- C:\Windows\System32\mfc42u.dll
2011-03-11 06:34:50 1395712 ----a-w- C:\Windows\System32\mfc42.dll
2011-03-11 06:33:29 2565632 ----a-w- C:\Windows\System32\esent.dll
2011-03-11 06:30:28 96768 ----a-w- C:\Windows\System32\fsutil.exe
2011-03-11 05:33:59 1164288 ----a-w- C:\Windows\SysWow64\mfc42u.dll
2011-03-11 05:33:59 1137664 ----a-w- C:\Windows\SysWow64\mfc42.dll
2011-03-11 05:33:09 1699328 ----a-w- C:\Windows\SysWow64\esent.dll
2011-03-11 05:31:07 74240 ----a-w- C:\Windows\SysWow64\fsutil.exe
2011-03-11 04:40:14 472808 ----a-w- C:\Windows\SysWow64\deployJava1.dll
2011-03-08 06:29:32 976896 ----a-w- C:\Windows\System32\inetcomm.dll
2011-03-08 05:28:29 741376 ----a-w- C:\Windows\SysWow64\inetcomm.dll
2011-03-07 05:33:13 981504 ----a-w- C:\Windows\SysWow64\wininet.dll_old0
2011-03-07 05:33:10 1230336 ----a-w- C:\Windows\SysWow64\urlmon.dll_old0
2011-03-04 06:19:28 135168 ----a-w- C:\Windows\apppatch\AppPatch64\AcXtrnal.dll
2011-03-04 06:19:27 350208 ----a-w- C:\Windows\apppatch\AppPatch64\AcLayers.dll
2011-03-03 06:24:16 183296 ----a-w- C:\Windows\System32\dnsrslvr.dll
2011-03-03 06:21:57 30208 ----a-w- C:\Windows\System32\dnscacheugc.exe
2011-03-03 05:36:16 28672 ----a-w- C:\Windows\SysWow64\dnscacheugc.exe
2011-03-03 03:52:08 3135488 ----a-w- C:\Windows\System32\win32k.sys
.
============= FINISH: 10:08:54.41 ===============


here is the attach.txt

.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_11-05-19.01)
.
Microsoft Windows 7 Home Premium
Boot Device: \Device\HarddiskVolume1
Install Date: 2/8/2011 11:16:30 AM
System Uptime: 5/29/2011 9:21:18 AM (1 hours ago)
.
Motherboard: Sony Corporation | | VAIO
Processor: Intel® Core™ i7 CPU Q 720 @ 1.60GHz | N/A | 1600/133mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 699 GiB total, 274.876 GiB free.
D: is CDROM ()
E: is Removable
F: is CDROM ()
G: is CDROM ()
H: is CDROM ()
I: is CDROM ()
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP80: 5/18/2011 6:20:42 PM - Windows Update
RP81: 5/24/2011 4:22:04 PM - Windows Update
RP82: 5/25/2011 3:00:11 AM - Windows Update
RP83: 5/29/2011 10:03:51 AM - Windows Update
.
==== Installed Programs ======================
.
.
µTorrent
Acrobat.com
Adobe Acrobat 9 Pro - English, Français, Deutsch
Adobe Acrobat 9.4.4 - CPSID_83708
Adobe After Effects CS4
Adobe After Effects CS4 Presets
Adobe After Effects CS4 Template Projects & Footage
Adobe After Effects CS4 Third Party Content
Adobe AIR
Adobe Anchor Service CS4
Adobe Asset Services CS4
Adobe Bridge CS4
Adobe CMaps CS4
Adobe Color - Photoshop Specific CS4
Adobe Color EU Extra Settings CS4
Adobe Color JA Extra Settings CS4
Adobe Color NA Recommended Settings CS4
Adobe Color Video Profiles AE CS4
Adobe Color Video Profiles CS CS4
Adobe Contribute CS4
Adobe Creative Suite 4 Master Collection
Adobe CS4 American English Speech Analysis Models
Adobe CS4 French Speech Analysis Models
Adobe CS4 German Speech Analysis Models
Adobe CS4 International English Speech Analysis Models
Adobe CS4 Italian Speech Analysis Models
Adobe CS4 Japanese Speech Analysis Models
Adobe CS4 Korean Speech Analysis Models
Adobe CS4 Spanish Speech Analysis Models
Adobe CSI CS4
Adobe Default Language CS4
Adobe Device Central CS4
Adobe Dreamweaver CS4
Adobe Drive CS4
Adobe Dynamiclink Support
Adobe Encore CS4
Adobe Encore CS4 Codecs
Adobe Encore CS4 Library
Adobe ExtendScript Toolkit CS4
Adobe Extension Manager CS4
Adobe Fireworks CS4
Adobe Flash CS4
Adobe Flash CS4 Extension - Flash Lite STI en
Adobe Flash CS4 STI-en
Adobe Flash Player 10 ActiveX
Adobe Flash Player 10 Plugin
Adobe Fonts All
Adobe Illustrator CS4
Adobe InDesign CS4
Adobe InDesign CS4 Application Feature Set Files (Roman)
Adobe InDesign CS4 Common Base Files
Adobe InDesign CS4 Icon Handler
Adobe Linguistics CS4
Adobe Media Encoder CS4
Adobe Media Encoder CS4 Additional Exporter
Adobe Media Encoder CS4 Dolby
Adobe Media Encoder CS4 Exporter
Adobe Media Encoder CS4 Importer
Adobe Media Player
Adobe MotionPicture Color Files CS4
Adobe OnLocation CS4
Adobe Output Module
Adobe PDF Library Files CS4
Adobe Photoshop CS4
Adobe Photoshop CS4 Support
Adobe Premiere Pro CS4
Adobe Premiere Pro CS4 Functional Content
Adobe Premiere Pro CS4 Third Party Content
Adobe Reader X (10.0.1)
Adobe Search for Help
Adobe Service Manager Extension
Adobe Setup
Adobe SGM CS4
Adobe SING CS4
Adobe Soundbooth CS4
Adobe Soundbooth CS4 Codecs
Adobe Type Support CS4
Adobe Update Manager CS4
Adobe Version Cue CS4 Server
Adobe WinSoft Linguistics Plugin
Adobe XMP Panels CS4
AdobeColorCommonSetCMYK
AdobeColorCommonSetRGB
Age of Empires III
Apple Application Support
Apple Software Update
avast! Free Antivirus
Bejeweled 3
calibre
Connect
ConvertMovie 4.4
DAEMON Tools Lite
DAEMON Tools Toolbar
Dead Space™ 2
Diablo II
Divinity II - DKS Demo
DivX Setup
Dragon Age II
Dungeon Keeper 2
DUNGEONS
DVD Decrypter (Remove Only)
DVD Shrink 3.2
iGadget 6.3.1
iPod To Computer Transfer 6.2
iTeleport Connect
Java Auto Updater
Java™ 6 Update 24
kuler
Lexmark Toolbar
Microsoft Application Compatibility Toolkit 5.6
Microsoft Office Professional Edition 2003
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Mozilla Firefox 4.0.1 (x86 en-US)
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
Nero 7 Ultra Edition
neroxml
NVIDIA PhysX
PDF Settings CS4
Photoshop Camera Raw
Pixel Bender Toolkit
PowerDVD
QuickTime
RealNetworks - Microsoft Visual C++ 2008 Runtime
RealPlayer
Realtek High Definition Audio Driver
RealUpgrade 1.1
Remote Play with PlayStation 3
Remote Play with PlayStation®3
Safari
Samsung New PC Studio
SDFormatter
Security Update for Microsoft .NET Framework 4 Client Profile (KB2160841)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708)
Setting Utility Series
Sony Download Taxi 1.5.0.0
Suite Shared Configuration CS4
Update for Microsoft .NET Framework 4 Client Profile (KB2473228)
VAIO Content Metadata Intelligent Analyzing Manager
VAIO Content Metadata Manager Settings
VAIO Control Center
VAIO Event Service
VAIO Power Management
VC80CRTRedist - 8.0.50727.4053
VideoLAN VLC media player 0.8.6e
VLC Streamer 1.20
VNC Free Edition 4.1.3
WinRAR archiver
WinSCP 4.2.9
WinX DVD Ripper Platinum 6.0.2
.
==== Event Viewer Messages From Past Week ========
.
5/29/2011 8:52:52 AM, Error: Service Control Manager [7022] - The avast! Antivirus service hung on starting.
5/29/2011 10:00:56 AM, Error: Service Control Manager [7022] - The Windows Update service hung on starting.
.
==== End Of File ===========================

#11 Farbar

Farbar

    Just Curious


  • Security Developer
  • 21,706 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Netherlands
  • Local time:08:48 AM

Posted 29 May 2011 - 12:55 PM

Please download Malwarebytes' Anti-Malware from one of these locations:
malwarebytes.org
majorgeeks.com
  • Double Click mbam-setup.exe to install the application.
  • Make sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
  • If an update is found, it will download and install the latest version.
  • Once the program has loaded, select "Perform Quick Scan", then click Scan.
  • The scan may take some time to finish,so please be patient.
  • When the scan is complete, click OK, then Show Results to view the results.
  • Make sure that everything is checked, and click Remove Selected.
  • When disinfection is completed, a log will open in Notepad and you may be prompted to Restart.(See Extra Note)
  • The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
  • Copy&Paste the MBAM log.

Extra Note:
If MBAM encounters a file that is difficult to remove,you will be presented with 1 of 2 prompts,click OK to either and let MBAM proceed with the disinfection process,if asked to restart the computer,please do so immediately.


#12 soliz53

soliz53
  • Topic Starter

  • Members
  • 45 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:san diego
  • Local time:11:48 PM

Posted 29 May 2011 - 01:36 PM

hi i have started the scan now. i have a question i have other cpus in my house and i run either norton or avast on them should i run malwarebytes on all my pc's? what other stuff should i use on them.

#13 soliz53

soliz53
  • Topic Starter

  • Members
  • 45 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:san diego
  • Local time:11:48 PM

Posted 29 May 2011 - 01:39 PM

Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org

Database version: 6717

Windows 6.1.7601 Service Pack 1
Internet Explorer 9.0.8112.16421

5/29/2011 11:37:22 AM
mbam-log-2011-05-29 (11-37-22).txt

Scan type: Quick scan
Objects scanned: 168449
Time elapsed: 3 minute(s), 30 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 1

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
c:\Users\Owner\AppData\Local\Temp\FD0F.tmp (Rootkit.TDSS) -> Not selected for removal.

the file it found was not selected like it says there there is no option for removal im doing the scan again to see if i made a mistake.

#14 soliz53

soliz53
  • Topic Starter

  • Members
  • 45 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:san diego
  • Local time:11:48 PM

Posted 29 May 2011 - 01:43 PM

Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org

Database version: 6717

Windows 6.1.7601 Service Pack 1
Internet Explorer 9.0.8112.16421

5/29/2011 11:43:04 AM
mbam-log-2011-05-29 (11-43-04).txt

Scan type: Quick scan
Objects scanned: 168415
Time elapsed: 2 minute(s), 43 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 1

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
c:\Users\Owner\AppData\Local\Temp\FD0F.tmp (Rootkit.TDSS) -> Quarantined and deleted successfully.


ok i think it worked this time.

#15 Farbar

Farbar

    Just Curious


  • Security Developer
  • 21,706 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Netherlands
  • Local time:08:48 AM

Posted 29 May 2011 - 01:54 PM

You may use Malwarebytes on other computers too. It is not a replacement for AV but an addition.

I would like to run a full system scan.

ESET Online Scanner:

Note: You can use either Internet Explorer or Mozilla FireFox for this scan. You will however need to disable your current installed Anti-Virus, how to do so can be read here.

Vista users: You will need to to right-click on the either the IE or FF icon in the Start Menu or Quick Launch Bar on the Taskbar and select Run as Administrator from the context menu.

  • Please go here then click on: Posted Image

    Note: If using Mozilla Firefox you will need to download esetsmartinstaller_enu.exe when prompted then double click on it to install.
    All of the below instructions are compatible with either Internet Explorer or Mozilla FireFox.

  • Select the option YES, I accept the Terms of Use then click on: Posted Image
  • When prompted allow the Add-On/Active X to install.
  • Make sure that the option Remove found threats and the option Scan archives are checked.
  • Now click on Advanced Settings and select the following:
    • Enable Anti-Stealth Technology
  • Now click on: Posted Image
  • The virus signature database... will begin to download. Be patient this make take some time depending on the speed of your Internet Connection.
  • When completed the Online Scan will begin automatically.
  • Do not touch either the Mouse or keyboard during the scan otherwise it may stall.
  • When completed select Uninstall application on close if you so wish, make sure you copy the logfile first!
  • Now click on: Posted Image
  • Use notepad to open the logfile located at C:\Program Files\ESET\EsetOnlineScanner\log.txt.
  • Copy and paste that log as a reply to this topic.
Note: Do not forget to re-enable your Anti-Virus application after running the above scan!




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users