Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Virus/trojan/malware in laptop


  • This topic is locked This topic is locked
18 replies to this topic

#1 saika21

saika21

  • Members
  • 36 posts
  • OFFLINE
  •  
  • Local time:11:39 PM

Posted 09 October 2011 - 06:18 AM

Hi, I have a virus/trojan in my laptop. I have a sony vaio vpc-cw1z4e laptop. It wont allow me to update malwarebytes or scan it. When i access the internet it re-routes websites to other ad sites ie shultsautogroup.com. Any help is much appreciated.

Edit: Moved topic from AntiVirus, Firewall and Privacy Products and Protection Methods to the more appropriate forum. ~ Animal

BC AdBot (Login to Remove)

 


#2 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,696 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:09:39 PM

Posted 09 October 2011 - 12:48 PM

Download Security Check from HERE, and save it to your Desktop.

* Double-click SecurityCheck.exe
* Follow the onscreen instructions inside of the black box.
* A Notepad document should open automatically called checkup.txt; please post the contents of that document.

=============================================================================

Please download MiniToolBox and run it.

Checkmark following boxes:
  • Report IE Proxy Settings
  • Report FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size
Click Go and post the result.

=============================================================================

Please download GMER from one of the following locations and save it to your desktop:
  • Main Mirror
    This version will download a randomly named file (Recommended)
  • Zipped Mirror
    This version will download a zip file you will need to extract first. If you use this mirror, please extract the zip file to your desktop.
  • Disconnect from the Internet and close all running programs.
  • Temporarily disable any real-time active protection so your security programs will not conflict with gmer's driver.
  • Double-click on the randomly named GMER file (i.e. n7gmo46c.exe) and allow the gmer.sys driver to load if asked.
  • Note: If you downloaded the zipped version, extract the file to its own folder such as C:\gmer and then double-click on gmer.exe.

    Posted Image
  • GMER will open to the Rootkit/Malware tab and perform an automatic quick scan when first run. (do not use the computer while the scan is in progress)
  • If you receive a WARNING!!! about rootkit activity and are asked to fully scan your system...click NO.
  • Now click the Scan button. If you see a rootkit warning window, click OK.
  • When the scan is finished, click the Save... button to save the scan results to your Desktop. Save the file as gmer.log.
  • Click the Copy button and paste the results into your next reply.
  • Exit GMER and be sure to re-enable your anti-virus, Firewall and any other security programs you had disabled.

IMPORTANT! If for some reason GMER refuses to run, try again.
If it still fails, try to UN-check "Devices" in right pane.
If still no joy, try to run it from Safe Mode.

My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 


#3 saika21

saika21
  • Topic Starter

  • Members
  • 36 posts
  • OFFLINE
  •  
  • Local time:11:39 PM

Posted 09 October 2011 - 12:54 PM

we've used hitmanpro and its managed to find a malware. however it changed something in the c drive and now the laptop stuck in a loop and it wont start up. it comes up with a start up error. it cannot automatically repair it and system restore doesnt work. i have windows 7 but i dont have a recovery disk and don't know how to create one from my other laptop. i have a recovery disk with that.

#4 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,696 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:09:39 PM

Posted 09 October 2011 - 12:55 PM

I'll report this topic to appropriate malware people.
Hold on there.

My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 


#5 JSntgRvr

JSntgRvr

    Master Surgeon General


  • Malware Response Team
  • 11,545 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto Rico
  • Local time:12:39 AM

Posted 09 October 2011 - 05:25 PM

:welcome:

Which operating system is installed?

No request for help throughout private messaging will be attended.

If I have helped you, consider making a donation to help me continue the fight against Malware!
btn_donate_SM.gif


#6 saika21

saika21
  • Topic Starter

  • Members
  • 36 posts
  • OFFLINE
  •  
  • Local time:11:39 PM

Posted 09 October 2011 - 05:43 PM

Hi. thanks for your reply. Its Windows 7 Home Premium. Its a blue screen error message that comes up with the following details:

stop error screen windows 7

Stop: 0x0000007b (0xfffff880009a98e8, 0xffffffffc000000d,0x0000000000000000, 0x0000000000000000)

Ive checked online its also comes up as the blue screen of death (BSOD) which doesn't sound good.

Any help is much appreciated

#7 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,176 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:39 AM

Posted 09 October 2011 - 06:27 PM

Hello, just letting you know I moved this topic to Here in the Virus, Trojan, Spyware, and Malware Removal Logs forum where it will stay.

Please remember to click the Watch Topic button at the top right and select Immediate Notification so you do not miss any replies now that you were moved.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#8 JSntgRvr

JSntgRvr

    Master Surgeon General


  • Malware Response Team
  • 11,545 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto Rico
  • Local time:12:39 AM

Posted 09 October 2011 - 07:06 PM

Lets attempt to scan the computer. You will need a USB (Flash) pendrive.

For x32 (x86) bit systems download Farbar Recovery Scan Tool and save it to a flash drive.
For x64 bit systems download Farbar Recovery Scan Tool x64 and save it to a flash drive.

Plug the flashdrive into the infected PC.

Enter System Recovery Options.

To enter System Recovery Options from the Advanced Boot Options:
  • Restart the computer.
  • As soon as the BIOS is loaded begin tapping the F8 key until Advanced Boot Options appears.
  • Click on Repair your computer menu item.
  • Select US as the keyboard language settings, and then click Next.
  • Select the operating system you want to repair, and then click Next.
  • Select your user account and click Next.
On the System Recovery Options menu you will get the following options:

Startup Repair
System Restore
Windows Complete PC Restore
Windows Memory Diagnostic Tool
Command Prompt

  • Select Command Prompt
  • In the command window type in notepad and press Enter.
  • The notepad opens. Under File menu select Open.
  • Select "Computer" and find your flash drive letter and close the notepad.
  • In the command window type e:\frst.exe (for x64 bit version type e:\frst64) and press Enter
    Note: Replace letter e with the drive letter of your flash drive.
  • The tool will start to run.
  • When the tool opens click Yes to disclaimer.
  • Press Scan button.
  • It will make a log (FRST.txt) in the flash drive. Please copy and paste it to your reply.

No request for help throughout private messaging will be attended.

If I have helped you, consider making a donation to help me continue the fight against Malware!
btn_donate_SM.gif


#9 saika21

saika21
  • Topic Starter

  • Members
  • 36 posts
  • OFFLINE
  •  
  • Local time:11:39 PM

Posted 10 October 2011 - 11:29 AM

Hi, thanks for your reply. the scan was done using the scan for the 64-bit. The information from the log is shown below:

Scan result of Farbars's Recovery Tool (FRST written by farbar) Version 2.2.3
Ran by SYSTEM at 2011-10-10 12:18:40
Running from G:\
Windows 7 Home Premium (X64) OS Language: English(US)
The current controlset is ControlSet001

========================== Registry (Whitelisted) =============

HKLM\...\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe [1815848 2009-08-03] (Synaptics Incorporated)
HKLM\...\Run: [IAAnotif] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe [186904 2009-06-05] (Intel Corporation)
HKLM\...\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup [16335392 2009-07-28] (NVIDIA Corporation)
HKLM\...\Run: [ActivControl] C:\Program Files\Activ Software\ActivDriver\ActivControl2x64.exe [1240944 2010-12-17] (Promethean Technologies Group Ltd)
HKLM\...\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe" [171520 2009-08-20] (Sun Microsystems, Inc.)
HKLM\...\Run: [Skytel] C:\Program Files\Realtek\Audio\HDA\Skytel.exe [1833504 2009-07-24] (Realtek Semiconductor Corp.)
HKLM\...\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [7938080 2009-07-24] (Realtek Semiconductor)
HKLM\...\Run: [PrnStatusMX] C:\Program Files\Hewlett-Packard\PrnStatusMX\PrnStatusMX.exe [1238528 2007-08-29] (Marvell Semiconductor, Inc.)
HKLM-x32\...\Run: [ISBMgr.exe] "C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe" [317288 2009-05-26] (Sony Corporation)
HKLM-x32\...\Run: [NortonOnlineBackupReminder] "C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe" UNATTENDED [538472 2009-06-18] (Symantec Corporation)
HKLM-x32\...\Run: [] [x]
HKLM-x32\...\Run: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [49208 2010-06-09] (Hewlett-Packard)
HKLM-x32\...\Run: [Microsoft Default Manager] "C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe" -resume [439568 2010-05-10] (Microsoft Corporation)
HKLM-x32\...\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [937920 2011-06-06] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [ApnUpdater] "C:\Program Files (x86)\Ask.com\Updater\Updater.exe" [395144 2011-05-17] ()
HKLM-x32\...\Run: [MindDabble_4p Browser Plugin Loader] C:\PROGRA~2\MINDDA~2\bar\1.bin\4pbrmon.exe [30096 2011-08-25] (VER_COMPANY_NAME)
HKLM-x32\...\Run: [TkBellExe] "C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe" -osboot [273544 2011-05-21] (RealNetworks, Inc.)
HKLM-x32\...\Run: [SHTtray.exe] C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SHTtray.exe [99624 2009-07-27] (Sony Corporation)
HKLM-x32\...\Run: [mcui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey [1484856 2010-09-10] (McAfee, Inc.)
HKLM-x32\...\Run: [MarketingTools] C:\Program Files (x86)\Sony\Marketing Tools\MarketingTools.exe [26624 2010-09-15] (Sony Corporation)
HKLM-x32\...\Run: [HPUsageTrackingLEDM] "C:\Program Files (x86)\HP\HP UT LEDM\bin\hppusg.exe" "C:\Program Files (x86)\HP\HP UT LEDM\" [30264 2009-08-04] (Hewlett-Packard Company)
HKLM-x32\...\Run: [DivXUpdate] "C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW [1164584 2010-09-16] ()
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" [x]
HKU\nazam\...\Run: [Google Update] "C:\Users\nazam\AppData\Local\Google\Update\GoogleUpdate.exe" /c [136176 2011-09-27] (Google Inc.)
HKU\Sony\...\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [39408 2010-09-15] (Google Inc.)
HKU\Sony\...\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background [3872080 2010-04-16] (Microsoft Corporation)
HKU\Sony\...\Run: [Google Update] "C:\Users\Sony\AppData\Local\Google\Update\GoogleUpdate.exe" /c [136176 2010-09-29] (Google Inc.)
HKU\Sony\...\Run: [uTorrent] "C:\Program Files (x86)\uTorrent\uTorrent.exe" [399736 2011-06-19] (BitTorrent, Inc.)
HKLM\...\RunOnce: [*Restore] C:\Windows\system32\rstrui.exe /RUNONCE [296960 2009-07-14] (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

==================== Services (Whitelisted) ======

4 !SASCORE; "C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE" [128752 2010-06-29] (SUPERAntiSpyware.com)
4 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.)
4 FLEXnet Licensing Service; "C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe" [651720 2011-03-20] (Macrovision Europe Ltd.)
4 HP LaserJet Service; "C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe" [136704 2009-06-24] (HP)
4 McAfee SiteAdvisor Service; "C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe" [102608 2011-08-10] (McAfee, Inc.)
4 McComponentHostService; "C:\Program Files (x86)\McAfee Security Scan\2.0.181\McCHSvc.exe" [227232 2010-01-15] (McAfee, Inc.)
4 McMPFSvc; "C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe" /McCoreSvc [355440 2010-03-10] (McAfee, Inc.)
4 mcmscsvc; "C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe" /McCoreSvc [355440 2010-03-10] (McAfee, Inc.)
4 McNaiAnn; "C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe" /McCoreSvc [355440 2010-03-10] (McAfee, Inc.)
4 McNASvc; "C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe" /McCoreSvc [355440 2010-03-10] (McAfee, Inc.)
4 McODS; "C:\Program Files\McAfee\VirusScan\mcods.exe" [509416 2010-04-15] (McAfee, Inc.)
4 McProxy; "C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe" /McCoreSvc [355440 2010-03-10] (McAfee, Inc.)
2 McShield; "C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe" [200056 2010-08-24] (McAfee, Inc.)
4 mfefire; "C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe" [245352 2010-08-24] (McAfee, Inc.)
2 mfevtp; "C:\Windows\system32\mfevtps.exe" [149032 2010-08-24] (McAfee, Inc.)
4 MindDabble_4pService; C:\PROGRA~2\MINDDA~2\bar\1.bin\4pbarsvc.exe [42504 2011-08-25] (COMPANYVERS_NAME)
4 MSK80Service; "C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe" /McCoreSvc [355440 2010-03-10] (McAfee, Inc.)
2 RapportMgmtService; "C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe" [870200 2011-08-21] (Trusteer Ltd.)
4 Roxio UPnP Renderer 10; "C:\Program Files (x86)\Roxio\Digital Home 10\RoxioUPnPRenderer10.exe" [313840 2009-06-26] (Sonic Solutions)
4 Roxio Upnp Server 10; "C:\Program Files (x86)\Roxio\Digital Home 10\RoxioUpnpService10.exe" [362992 2009-06-26] (Sonic Solutions)
4 SOHCImp; "C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe" [120104 2009-07-27] (Sony Corporation)
4 SOHDBSvr; "C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDBSvr.exe" [70952 2009-07-27] (Sony Corporation)
4 SOHDms; "C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe" [427304 2009-07-27] (Sony Corporation)
4 SOHDs; "C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe" [75048 2009-07-27] (Sony Corporation)
4 SOHPlMgr; "C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHPlMgr.exe" [91432 2009-07-27] (Sony Corporation)
4 uCamMonitor; C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe [104960 2008-09-18] (ArcSoft, Inc.)
4 VAIO Entertainment TV Device Arbitration Service; "C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VzHardwareResourceManager\VzHardwareResourceManager\VzHardwareResourceManager.exe" [69632 2009-07-23] (Sony Corporation)
4 VAIO Event Service; "C:\Program Files (x86)\Sony\VAIO Event Service\VESMgr.exe" [205168 2010-05-07] (Sony Corporation)
4 VAIO Power Management; "C:\Program Files\Sony\VAIO Power Management\SPMService.exe" [411496 2009-07-16] (Sony Corporation)
4 VCFw; "C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe" [642920 2009-07-22] (Sony Corporation)
4 VcmIAlzMgr; "C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe" [468264 2009-06-26] (Sony Corporation)
4 VcmINSMgr; "C:\Program Files\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe" [357672 2009-06-26] (Sony Corporation)
4 VcmXmlIfHelper; "C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper64.exe" [110888 2009-06-18] (Sony Corporation)
4 Vcsw; C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe -RunBySCM [313264 2009-07-23] (Sony Corporation)
4 VSNService; "C:\Program Files\Sony\VAIO Smart Network\VSNService.exe" [522240 2009-08-13] (Sony Corporation)
4 VUAgent; "C:\Program Files\Sony\VAIO Update Common\VUAgent.exe" [1429608 2011-09-23] (Sony Corporation)
4 VzCdbSvc; "C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe" [206336 2009-07-23] (Sony Corporation)
2 yksvc; C:\Windows\System32\yk62x64.dll [382976 2009-07-31] (Marvell)
4 IviRegMgr; "c:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe" [x]

========================== Drivers (Whitelisted) =============

3 ArcSoftKsUFilter; C:\Windows\System32\DRIVERS\ArcSoftKsUFilter.sys [19968 2009-05-26] (ArcSoft, Inc.)
3 cfwids; C:\Windows\System32\drivers\cfwids.sys [62800 2010-08-24] (McAfee, Inc.)
3 mfeapfk; C:\Windows\System32\drivers\mfeapfk.sys [121248 2010-08-24] (McAfee, Inc.)
3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [190136 2010-08-24] (McAfee, Inc.)
3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [441072 2010-08-24] (McAfee, Inc.)
0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [529000 2010-08-24] (McAfee, Inc.)
1 mfenlfk; C:\Windows\System32\DRIVERS\mfenlfk.sys [75032 2010-08-24] (McAfee, Inc.)
3 mferkdet; C:\Windows\System32\drivers\mferkdet.sys [94736 2010-08-24] (McAfee, Inc.)
1 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [283232 2010-08-24] (McAfee, Inc.)
1 RapportCerberus_29574; \??\C:\ProgramData\Trusteer\Rapport\store\exts\RapportCerberus\29574\RapportCerberus64_29574.sys [386128 2011-08-03] ()
1 RapportEI64; \??\C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportEI64.sys [52496 2011-08-21] (Trusteer Ltd.)
0 RapportKE64; C:\Windows\System32\Drivers\RapportKE64.sys [64272 2011-08-21] (Trusteer Ltd.)
1 RapportPG64; \??\C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportPG64.sys [61200 2011-08-21] (Trusteer Ltd.)
2 regi; \??\C:\Windows\system32\drivers\regi.sys [14112 2007-04-17] (InterVideo)
2 rimspci; C:\Windows\System32\DRIVERS\rimssne64.sys [91648 2009-07-31] (REDC)
2 risdsnpe; C:\Windows\System32\DRIVERS\risdsne64.sys [75776 2009-07-31] (REDC)
1 SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14920 2010-02-17] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
1 SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12360 2010-02-17] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
3 StillCam; C:\Windows\System32\DRIVERS\serscan.sys [12288 2009-07-14] (Microsoft Corporation)
3 mfeavfk01; [x]

========================== NetSvcs (Whitelisted) ===========

============ One Month Created Files and Folders ==============

2011-10-09 11:26 - 2011-10-09 13:01 - 0000000 ____D C:\Users\All Users\Hitman Pro
2011-10-09 11:26 - 2011-10-09 13:01 - 0000000 ____D C:\ProgramData\Hitman Pro
2011-10-07 23:28 - 2010-10-27 09:24 - 0001864 ____A C:\Users\All Users\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
2011-10-07 23:28 - 2009-08-20 22:13 - 0000834 ____A C:\Users\All Users\Start Menu\Programs\Startup\Bluetooth.lnk
2011-10-06 21:46 - 2011-10-06 22:33 - 0000000 ____D C:\Users\Sony\Downloads\(www.dustorrents.com) Rascals.2011.SCAM.1cd Rip.xvid.Kil0.Dus
2011-10-04 17:37 - 2011-10-04 17:37 - 0030720 ____A C:\Users\Sony\Downloads\personal statement- co-op.doc
2011-10-03 15:30 - 2011-10-07 22:40 - 0000000 ____D C:\Users\Sony\Downloads\co-op academy
2011-10-02 19:30 - 2011-10-02 19:30 - 0000000 ____D C:\Windows\Sun
2011-10-02 19:29 - 2011-10-02 19:29 - 0000000 ____D C:\Users\All Users\Ask
2011-10-02 19:29 - 2011-10-02 19:29 - 0000000 ____D C:\ProgramData\Ask
2011-10-02 19:23 - 2011-10-02 19:23 - 0909600 ____A (Sun Microsystems, Inc.) C:\Users\Sony\Downloads\chromeinstall-6u27.exe
2011-10-02 13:48 - 2011-10-02 13:48 - 0011542 ____A C:\Users\nazam\Downloads\Supernatural.S07E02.GRSUB.480p.HDTV-KUTeam[1337x.org].torrent
2011-10-01 15:52 - 2011-10-09 18:50 - 0000000 ____D C:\Users\nazam\AppData\Roaming\Promethean
2011-10-01 13:52 - 2011-10-01 13:52 - 0002313 ____A C:\Users\nazam\Desktop\Google Chrome.lnk
2011-10-01 13:51 - 2011-10-09 18:48 - 0000000 ____D C:\Users\nazam\AppData\Local\Google
2011-10-01 13:51 - 2011-10-07 22:56 - 0000908 ____A C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1815345564-582429406-3232621267-1003UA.job
2011-10-01 13:51 - 2011-10-02 13:56 - 0000856 ____A C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1815345564-582429406-3232621267-1003Core.job
2011-10-01 13:20 - 2011-10-01 13:20 - 0000000 ____D C:\Users\nazam\AppData\Roaming\Adobe
2011-10-01 13:12 - 2011-10-09 18:49 - 0000000 ____D C:\Users\nazam\AppData\Roaming\ACTIV Software
2011-10-01 13:11 - 2011-10-01 13:11 - 0000174 __ASH C:\Users\nazam\Start Menu\Programs\Startup\desktop.ini
2011-10-01 13:11 - 2011-10-01 13:11 - 0000174 __ASH C:\Users\nazam\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\desktop.ini
2011-10-01 13:10 - 2011-10-09 18:50 - 0000000 ____D C:\users\nazam
2011-10-01 13:10 - 2011-10-09 18:49 - 0000000 ____D C:\Users\nazam\AppData\Roaming\Trusteer
2011-10-01 13:10 - 2011-10-09 18:49 - 0000000 ____D C:\Users\nazam\AppData\Roaming\Sony Corporation
2011-10-01 13:10 - 2011-10-09 18:49 - 0000000 ____D C:\Users\nazam\AppData\Roaming\Macromedia
2011-10-01 13:10 - 2011-10-09 18:49 - 0000000 ____D C:\Users\nazam\AppData\LocalLow
2011-10-01 13:10 - 2011-10-01 13:12 - 0000000 ____D C:\Users\nazam\AppData\Local\VirtualStore
2011-10-01 13:10 - 2011-10-01 13:10 - 0117800 ____A C:\Users\nazam\AppData\Local\GDIPFONTCACHEV1.DAT
2011-10-01 13:10 - 2011-10-01 13:10 - 0000020 __ASH C:\Users\nazam\ntuser.ini
2011-10-01 13:10 - 2011-10-01 13:10 - 0000000 __SHD C:\Users\nazam\Templates
2011-10-01 13:10 - 2011-10-01 13:10 - 0000000 __SHD C:\Users\nazam\Start Menu
2011-10-01 13:10 - 2011-10-01 13:10 - 0000000 __SHD C:\Users\nazam\PrintHood
2011-10-01 13:10 - 2011-10-01 13:10 - 0000000 __SHD C:\Users\nazam\NetHood
2011-10-01 13:10 - 2011-10-01 13:10 - 0000000 __SHD C:\Users\nazam\My Documents
2011-10-01 13:10 - 2011-10-01 13:10 - 0000000 __SHD C:\Users\nazam\Documents\My Videos
2011-10-01 13:10 - 2011-10-01 13:10 - 0000000 __SHD C:\Users\nazam\Documents\My Pictures
2011-10-01 13:10 - 2011-10-01 13:10 - 0000000 __SHD C:\Users\nazam\Documents\My Music
2011-10-01 13:10 - 2011-10-01 13:10 - 0000000 __SHD C:\Users\nazam\AppData\Local\Temporary Internet Files
2011-10-01 13:10 - 2011-10-01 13:10 - 0000000 __SHD C:\Users\nazam\AppData\Local\History
2011-10-01 13:10 - 2011-09-27 11:56 - 0000000 ____D C:\Users\nazam\AppData\Local\Trusteer
2011-10-01 13:10 - 2010-09-30 16:23 - 0000000 ____D C:\Users\nazam\AppData\Local\Microsoft Help
2011-10-01 13:10 - 2009-07-14 07:44 - 0000000 ____D C:\Users\nazam\AppData\Roaming\Media Center Programs
2011-10-01 12:59 - 2011-10-09 18:50 - 0000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2011-09-30 23:37 - 2011-09-30 23:37 - 0418816 ____A C:\Users\Sony\Downloads\Model-CV-Teacher-2011-1030.doc
2011-09-30 23:34 - 2011-09-30 23:34 - 0355840 ____A C:\Users\Sony\Downloads\asset856.doc
2011-09-30 23:00 - 2011-09-30 23:00 - 0095744 ____A C:\Users\Sony\Downloads\Application Form.doc
2011-09-30 23:00 - 2011-09-30 23:00 - 0025600 ____A C:\Users\Sony\Downloads\Access to Children.doc
2011-09-30 22:58 - 2011-09-30 22:58 - 0050688 ____A C:\Users\Sony\Downloads\teacher lev.doc
2011-09-30 22:56 - 2011-09-30 22:56 - 0098816 ____A C:\Users\Sony\Downloads\Mathematics4-2010.doc
2011-09-28 12:39 - 2011-09-28 12:39 - 0115712 ____A C:\Users\Sony\Downloads\oakbank application form.doc
2011-09-27 19:10 - 2011-09-27 19:10 - 6284664 ____A (Microsoft Corporation) C:\Users\Sony\Downloads\Silverlight.exe
2011-09-27 17:30 - 2011-09-27 17:30 - 0604488 ____A (Google Inc.) C:\Users\Sony\Downloads\ChromeSetup.exe
2011-09-27 17:22 - 2011-09-27 17:22 - 0038912 ____A C:\Windows\System32\jqroty.exe
2011-09-27 11:56 - 2011-09-27 11:56 - 0000000 ____D C:\Users\Default\AppData\Local\Trusteer
2011-09-27 11:56 - 2011-09-27 11:56 - 0000000 ____D C:\Users\Default User\AppData\Local\Trusteer
2011-09-24 22:46 - 2011-09-24 22:46 - 14842972 ____A C:\Users\Sony\Downloads\MATHS 1.zip
2011-09-24 22:46 - 2011-09-24 22:46 - 14222682 ____A C:\Users\Sony\Downloads\MATHS LESSONS A30.zip
2011-09-24 22:38 - 2011-09-24 22:38 - 20724928 ____A C:\Users\Sony\Downloads\MATHS POWERPOINT FILES.zip
2011-09-24 22:38 - 2011-09-24 22:38 - 15789879 ____A C:\Users\Sony\Downloads\MATHS ZIP FILES.zip
2011-09-24 21:48 - 2011-09-24 22:26 - 0000000 ____D C:\Users\Sony\Downloads\MOVIES
2011-09-24 17:08 - 2011-09-24 17:11 - 0000440 ____A C:\Users\All Users\6DSS92c31Apgjk
2011-09-24 17:08 - 2011-09-24 17:11 - 0000440 ____A C:\ProgramData\6DSS92c31Apgjk
2011-09-24 09:41 - 2011-09-24 09:41 - 0030720 ___AH C:\Users\Sony\Downloads\humanities.doc
2011-09-23 23:18 - 2011-09-23 23:18 - 0747676 ___AH C:\Users\Sony\Downloads\ac3filter_1-11.zip
2011-09-21 15:19 - 2011-09-21 15:37 - 0011854 ____A C:\Users\Public\Documents\Use the space below to show you have the skills.docx
2011-09-18 15:40 - 2011-09-17 11:49 - 1090689788 ___AH C:\Users\Sony\Desktop\Pirates Of The Caribbean On Stranger Tides {2011} DVDRIP. Jaybob .avi
2011-09-16 11:21 - 2011-09-16 11:21 - 0010630 ____A C:\Users\Public\Documents\I have done three placements during my PGCE.docx
2011-09-15 22:50 - 2011-09-15 22:50 - 0038098 ____A C:\Users\Public\Documents\home work technology.docx
2011-09-12 13:10 - 2011-09-12 13:10 - 0010401 ____A C:\Users\Public\Documents\14 Beech grove offer allsop.docx


============ 3 Months Modified Files and Folders =============

2011-10-10 12:19 - 2011-10-10 12:18 - 0000000 ____D C:\FRST
2011-10-10 12:14 - 2010-09-15 16:42 - 0000000 ___HD C:\SPLASH.000
2011-10-09 18:50 - 2011-10-01 15:52 - 0000000 ____D C:\Users\nazam\AppData\Roaming\Promethean
2011-10-09 18:50 - 2011-10-01 13:10 - 0000000 ____D C:\users\nazam
2011-10-09 18:50 - 2011-10-01 12:59 - 0000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2011-10-09 18:50 - 2011-08-07 13:37 - 0000000 ____D C:\Program Files (x86)\Ask.com
2011-10-09 18:50 - 2011-08-07 13:37 - 0000000 ____D C:\Firefox
2011-10-09 18:50 - 2011-07-01 22:24 - 0000000 ____D C:\Users\Sony\AppData\Roaming\Promethean
2011-10-09 18:50 - 2010-12-11 22:14 - 0000000 ____D C:\Users\Sony\AppData\Roaming\uTorrent
2011-10-09 18:50 - 2010-10-27 10:36 - 0000000 ____D C:\Users\Public\Desktop\Adobe Reader 9 Installer
2011-10-09 18:50 - 2010-10-21 22:51 - 0000000 ____D C:\Users\All Users\McAfee Security Scan
2011-10-09 18:50 - 2010-10-21 22:51 - 0000000 ____D C:\ProgramData\McAfee Security Scan
2011-10-09 18:50 - 2010-10-06 22:01 - 0000000 ____D C:\Update
2011-10-09 18:50 - 2010-10-01 21:17 - 0000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2011-10-09 18:50 - 2010-09-15 16:53 - 0000000 ___RD C:\Program Files (x86)\Skype
2011-10-09 18:50 - 2010-09-15 16:52 - 0000000 ____D C:\Users\All Users\Symantec
2011-10-09 18:50 - 2010-09-15 16:52 - 0000000 ____D C:\ProgramData\Symantec
2011-10-09 18:50 - 2010-09-15 09:44 - 0000000 ____D C:\Users\Sony\AppData\Roaming\ArcSoft
2011-10-09 18:50 - 2010-09-15 09:24 - 0000000 ____D C:\Users\Sony\AppData\Local\Sony_Corporation
2011-10-09 18:50 - 2010-09-15 09:21 - 0000000 ____D C:\users\Sony
2011-10-09 18:50 - 2009-07-14 03:20 - 0000000 ____D C:\Windows\System32\NDF
2011-10-09 18:50 - 2009-07-14 03:20 - 0000000 ____D C:\Windows\registration
2011-10-09 18:50 - 2009-07-14 03:20 - 0000000 ____D C:\Windows\AppCompat
2011-10-09 18:50 - 2009-07-14 03:18 - 0000000 __SHD C:\$Recycle.Bin
2011-10-09 18:49 - 2011-10-01 13:12 - 0000000 ____D C:\Users\nazam\AppData\Roaming\ACTIV Software
2011-10-09 18:49 - 2011-10-01 13:10 - 0000000 ____D C:\Users\nazam\AppData\Roaming\Trusteer
2011-10-09 18:49 - 2011-10-01 13:10 - 0000000 ____D C:\Users\nazam\AppData\Roaming\Sony Corporation
2011-10-09 18:49 - 2011-10-01 13:10 - 0000000 ____D C:\Users\nazam\AppData\Roaming\Macromedia
2011-10-09 18:49 - 2011-10-01 13:10 - 0000000 ____D C:\Users\nazam\AppData\LocalLow
2011-10-09 18:49 - 2010-09-30 21:27 - 0000000 ____D C:\Users\Sony\AppData\Roaming\Skype
2011-10-09 18:49 - 2010-09-15 09:21 - 0000000 ____D C:\Users\Sony\AppData\LocalLow
2011-10-09 18:48 - 2011-10-01 13:51 - 0000000 ____D C:\Users\nazam\AppData\Local\Google
2011-10-09 18:48 - 2011-05-21 23:12 - 0000000 ____D C:\Users\All Users\Real
2011-10-09 18:48 - 2011-05-21 23:12 - 0000000 ____D C:\ProgramData\Real
2011-10-09 18:48 - 2010-09-15 09:06 - 0000000 ____D C:\Program Files\Sony
2011-10-09 18:47 - 2009-08-20 23:20 - 0000000 ____D C:\Program Files (x86)\Java
2011-10-09 18:47 - 2009-08-20 22:10 - 0000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2011-10-09 13:01 - 2011-10-09 11:26 - 0000000 ____D C:\Users\All Users\Hitman Pro
2011-10-09 13:01 - 2011-10-09 11:26 - 0000000 ____D C:\ProgramData\Hitman Pro
2011-10-09 11:10 - 2009-07-14 03:20 - 0000000 ____D C:\Windows\tracing
2011-10-09 11:07 - 2010-09-15 17:05 - 3195297792 __ASH C:\hiberfil.sys
2011-10-09 10:35 - 2010-10-25 23:09 - 0000000 ___HD C:\Users\Sony\Tracing
2011-10-07 23:36 - 2010-11-21 11:01 - 0065536 ____A C:\Windows\System32\Ikeext.etl
2011-10-07 23:36 - 2010-09-29 15:50 - 0000894 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2011-10-07 23:36 - 2009-07-14 05:08 - 0000006 ___AH C:\Windows\Tasks\SA.DAT
2011-10-07 23:36 - 2009-07-14 04:51 - 0084743 ____A C:\Windows\setupact.log
2011-10-07 23:35 - 2010-09-29 15:50 - 0000898 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2011-10-07 23:35 - 2010-09-29 15:35 - 0000904 ____A C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1815345564-582429406-3232621267-1000UA.job
2011-10-07 23:35 - 2010-09-15 16:38 - 1294385 ____A C:\Windows\WindowsUpdate.log
2011-10-07 23:35 - 2009-07-14 05:13 - 0726316 ____A C:\Windows\System32\PerfStringBackup.INI
2011-10-07 23:35 - 2009-07-14 04:45 - 0010096 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2011-10-07 23:35 - 2009-07-14 04:45 - 0010096 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2011-10-07 22:56 - 2011-10-01 13:51 - 0000908 ____A C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1815345564-582429406-3232621267-1003UA.job
2011-10-07 22:45 - 2009-07-14 03:20 - 0000000 ____D C:\Windows\System32\config\TxR
2011-10-07 22:40 - 2011-10-03 15:30 - 0000000 ____D C:\Users\Sony\Downloads\co-op academy
2011-10-06 23:15 - 2011-01-16 23:50 - 0000000 ___HD C:\Users\Sony\AppData\Roaming\skypePM
2011-10-06 22:33 - 2011-10-06 21:46 - 0000000 ____D C:\Users\Sony\Downloads\(www.dustorrents.com) Rascals.2011.SCAM.1cd Rip.xvid.Kil0.Dus
2011-10-04 17:37 - 2011-10-04 17:37 - 0030720 ____A C:\Users\Sony\Downloads\personal statement- co-op.doc
2011-10-02 19:30 - 2011-10-02 19:30 - 0000000 ____D C:\Windows\Sun
2011-10-02 19:29 - 2011-10-02 19:29 - 0000000 ____D C:\Users\All Users\Ask
2011-10-02 19:29 - 2011-10-02 19:29 - 0000000 ____D C:\ProgramData\Ask
2011-10-02 19:23 - 2011-10-02 19:23 - 0909600 ____A (Sun Microsystems, Inc.) C:\Users\Sony\Downloads\chromeinstall-6u27.exe
2011-10-02 17:45 - 2010-09-29 15:35 - 0000852 ____A C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1815345564-582429406-3232621267-1000Core.job
2011-10-02 15:46 - 2011-05-11 09:24 - 0000000 ____D C:\CHHS
2011-10-02 13:56 - 2011-10-01 13:51 - 0000856 ____A C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1815345564-582429406-3232621267-1003Core.job
2011-10-02 13:48 - 2011-10-02 13:48 - 0011542 ____A C:\Users\nazam\Downloads\Supernatural.S07E02.GRSUB.480p.HDTV-KUTeam[1337x.org].torrent
2011-10-01 22:27 - 2010-09-29 15:35 - 0002393 ____A C:\Users\Sony\Desktop\Google Chrome.lnk
2011-10-01 13:52 - 2011-10-01 13:52 - 0002313 ____A C:\Users\nazam\Desktop\Google Chrome.lnk
2011-10-01 13:20 - 2011-10-01 13:20 - 0000000 ____D C:\Users\nazam\AppData\Roaming\Adobe
2011-10-01 13:12 - 2011-10-01 13:10 - 0000000 ____D C:\Users\nazam\AppData\Local\VirtualStore
2011-10-01 13:11 - 2011-10-01 13:11 - 0000174 __ASH C:\Users\nazam\Start Menu\Programs\Startup\desktop.ini
2011-10-01 13:11 - 2011-10-01 13:11 - 0000174 __ASH C:\Users\nazam\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\desktop.ini
2011-10-01 13:10 - 2011-10-01 13:10 - 0117800 ____A C:\Users\nazam\AppData\Local\GDIPFONTCACHEV1.DAT
2011-10-01 13:10 - 2011-10-01 13:10 - 0000020 __ASH C:\Users\nazam\ntuser.ini
2011-10-01 13:10 - 2011-10-01 13:10 - 0000000 __SHD C:\Users\nazam\Templates
2011-10-01 13:10 - 2011-10-01 13:10 - 0000000 __SHD C:\Users\nazam\Start Menu
2011-10-01 13:10 - 2011-10-01 13:10 - 0000000 __SHD C:\Users\nazam\PrintHood
2011-10-01 13:10 - 2011-10-01 13:10 - 0000000 __SHD C:\Users\nazam\NetHood
2011-10-01 13:10 - 2011-10-01 13:10 - 0000000 __SHD C:\Users\nazam\My Documents
2011-10-01 13:10 - 2011-10-01 13:10 - 0000000 __SHD C:\Users\nazam\Documents\My Videos
2011-10-01 13:10 - 2011-10-01 13:10 - 0000000 __SHD C:\Users\nazam\Documents\My Pictures
2011-10-01 13:10 - 2011-10-01 13:10 - 0000000 __SHD C:\Users\nazam\Documents\My Music
2011-10-01 13:10 - 2011-10-01 13:10 - 0000000 __SHD C:\Users\nazam\AppData\Local\Temporary Internet Files
2011-10-01 13:10 - 2011-10-01 13:10 - 0000000 __SHD C:\Users\nazam\AppData\Local\History
2011-09-30 23:37 - 2011-09-30 23:37 - 0418816 ____A C:\Users\Sony\Downloads\Model-CV-Teacher-2011-1030.doc
2011-09-30 23:34 - 2011-09-30 23:34 - 0355840 ____A C:\Users\Sony\Downloads\asset856.doc
2011-09-30 23:00 - 2011-09-30 23:00 - 0095744 ____A C:\Users\Sony\Downloads\Application Form.doc
2011-09-30 23:00 - 2011-09-30 23:00 - 0025600 ____A C:\Users\Sony\Downloads\Access to Children.doc
2011-09-30 22:58 - 2011-09-30 22:58 - 0050688 ____A C:\Users\Sony\Downloads\teacher lev.doc
2011-09-30 22:56 - 2011-09-30 22:56 - 0098816 ____A C:\Users\Sony\Downloads\Mathematics4-2010.doc
2011-09-29 12:25 - 2009-07-14 05:08 - 0032608 ____A C:\Windows\Tasks\SCHEDLGU.TXT
2011-09-28 19:21 - 2009-08-20 22:07 - 0434632 ____A C:\Windows\PFRO.log
2011-09-28 12:39 - 2011-09-28 12:39 - 0115712 ____A C:\Users\Sony\Downloads\oakbank application form.doc
2011-09-27 19:10 - 2011-09-27 19:10 - 6284664 ____A (Microsoft Corporation) C:\Users\Sony\Downloads\Silverlight.exe
2011-09-27 17:30 - 2011-09-27 17:30 - 0604488 ____A (Google Inc.) C:\Users\Sony\Downloads\ChromeSetup.exe
2011-09-27 17:24 - 2011-08-27 13:42 - 0000000 ____D C:\Users\Sony\Downloads\EYE - Snowdonia_files
2011-09-27 17:24 - 2011-08-21 23:13 - 0000000 ____D C:\Users\Sony\Downloads\Skyline.2010.R5.Studio-Audio.Xvid {1337x)-Noir
2011-09-27 17:24 - 2011-08-21 22:54 - 0000000 ____D C:\Users\Sony\Downloads\Legend Of The Guardians.2010.DvdRip.Xvid {1337x}-Noir
2011-09-27 17:24 - 2011-08-14 11:07 - 0000000 ____D C:\Users\Sony\Downloads\Source.Code.2011.HDRip.R3.Xvid {1337x}-Noir
2011-09-27 17:24 - 2011-08-14 10:43 - 0000000 ____D C:\Users\Sony\Downloads\Source Code (2011) DVDRip XviD-MAXSPEED
2011-09-27 17:24 - 2011-08-13 21:17 - 0000000 ____D C:\Users\Sony\Downloads\Harry Potter and the Deathly Hallows Part 2 2011 TS UnKnOwN
2011-09-27 17:24 - 2011-08-12 22:34 - 0000000 ____D C:\Users\Sony\Downloads\Harry.Potter.7.2010.BRRip.Xvid {1337x}-Noir
2011-09-27 17:24 - 2011-08-06 16:42 - 0000000 ____D C:\Users\Sony\Downloads\Harry.Potter.6.Half.Blood.Prince.CAM.XviD.EngAudio-androme
2011-09-27 17:24 - 2011-07-30 22:04 - 0000000 ____D C:\Users\Sony\Downloads\FAST FIVE 2011 TS XVID-WBZ
2011-09-27 17:24 - 2011-07-30 21:53 - 0000000 ____D C:\Users\Sony\Downloads\Pirates of the Caribbean 4 2011 XViD- MEM
2011-09-27 17:24 - 2011-07-30 18:41 - 0000000 ____D C:\Users\Sony\Downloads\Limitless.2011.R5.LiNE.XviD.READ.NFO {1337x}-Blackjesus
2011-09-27 17:24 - 2011-07-30 18:16 - 0000000 ____D C:\Users\Sony\Downloads\Harry.Potter.Years.1-5.Box.Set[2007]DvDrip-aXXo
2011-09-27 17:24 - 2011-07-30 18:11 - 0000000 ____D C:\Users\Sony\Downloads\Max.Payne[2008][Unrated.Edition]DvDrip-aXXo
2011-09-27 17:24 - 2011-07-24 16:44 - 0000000 ____D C:\Users\Sony\Downloads\Priest.2011.R5.LiNE.XviD.AbSurdiTy
2011-09-27 17:24 - 2011-07-01 22:21 - 0000000 ____D C:\Users\All Users\Promethean
2011-09-27 17:24 - 2011-07-01 22:21 - 0000000 ____D C:\ProgramData\Promethean
2011-09-27 17:24 - 2011-07-01 21:41 - 0000000 ____D C:\Users\Sony\Downloads\Transformers 3 Dark of the Moon 2011 SCAM MPG HINDI ICTV
2011-09-27 17:24 - 2011-06-19 15:11 - 0000000 ____D C:\Users\Sony\Downloads\X-Men.First.Class.2011.TS.V2.XViD-EP1C.[UsaBit.com]
2011-09-27 17:24 - 2011-06-19 11:42 - 0000000 ____D C:\Users\Sony\Downloads\The.Green.Hornet.2011.BRRip.Xvid {1337x}-Noir
2011-09-27 17:24 - 2011-05-31 23:48 - 0000000 ____D C:\Users\Sony\Downloads\km4i1ktaafluk
2011-09-27 17:24 - 2011-05-26 21:13 - 0000000 ____D C:\Users\Sony\AppData\Roaming\PTU
2011-09-27 17:24 - 2011-03-22 00:31 - 0000000 ____D C:\Users\Sony\Desktop\Final Presentation
2011-09-27 17:24 - 2011-03-21 15:46 - 0000000 ____D C:\Users\Sony\Desktop\Saleena
2011-09-27 17:24 - 2011-01-21 13:38 - 0000000 ____D C:\Users\Sony\Citrix
2011-09-27 17:24 - 2010-12-11 22:18 - 0000000 ____D C:\Users\Sony\Downloads\Ninja Assassin {2009} DVDRIP. Jaybob
2011-09-27 17:24 - 2010-11-21 16:36 - 0000000 ____D C:\Users\Sony\AppData\Local\Microsoft Help
2011-09-27 17:24 - 2010-11-06 03:16 - 0000000 ____D C:\Users\All Users\Norton
2011-09-27 17:24 - 2010-11-06 03:16 - 0000000 ____D C:\ProgramData\Norton
2011-09-27 17:24 - 2010-11-05 23:59 - 0000000 ____D C:\Users\Sony\AppData\Roaming\vlc
2011-09-27 17:24 - 2010-09-15 16:42 - 0000000 ____D C:\Program Files\Google
2011-09-27 17:24 - 2010-09-15 09:21 - 0000000 ____D C:\Users\Sony\AppData\Roaming\Sony Corporation
2011-09-27 17:23 - 2010-09-15 16:42 - 0000000 ____D C:\Program Files (x86)\Google
2011-09-27 17:22 - 2011-09-27 17:22 - 0038912 ____A C:\Windows\System32\jqroty.exe
2011-09-27 17:17 - 2011-07-01 22:21 - 0000000 ____D C:\Users\Sony\AppData\Roaming\ACTIV Software
2011-09-27 17:17 - 2011-05-21 23:12 - 0000000 ____D C:\Users\Sony\AppData\Roaming\Real
2011-09-27 17:17 - 2010-10-25 21:56 - 0000000 ____D C:\Users\Sony\Downloads\PC Drivers HeadQuarters
2011-09-27 17:17 - 2010-10-01 21:08 - 0000000 ____D C:\Users\Sony\AppData\Roaming\SUPERAntiSpyware.com
2011-09-27 17:17 - 2010-09-30 21:37 - 0000000 ____D C:\Users\Sony\AppData\Roaming\Trusteer
2011-09-27 17:17 - 2010-09-29 15:32 - 0000000 ____D C:\Users\Sony\AppData\Roaming\Adobe
2011-09-27 17:15 - 2011-06-04 15:03 - 0000000 ____D C:\Users\Sony\AppData\Local\HP
2011-09-27 17:15 - 2010-10-06 22:17 - 0000000 ____D C:\Users\Sony\AppData\Local\Microsoft Games
2011-09-27 17:15 - 2010-09-29 15:18 - 0000000 ____D C:\Users\Sony\AppData\Local\Google
2011-09-27 17:14 - 2010-10-09 14:26 - 0000000 ____D C:\Users\Sony\AppData\Local\Adobe
2011-09-27 17:14 - 2010-09-29 15:34 - 0000000 ____D C:\Users\Sony\AppData\Local\Apps\2.0
2011-09-27 17:14 - 2010-09-15 16:42 - 0000000 ____D C:\Users\All Users\Google
2011-09-27 17:14 - 2010-09-15 16:42 - 0000000 ____D C:\ProgramData\Google
2011-09-27 11:56 - 2011-10-01 13:10 - 0000000 ____D C:\Users\nazam\AppData\Local\Trusteer
2011-09-27 11:56 - 2011-09-27 11:56 - 0000000 ____D C:\Users\Default\AppData\Local\Trusteer
2011-09-27 11:56 - 2011-09-27 11:56 - 0000000 ____D C:\Users\Default User\AppData\Local\Trusteer
2011-09-25 10:15 - 2011-08-18 22:03 - 0000000 ___HD C:\Users\Sony\Downloads\MATHS 1
2011-09-24 23:18 - 2010-09-29 15:50 - 0000000 ____D C:\Users\Sony\AppData\Local\ElevatedDiagnostics
2011-09-24 22:46 - 2011-09-24 22:46 - 14842972 ____A C:\Users\Sony\Downloads\MATHS 1.zip
2011-09-24 22:46 - 2011-09-24 22:46 - 14222682 ____A C:\Users\Sony\Downloads\MATHS LESSONS A30.zip
2011-09-24 22:38 - 2011-09-24 22:38 - 20724928 ____A C:\Users\Sony\Downloads\MATHS POWERPOINT FILES.zip
2011-09-24 22:38 - 2011-09-24 22:38 - 15789879 ____A C:\Users\Sony\Downloads\MATHS ZIP FILES.zip
2011-09-24 22:28 - 2010-10-23 23:08 - 0000000 ____D C:\nazam work
2011-09-24 22:26 - 2011-09-24 21:48 - 0000000 ____D C:\Users\Sony\Downloads\MOVIES
2011-09-24 17:11 - 2011-09-24 17:08 - 0000440 ____A C:\Users\All Users\6DSS92c31Apgjk
2011-09-24 17:11 - 2011-09-24 17:08 - 0000440 ____A C:\ProgramData\6DSS92c31Apgjk
2011-09-24 09:41 - 2011-09-24 09:41 - 0030720 ___AH C:\Users\Sony\Downloads\humanities.doc
2011-09-23 23:18 - 2011-09-23 23:18 - 0747676 ___AH C:\Users\Sony\Downloads\ac3filter_1-11.zip
2011-09-21 15:37 - 2011-09-21 15:19 - 0011854 ____A C:\Users\Public\Documents\Use the space below to show you have the skills.docx
2011-09-20 06:40 - 2011-07-01 22:24 - 0011456 ___AH C:\Users\Sony\ACTIVstudioError.log
2011-09-17 11:49 - 2011-09-18 15:40 - 1090689788 ___AH C:\Users\Sony\Desktop\Pirates Of The Caribbean On Stranger Tides {2011} DVDRIP. Jaybob .avi
2011-09-16 11:21 - 2011-09-16 11:21 - 0010630 ____A C:\Users\Public\Documents\I have done three placements during my PGCE.docx
2011-09-15 22:50 - 2011-09-15 22:50 - 0038098 ____A C:\Users\Public\Documents\home work technology.docx
2011-09-12 13:10 - 2011-09-12 13:10 - 0010401 ____A C:\Users\Public\Documents\14 Beech grove offer allsop.docx
2011-09-09 20:20 - 2011-09-09 19:29 - 0190285 ____A C:\Users\Public\Documents\Anisha homework ict.docx
2011-09-09 19:59 - 2011-09-09 19:59 - 0096050 ____A C:\Users\Public\Documents\Anisha homework re.docx
2011-09-09 17:08 - 2011-09-09 17:08 - 0000000 ____D C:\PFiles
2011-09-06 15:23 - 2011-09-06 15:23 - 0000090 ___AH C:\Users\Sony\AppData\Roaming\wklnhst.dat
2011-09-06 15:23 - 2011-09-06 15:23 - 0000000 ___HD C:\Users\Sony\AppData\Roaming\Template
2011-09-06 15:22 - 2011-09-06 15:22 - 0010752 ___AH C:\Users\Sony\Downloads\comp stat.xlr
2011-08-29 20:41 - 2011-08-29 18:09 - 0000446 ___AH C:\Windows\Tasks\Norton Security Scan for Sony.job
2011-08-29 19:40 - 2009-07-14 03:20 - 0000000 ____D C:\Windows\rescache
2011-08-29 18:09 - 2011-08-29 18:09 - 0001339 ____A C:\Users\Public\Desktop\Norton Security Scan.lnk
2011-08-29 18:09 - 2011-08-29 18:09 - 0000000 ____D C:\Windows\System32\Drivers\NSSx64
2011-08-29 18:09 - 2011-08-29 18:09 - 0000000 ____D C:\Program Files (x86)\NortonInstaller
2011-08-29 18:09 - 2011-08-29 18:09 - 0000000 ____D C:\Program Files (x86)\Norton Security Scan
2011-08-29 13:11 - 2010-10-25 21:31 - 0000000 ____D C:\Windows\SysWOW64\Adobe
2011-08-29 13:11 - 2009-07-14 05:32 - 0000000 ____D C:\Windows\Downloaded Program Files
2011-08-25 14:15 - 2011-08-25 14:15 - 0000000 ____D C:\Program Files (x86)\MindDabble_4p
2011-08-25 14:14 - 2011-08-25 14:14 - 0000000 ____D C:\Program Files (x86)\MindDabble_4pEI
2011-08-21 09:00 - 2011-02-22 20:15 - 0064272 ____A (Trusteer Ltd.) C:\Windows\System32\Drivers\RapportKE64.sys
2011-08-11 16:18 - 2010-09-15 16:47 - 0000000 ____D C:\Users\All Users\Microsoft Help
2011-08-11 16:18 - 2010-09-15 16:47 - 0000000 ____D C:\ProgramData\Microsoft Help
2011-08-11 16:15 - 2010-10-01 20:19 - 54065608 ____A (Microsoft Corporation) C:\Windows\System32\MRT.exe
2011-08-07 13:37 - 2011-08-07 13:37 - 0000991 ____A C:\Users\Sony\Desktop\SopCast.lnk
2011-08-07 13:37 - 2011-08-07 13:37 - 0000000 ____D C:\Program Files (x86)\SopCast
2011-08-07 13:35 - 2011-08-07 13:35 - 5944736 ____A C:\Users\Sony\Downloads\Setup-SopCast-3.4.0-2011-6-9.exe
2011-08-05 17:54 - 2011-08-05 17:54 - 0000000 ___AH C:\Users\Sony\AppData\Local\BITD0E6.tmp
2011-08-05 17:54 - 2011-08-05 17:54 - 0000000 ___AH C:\Users\Sony\AppData\Local\{2A3477CF-7293-47A6-8701-8AB5E6D3C559}
2011-07-28 13:53 - 2011-07-28 13:53 - 0113664 ___AH C:\Users\Sony\Downloads\pre reg docs.doc
2011-07-24 18:36 - 2011-07-24 10:44 - 0000000 ___HD C:\Users\Sony\Downloads\The.Warriors.Way.2010.BDRip.XviD-7o9
2011-07-22 07:34 - 2011-08-11 11:55 - 9322496 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2011-07-22 06:38 - 2011-08-11 11:55 - 5989376 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2011-07-22 05:35 - 2011-08-11 11:55 - 1638912 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2011-07-22 04:56 - 2011-08-11 11:55 - 1638912 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2011-07-20 11:15 - 2010-09-15 17:05 - 0000000 ____D C:\Documentation
2011-07-16 05:26 - 2011-08-11 11:55 - 0362496 ____A (Microsoft Corporation) C:\Windows\System32\wow64win.dll
2011-07-16 05:26 - 2011-08-11 11:55 - 0243200 ____A (Microsoft Corporation) C:\Windows\System32\wow64.dll
2011-07-16 05:26 - 2011-08-11 11:55 - 0214528 ____A (Microsoft Corporation) C:\Windows\System32\winsrv.dll
2011-07-16 05:26 - 2011-08-11 11:55 - 0013312 ____A (Microsoft Corporation) C:\Windows\System32\wow64cpu.dll
2011-07-16 05:24 - 2011-08-11 11:55 - 0016384 ____A (Microsoft Corporation) C:\Windows\System32\ntvdm64.dll
2011-07-16 05:21 - 2011-08-11 11:55 - 1162240 ____A (Microsoft Corporation) C:\Windows\System32\kernel32.dll
2011-07-16 05:21 - 2011-08-11 11:55 - 0422400 ____A (Microsoft Corporation) C:\Windows\System32\KernelBase.dll
2011-07-16 05:17 - 2011-08-11 11:55 - 0338432 ____A (Microsoft Corporation) C:\Windows\System32\conhost.exe
2011-07-16 05:04 - 2011-08-11 11:55 - 0006144 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-security-base-l1-1-0.dll
2011-07-16 05:04 - 2011-08-11 11:55 - 0005120 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-file-l1-1-0.dll
2011-07-16 05:04 - 2011-08-11 11:55 - 0004608 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-threadpool-l1-1-0.dll
2011-07-16 05:04 - 2011-08-11 11:55 - 0004608 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-processthreads-l1-1-0.dll
2011-07-16 05:04 - 2011-08-11 11:55 - 0004096 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-sysinfo-l1-1-0.dll
2011-07-16 05:04 - 2011-08-11 11:55 - 0004096 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-synch-l1-1-0.dll
2011-07-16 05:04 - 2011-08-11 11:55 - 0004096 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-localregistry-l1-1-0.dll
2011-07-16 05:04 - 2011-08-11 11:55 - 0004096 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-localization-l1-1-0.dll
2011-07-16 05:04 - 2011-08-11 11:55 - 0003584 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-rtlsupport-l1-1-0.dll
2011-07-16 05:04 - 2011-08-11 11:55 - 0003584 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-processenvironment-l1-1-0.dll
2011-07-16 05:04 - 2011-08-11 11:55 - 0003584 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-namedpipe-l1-1-0.dll
2011-07-16 05:04 - 2011-08-11 11:55 - 0003584 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-misc-l1-1-0.dll
2011-07-16 05:04 - 2011-08-11 11:55 - 0003584 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-memory-l1-1-0.dll
2011-07-16 05:04 - 2011-08-11 11:55 - 0003584 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
2011-07-16 05:04 - 2011-08-11 11:55 - 0003584 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-heap-l1-1-0.dll
2011-07-16 05:04 - 2011-08-11 11:55 - 0003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-xstate-l1-1-0.dll
2011-07-16 05:04 - 2011-08-11 11:55 - 0003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-util-l1-1-0.dll
2011-07-16 05:04 - 2011-08-11 11:55 - 0003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-string-l1-1-0.dll
2011-07-16 05:04 - 2011-08-11 11:55 - 0003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-profile-l1-1-0.dll
2011-07-16 05:04 - 2011-08-11 11:55 - 0003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-io-l1-1-0.dll
2011-07-16 05:04 - 2011-08-11 11:55 - 0003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-interlocked-l1-1-0.dll
2011-07-16 05:04 - 2011-08-11 11:55 - 0003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-handle-l1-1-0.dll
2011-07-16 05:04 - 2011-08-11 11:55 - 0003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-fibers-l1-1-0.dll
2011-07-16 05:04 - 2011-08-11 11:55 - 0003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-errorhandling-l1-1-0.dll
2011-07-16 05:04 - 2011-08-11 11:55 - 0003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-delayload-l1-1-0.dll
2011-07-16 05:04 - 2011-08-11 11:55 - 0003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-debug-l1-1-0.dll
2011-07-16 05:04 - 2011-08-11 11:55 - 0003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-datetime-l1-1-0.dll
2011-07-16 05:04 - 2011-08-11 11:55 - 0003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-console-l1-1-0.dll
2011-07-16 04:36 - 2011-08-11 11:55 - 0014336 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2011-07-16 04:31 - 2011-08-11 11:55 - 0025600 ____A (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2011-07-16 04:30 - 2011-08-11 11:55 - 1048576 ____A (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2011-07-16 04:30 - 2011-08-11 11:55 - 0272384 ____A (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2011-07-16 04:30 - 2011-08-11 11:55 - 0005120 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2011-07-16 04:19 - 2011-08-11 11:55 - 0005120 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2011-07-16 04:19 - 2011-08-11 11:55 - 0004608 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2011-07-16 04:19 - 2011-08-11 11:55 - 0004096 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2011-07-16 04:19 - 2011-08-11 11:55 - 0004096 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2011-07-16 04:19 - 2011-08-11 11:55 - 0004096 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2011-07-16 04:19 - 2011-08-11 11:55 - 0004096 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2011-07-16 04:19 - 2011-08-11 11:55 - 0004096 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2011-07-16 04:19 - 2011-08-11 11:55 - 0003584 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2011-07-16 04:19 - 2011-08-11 11:55 - 0003584 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2011-07-16 04:19 - 2011-08-11 11:55 - 0003584 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2011-07-16 04:19 - 2011-08-11 11:55 - 0003584 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2011-07-16 04:19 - 2011-08-11 11:55 - 0003584 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2011-07-16 04:19 - 2011-08-11 11:55 - 0003584 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2011-07-16 04:19 - 2011-08-11 11:55 - 0003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2011-07-16 04:19 - 2011-08-11 11:55 - 0003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2011-07-16 04:19 - 2011-08-11 11:55 - 0003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2011-07-16 04:19 - 2011-08-11 11:55 - 0003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2011-07-16 04:19 - 2011-08-11 11:55 - 0003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2011-07-16 04:19 - 2011-08-11 11:55 - 0003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2011-07-16 04:19 - 2011-08-11 11:55 - 0003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2011-07-16 04:19 - 2011-08-11 11:55 - 0003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2011-07-16 04:19 - 2011-08-11 11:55 - 0003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2011-07-16 04:19 - 2011-08-11 11:55 - 0003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2011-07-16 04:19 - 2011-08-11 11:55 - 0003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2011-07-16 02:26 - 2011-08-11 11:55 - 0007680 ____A (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2011-07-16 02:26 - 2011-08-11 11:55 - 0002048 ____A (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2011-07-16 02:21 - 2011-08-11 11:55 - 0006144 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2011-07-16 02:21 - 2011-08-11 11:55 - 0004608 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2011-07-16 02:21 - 2011-08-11 11:55 - 0003584 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2011-07-16 02:21 - 2011-08-11 11:55 - 0003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2011-07-15 13:16 - 2011-07-15 13:11 - 0000000 ___HD C:\Users\Sony\Desktop\memory stick
2011-07-14 11:52 - 2009-07-14 04:45 - 0450112 ____A C:\Windows\System32\FNTCACHE.DAT

========================= Known DLLs (Whitelisted) ============


========================= Bamital & volsnap Check ============

C:\Windows\System32\winlogon.exe => MD5 is legit

C:\Windows\System32\wininit.exe => MD5 is legit

C:\Windows\explorer.exe => MD5 is legit

C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

========================= Memory info ======================

Percentage of memory in use: 15%
Total physical RAM: 4063.03 MB
Available physical RAM: 3439.92 MB
Total Pagefile: 4061.18 MB
Available Pagefile: 3422.88 MB
Total Virtual: 8192 MB
Available Virtual: 8191.9 MB

======================= Partitions =========================

1 Drive c: () (Fixed) (Total:453.59 GB) (Free:330.45 GB) NTFS
2 Drive e: (Recovery) (Fixed) (Total:12.07 GB) (Free:0.81 GB) NTFS
4 Drive g: () (Removable) (Total:1.87 GB) (Free:1.21 GB) FAT
5 Drive x: (Boot) (Fixed) (Total:0.03 GB) (Free:0.03 GB) NTFS
6 Drive y: (System Reserved) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS

==========================================================

Last Boot: 2011-10-02 14:21

======================= End Of Log ==========================

#10 JSntgRvr

JSntgRvr

    Master Surgeon General


  • Malware Response Team
  • 11,545 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto Rico
  • Local time:12:39 AM

Posted 10 October 2011 - 09:47 PM

Hitman Pro is unable to handle MBR infections. Lets take a look at the MBR.

Download MBRFix from here.

Save and extract its contents to the desktop of the working computer. From the files in the MBRFix folder, just copy the MBRFix64.exe to the USB drive.

Please also download the enclosed file and save it to the USB drive:

Insert the USB drive into the ailing computer.

Run FRST64 as you did before, except that this time around, press the Fix button just once and wait.

The tool will make a log on the flashdrive (Fixlog.txt) please post it to your reply. It will also produce another report, MBRDUMP.txt. This last file must be attached to your reply as it is a hex file.

No request for help throughout private messaging will be attended.

If I have helped you, consider making a donation to help me continue the fight against Malware!
btn_donate_SM.gif


#11 saika21

saika21
  • Topic Starter

  • Members
  • 36 posts
  • OFFLINE
  •  
  • Local time:11:39 PM

Posted 11 October 2011 - 04:37 PM

Hi, the log from the Fixlog.txt is:

Fix result of Farbars's Recovery Tool (FRST written by farbar version 2.2.3)
Ran by SYSTEM at 2011-10-11 22:31:22 R:1
Running from G:\

==============================================


========= G:\MbrFix64 /drive 0 savembr G:\MBRDUMP.txt =========


========= End of CMD: =========


==== End of Fixlog ====

I have also attached the MBRDUMP.txt. Thanks

Attached Files



#12 JSntgRvr

JSntgRvr

    Master Surgeon General


  • Malware Response Team
  • 11,545 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto Rico
  • Local time:12:39 AM

Posted 11 October 2011 - 06:32 PM

Lets try this fix:

Please download the enclosed file and save it to the USB drive overwriting the existing one:

Insert the USB drive into the ailing computer.

Run FRST64 as you did before, except that this time around, press the Fix button just once and wait.

The tool will make a log on the flashdrive (Fixlog.txt) please post it to your reply.

If successful, attempt to boot in Normal mode.

No request for help throughout private messaging will be attended.

If I have helped you, consider making a donation to help me continue the fight against Malware!
btn_donate_SM.gif


#13 saika21

saika21
  • Topic Starter

  • Members
  • 36 posts
  • OFFLINE
  •  
  • Local time:11:39 PM

Posted 12 October 2011 - 03:01 AM

Hi, thank you very much for your help, it has worked, the computer loads up normally now. The information of the log is shown below:

Fix result of Farbars's Recovery Tool (FRST written by farbar version 2.2.3)
Ran by SYSTEM at 2011-10-12 08:40:46 R:2
Running from G:\

==============================================


========= bootrec /FixMbr =========

˙ūT h e o p e r a t i o n c o m p l e t e d s u c c e s s f u l l y .

========= End of CMD: =========


========= bcdedit /set {default} winpe no =========

The operation completed successfully.

========= End of CMD: =========


=========== Control: ===========

The operation completed successfully.

==== End of Control: ====

==== End of Fixlog ====


Has the all the virus/malware been removed from the computer or will i need to do another scan? Can you recommend any good virus/malware scanner?

thank you again very appreciated.

#14 JSntgRvr

JSntgRvr

    Master Surgeon General


  • Malware Response Team
  • 11,545 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto Rico
  • Local time:12:39 AM

Posted 12 October 2011 - 12:15 PM

Lets first check the system.

Please download ComboFix from Here or Here to your Desktop.

**Note: In the event you already have Combofix, this is a new version that I need you to download. It is important that it is saved directly to your desktop**
  • Please, never rename Combofix unless instructed.
  • Close any open browsers.
  • Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.

    -----------------------------------------------------------

    • Very Important! Temporarily disable your anti-virus, script blocking and any anti-malware real-time protection before performing a scan. They can interfere with ComboFix or remove some of its embedded files which may cause "unpredictable results".
    • Click on this link or this link to see a list of programs that should be disabled. The list is not all inclusive. If yours is not listed and you don't know how to disable it, please ask.

      If AVG or CA Internet Security Suite is installed, you must remove these programs before using Combofix. If any of these applications will not uninstall, it is first recommended to uninstall it with AppRemover by Opswat. http://www.appremover.com/supported-applications. Do not use AppRemover on Norton

      -----------------------------------------------------------

    • Close any open browsers.
    • WARNING: Combofix will disconnect your machine from the Internet as soon as it starts
    • Please do not attempt to re-connect your machine back to the Internet until Combofix has completely finished.
    • If there is no internet connection after running Combofix, then restart your computer to restore back your connection.

    -----------------------------------------------------------

  • Double click on combofix.exe & follow the prompts.
  • Install the Recovery Console if prompted.
  • When finished, it will produce a report for you.
  • Please post the "C:\ComboFix.txt" .
**Note: Do not mouseclick combofix's window while it's running. That may cause it to stall**

Note: ComboFix may reset a number of Internet Explorer's settings, including making it the default browser.
Note: Combofix prevents autorun of ALL CDs, floppies and USB devices to assist with malware removal & increase security.

Please do not install any new programs or update anything (always allow your antivirus/antispyware to update) unless told to do so while we are fixing your problem. If combofix alerts to a new version and offers to update, please let it. It is essential we always use the latest version.

No request for help throughout private messaging will be attended.

If I have helped you, consider making a donation to help me continue the fight against Malware!
btn_donate_SM.gif


#15 saika21

saika21
  • Topic Starter

  • Members
  • 36 posts
  • OFFLINE
  •  
  • Local time:11:39 PM

Posted 13 October 2011 - 11:34 AM

Hi, the combofix.txt as requested


ComboFix 11-10-13.01 - Sony 13/10/2011 7:38.1.2 - x64
Microsoft Windows 7 Home Premium 6.1.7600.0.1252.44.1033.18.4063.2901 [GMT 1:00]
Running from: c:\users\Sony\Desktop\ComboFix.exe
AV: McAfee Anti-Virus and Anti-Spyware *Disabled/Updated* {86355677-4064-3EA7-ABB3-1B136EB04637}
FW: McAfee Firewall *Disabled* {BE0ED752-0A0B-3FFF-80EC-B2269063014C}
SP: McAfee Anti-Virus and Anti-Spyware *Disabled/Updated* {3D54B793-665E-3129-9103-206115370C8A}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Resident AV is active
.
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\Sony\AppData\Local\MindDabble Installer(0001fac2).exe
c:\users\Sony\AppData\Local\MindDabble Installer(0015ba78).exe
c:\users\Sony\AppData\Roaming\.#
.
.
((((((((((((((((((((((((( Files Created from 2011-09-13 to 2011-10-13 )))))))))))))))))))))))))))))))
.
.
2011-10-13 06:50 . 2011-10-13 06:50 -------- d-----w- c:\users\Default\AppData\Local\temp
2011-10-10 12:18 . 2011-10-10 12:19 -------- d-----w- C:\FRST
2011-10-09 11:26 . 2011-10-09 13:01 -------- d-----w- c:\programdata\Hitman Pro
2011-10-02 19:30 . 2011-10-02 19:30 -------- d-----w- c:\windows\Sun
2011-10-02 19:29 . 2011-10-02 19:29 -------- d-----w- c:\programdata\Ask
2011-10-01 13:10 . 2011-10-11 23:29 -------- d-----w- c:\users\nazam
2011-10-01 12:59 . 2011-10-11 23:28 -------- d-----w- c:\program files (x86)\Microsoft Silverlight
2011-09-27 17:22 . 2011-09-27 17:22 38912 ----a-w- c:\windows\system32\jqroty.exe
2011-09-27 11:56 . 2011-09-27 11:56 -------- d-----w- c:\users\Default\AppData\Local\Trusteer
2011-09-18 12:37 . 2011-09-18 12:37 -------- d-----w- c:\program files (x86)\Common Files\Symantec Shared
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-09-25 18:00 . 2011-02-22 20:15 64272 ----a-w- c:\windows\system32\drivers\RapportKE64.sys
2011-08-05 17:54 . 2011-08-05 17:54 0 ---ha-w- c:\users\Sony\AppData\Local\BITD0E6.tmp
2011-07-22 05:35 . 2011-08-11 11:55 1638912 ----a-w- c:\windows\system32\mshtml.tlb
2011-07-22 04:56 . 2011-08-11 11:55 1638912 ----a-w- c:\windows\SysWow64\mshtml.tlb
2011-07-16 05:26 . 2011-08-11 11:55 362496 ----a-w- c:\windows\system32\wow64win.dll
2011-07-16 05:26 . 2011-08-11 11:55 243200 ----a-w- c:\windows\system32\wow64.dll
2011-07-16 05:26 . 2011-08-11 11:55 13312 ----a-w- c:\windows\system32\wow64cpu.dll
2011-07-16 05:26 . 2011-08-11 11:55 214528 ----a-w- c:\windows\system32\winsrv.dll
2011-07-16 05:24 . 2011-08-11 11:55 16384 ----a-w- c:\windows\system32\ntvdm64.dll
2011-07-16 05:21 . 2011-08-11 11:55 422400 ----a-w- c:\windows\system32\KernelBase.dll
2011-07-16 05:17 . 2011-08-11 11:55 338432 ----a-w- c:\windows\system32\conhost.exe
2011-07-16 05:04 . 2011-08-11 11:55 3072 ---ha-w- c:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2011-07-16 05:04 . 2011-08-11 11:55 3072 ---ha-w- c:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2011-07-16 05:04 . 2011-08-11 11:55 5120 ---ha-w- c:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2011-07-16 05:04 . 2011-08-11 11:55 4608 ---ha-w- c:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2011-07-16 05:04 . 2011-08-11 11:55 4608 ---ha-w- c:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2011-07-16 05:04 . 2011-08-11 11:55 4096 ---ha-w- c:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2011-07-16 05:04 . 2011-08-11 11:55 4096 ---ha-w- c:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2011-07-16 05:04 . 2011-08-11 11:55 4096 ---ha-w- c:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2011-07-16 05:04 . 2011-08-11 11:55 3584 ---ha-w- c:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2011-07-16 05:04 . 2011-08-11 11:55 3584 ---ha-w- c:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2011-07-16 05:04 . 2011-08-11 11:55 3584 ---ha-w- c:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2011-07-16 05:04 . 2011-08-11 11:55 3584 ---ha-w- c:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2011-07-16 05:04 . 2011-08-11 11:55 3584 ---ha-w- c:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2011-07-16 05:04 . 2011-08-11 11:55 3584 ---ha-w- c:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2011-07-16 05:04 . 2011-08-11 11:55 3584 ---ha-w- c:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2011-07-16 05:04 . 2011-08-11 11:55 3072 ---ha-w- c:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2011-07-16 05:04 . 2011-08-11 11:55 3072 ---ha-w- c:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2011-07-16 05:04 . 2011-08-11 11:55 3072 ---ha-w- c:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2011-07-16 05:04 . 2011-08-11 11:55 3072 ---ha-w- c:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2011-07-16 05:04 . 2011-08-11 11:55 3072 ---ha-w- c:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2011-07-16 05:04 . 2011-08-11 11:55 3072 ---ha-w- c:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2011-07-16 05:04 . 2011-08-11 11:55 3072 ---ha-w- c:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2011-07-16 05:04 . 2011-08-11 11:55 3072 ---ha-w- c:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2011-07-16 05:04 . 2011-08-11 11:55 3072 ---ha-w- c:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2011-07-16 05:04 . 2011-08-11 11:55 3072 ---ha-w- c:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2011-07-16 05:04 . 2011-08-11 11:55 6144 ---ha-w- c:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2011-07-16 05:04 . 2011-08-11 11:55 4096 ---ha-w- c:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2011-07-16 05:04 . 2011-08-11 11:55 3072 ---ha-w- c:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2011-07-16 04:36 . 2011-08-11 11:55 14336 ----a-w- c:\windows\SysWow64\ntvdm64.dll
2011-07-16 04:32 . 2011-08-11 11:55 44032 ----a-w- c:\windows\apppatch\acwow64.dll
2011-07-16 04:31 . 2011-08-11 11:55 25600 ----a-w- c:\windows\SysWow64\setup16.exe
2011-07-16 04:30 . 2011-08-11 11:55 5120 ----a-w- c:\windows\SysWow64\wow32.dll
2011-07-16 04:30 . 2011-08-11 11:55 272384 ----a-w- c:\windows\SysWow64\KernelBase.dll
2011-07-16 04:19 . 2011-08-11 11:55 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-sysinfo-l1-1-0.dll
2011-07-16 04:19 . 2011-08-11 11:55 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-synch-l1-1-0.dll
2011-07-16 04:19 . 2011-08-11 11:55 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-heap-l1-1-0.dll
2011-07-16 04:19 . 2011-08-11 11:55 4608 ---ha-w- c:\windows\SysWow64\api-ms-win-core-processthreads-l1-1-0.dll
2011-07-16 04:19 . 2011-08-11 11:55 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-misc-l1-1-0.dll
2011-07-16 04:19 . 2011-08-11 11:55 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-localregistry-l1-1-0.dll
2011-07-16 04:19 . 2011-08-11 11:55 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-processenvironment-l1-1-0.dll
2011-07-16 04:19 . 2011-08-11 11:55 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-namedpipe-l1-1-0.dll
2011-07-16 04:19 . 2011-08-11 11:55 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-memory-l1-1-0.dll
2011-07-16 04:19 . 2011-08-11 11:55 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-libraryloader-l1-1-0.dll
2011-07-16 04:19 . 2011-08-11 11:55 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-interlocked-l1-1-0.dll
2011-07-16 04:19 . 2011-08-11 11:55 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-string-l1-1-0.dll
2011-07-16 04:19 . 2011-08-11 11:55 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-rtlsupport-l1-1-0.dll
2011-07-16 04:19 . 2011-08-11 11:55 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-profile-l1-1-0.dll
2011-07-16 04:19 . 2011-08-11 11:55 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-io-l1-1-0.dll
2011-07-16 04:19 . 2011-08-11 11:55 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-handle-l1-1-0.dll
2011-07-16 04:19 . 2011-08-11 11:55 5120 ---ha-w- c:\windows\SysWow64\api-ms-win-core-file-l1-1-0.dll
2011-07-16 04:19 . 2011-08-11 11:55 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-fibers-l1-1-0.dll
2011-07-16 04:19 . 2011-08-11 11:55 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-errorhandling-l1-1-0.dll
2011-07-16 04:19 . 2011-08-11 11:55 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-debug-l1-1-0.dll
2011-07-16 04:19 . 2011-08-11 11:55 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-datetime-l1-1-0.dll
2011-07-16 04:19 . 2011-08-11 11:55 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-delayload-l1-1-0.dll
2011-07-16 04:19 . 2011-08-11 11:55 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-localization-l1-1-0.dll
2011-07-16 04:19 . 2011-08-11 11:55 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-console-l1-1-0.dll
2011-07-16 02:26 . 2011-08-11 11:55 7680 ----a-w- c:\windows\SysWow64\instnm.exe
2011-07-16 02:26 . 2011-08-11 11:55 2048 ----a-w- c:\windows\SysWow64\user.exe
2011-07-16 02:21 . 2011-08-11 11:55 6144 ---ha-w- c:\windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
2011-07-16 02:21 . 2011-08-11 11:55 4608 ---ha-w- c:\windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
2011-07-16 02:21 . 2011-08-11 11:55 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
2011-07-16 02:21 . 2011-08-11 11:55 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{00000000-6E41-4FD3-8538-502F5495E5FC}"= "c:\program files (x86)\Ask.com\GenericAskToolbar.dll" [2011-05-17 1490312]
"{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}"= "c:\program files (x86)\uTorrentBar\tbuTor.dll" [2010-11-29 3908192]
"{22d1a59e-b36d-4802-addb-f09161eb2085}"= "c:\program files (x86)\MindDabble_4p\bar\1.bin\4pSrcAs.dll" [2011-08-25 62864]
.
[HKEY_CLASSES_ROOT\clsid\{00000000-6e41-4fd3-8538-502f5495e5fc}]
.
[HKEY_CLASSES_ROOT\clsid\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}]
.
[HKEY_CLASSES_ROOT\clsid\{22d1a59e-b36d-4802-addb-f09161eb2085}]
.
[HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}]
2010-11-29 15:26 3908192 ----a-w- c:\program files (x86)\ConduitEngine\ConduitEngine.dll
.
[HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}]
2010-11-29 15:26 3908192 ----a-w- c:\program files (x86)\uTorrentBar\tbuTor.dll
.
[HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
2011-05-17 12:29 1490312 ----a-w- c:\program files (x86)\Ask.com\GenericAskToolbar.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar]
"{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}"= "c:\program files (x86)\uTorrentBar\tbuTor.dll" [2010-11-29 3908192]
"{30F9B915-B755-4826-820B-08FBA6BD249D}"= "c:\program files (x86)\ConduitEngine\ConduitEngine.dll" [2010-11-29 3908192]
"{D4027C7F-154A-4066-A1AD-4243D8127440}"= "c:\program files (x86)\Ask.com\GenericAskToolbar.dll" [2011-05-17 1490312]
.
[HKEY_CLASSES_ROOT\clsid\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}]
.
[HKEY_CLASSES_ROOT\clsid\{30f9b915-b755-4826-820b-08fba6bd249d}]
.
[HKEY_CLASSES_ROOT\clsid\{d4027c7f-154a-4066-a1ad-4243d8127440}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd.1]
[HKEY_CLASSES_ROOT\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd]
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-07-14 1475072]
"swg"="c:\program files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2010-09-15 39408]
"msnmsgr"="c:\program files (x86)\Windows Live\Messenger\msnmsgr.exe" [2010-04-16 3872080]
"uTorrent"="c:\program files (x86)\uTorrent\uTorrent.exe" [2011-06-19 399736]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"ISBMgr.exe"="c:\program files (x86)\Sony\ISB Utility\ISBMgr.exe" [2009-05-26 317288]
"NortonOnlineBackupReminder"="c:\program files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe" [2009-06-18 538472]
"HP Software Update"="c:\program files (x86)\Hp\HP Software Update\HPWuSchd2.exe" [2010-06-09 49208]
"Microsoft Default Manager"="c:\program files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe" [2010-05-10 439568]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2011-06-06 937920]
"ApnUpdater"="c:\program files (x86)\Ask.com\Updater\Updater.exe" [2011-05-17 395144]
"MindDabble_4p Browser Plugin Loader"="c:\progra~2\MINDDA~2\bar\1.bin\4pbrmon.exe" [2011-08-25 30096]
"TkBellExe"="c:\program files (x86)\Real\RealPlayer\Update\realsched.exe" [2011-05-21 273544]
"SHTtray.exe"="c:\program files (x86)\Common Files\Sony Shared\SOHLib\SHTtray.exe" [2009-07-27 99624]
"mcui_exe"="c:\program files\McAfee.com\Agent\mcagent.exe" [2010-09-10 1484856]
"MarketingTools"="c:\program files (x86)\Sony\Marketing Tools\MarketingTools.exe" [2010-09-15 26624]
"HPUsageTrackingLEDM"="c:\program files (x86)\HP\HP UT LEDM\bin\hppusg.exe" [2009-08-04 30264]
"DivXUpdate"="c:\program files (x86)\DivX\DivX Update\DivXUpdate.exe" [2010-09-16 1164584]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2009-7-2 1079584]
identd.exe [2010-4-6 32768]
McAfee Security Scan Plus.lnk - c:\program files (x86)\McAfee Security Scan\2.0.181\SSScheduler.exe [2010-1-15 255536]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\VESWinlogon]
2009-07-01 18:49 98304 ----a-w- c:\windows\System32\VESWinlogon.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"mixer6"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
.
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R3 cfwids;McAfee Inc. cfwids;c:\windows\system32\drivers\cfwids.sys [x]
R3 mferkdet;McAfee Inc. mferkdet;c:\windows\system32\drivers\mferkdet.sys [x]
R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe [x]
R3 WSDPrintDevice;WSD Print Support via UMB;c:\windows\system32\DRIVERS\WSDPrint.sys [x]
R4 !SASCORE;SAS Core Service;c:\program files\SUPERAntiSpyware\SASCORE64.EXE [2010-06-29 128752]
R4 AdobeARMservice;Adobe Acrobat Update Service;c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2011-06-06 64952]
R4 gupdate;Google Update Service (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-09-29 135664]
R4 gupdatem;Google Update Service (gupdatem);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-09-29 135664]
R4 HP LaserJet Service;HP LaserJet Service;c:\program files (x86)\HP\HPLaserJetService\HPLaserJetService.exe [2009-06-24 136704]
R4 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service;c:\program files (x86)\McAfee\SiteAdvisor\McSACore.exe [2011-08-10 102608]
R4 McComponentHostService;McAfee Security Scan Component Host Service;c:\program files (x86)\McAfee Security Scan\2.0.181\McCHSvc.exe [2010-01-15 227232]
R4 McMPFSvc;McAfee Personal Firewall Service;c:\program files\Common Files\McAfee\McSvcHost\McSvHost.exe [2010-03-10 355440]
R4 McNaiAnn;McAfee VirusScan Announcer;c:\program files\Common Files\McAfee\McSvcHost\McSvHost.exe [2010-03-10 355440]
R4 mfefire;McAfee Firewall Core Service;c:\program files\Common Files\McAfee\SystemCore\\mfefire.exe [2010-08-24 245352]
R4 MindDabble_4pService;MindDabbleService;c:\progra~2\MINDDA~2\bar\1.bin\4pbarsvc.exe [2011-08-25 42504]
R4 Roxio UPnP Renderer 10;Roxio UPnP Renderer 10;c:\program files (x86)\Roxio\Digital Home 10\RoxioUPnPRenderer10.exe [2009-06-26 313840]
R4 Roxio Upnp Server 10;Roxio Upnp Server 10;c:\program files (x86)\Roxio\Digital Home 10\RoxioUpnpService10.exe [2009-06-26 362992]
R4 SOHCImp;VAIO Media plus Content Importer;c:\program files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe [2009-07-27 120104]
R4 SOHDBSvr;VAIO Media plus Database Manager;c:\program files (x86)\Common Files\Sony Shared\SOHLib\SOHDBSvr.exe [2009-07-27 70952]
R4 SOHDms;VAIO Media plus Digital Media Server;c:\program files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe [2009-07-27 427304]
R4 SOHDs;VAIO Media plus Device Searcher;c:\program files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe [2009-07-27 75048]
R4 SOHPlMgr;VAIO Media plus Playlist Manager;c:\program files (x86)\Common Files\Sony Shared\SOHLib\SOHPlMgr.exe [2009-07-27 91432]
R4 uCamMonitor;CamMonitor;c:\program files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe [2008-09-18 104960]
R4 VAIO Power Management;VAIO Power Management;c:\program files\Sony\VAIO Power Management\SPMService.exe [2009-07-16 411496]
R4 VCFw;VAIO Content Folder Watcher;c:\program files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [2009-07-22 642920]
R4 VcmIAlzMgr;VAIO Content Metadata Intelligent Analyzing Manager;c:\program files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe [2009-06-26 468264]
R4 VcmINSMgr;VAIO Content Metadata Intelligent Network Service Manager;c:\program files\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe [2009-06-26 357672]
R4 VcmXmlIfHelper;VAIO Content Metadata XML Interface;c:\program files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper64.exe [2009-06-18 110888]
R4 VSNService;VSNService;c:\program files\Sony\VAIO Smart Network\VSNService.exe [2009-08-13 522240]
R4 VUAgent;VUAgent;c:\program files\Sony\VAIO Update Common\VUAgent.exe [2011-09-23 1429608]
S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys [x]
S0 RapportKE64;RapportKE64;c:\windows\System32\Drivers\RapportKE64.sys [x]
S1 mfenlfk;McAfee NDIS Light Filter;c:\windows\system32\DRIVERS\mfenlfk.sys [x]
S1 mfewfpk;McAfee Inc. mfewfpk;c:\windows\system32\drivers\mfewfpk.sys [x]
S1 RapportCerberus_29574;RapportCerberus_29574;c:\programdata\Trusteer\Rapport\store\exts\RapportCerberus\29574\RapportCerberus64_29574.sys [2011-08-03 386128]
S1 RapportEI64;RapportEI64;c:\program files (x86)\Trusteer\Rapport\bin\x64\RapportEI64.sys [2011-09-25 55056]
S1 RapportPG64;RapportPG64;c:\program files (x86)\Trusteer\Rapport\bin\x64\RapportPG64.sys [2011-09-25 61712]
S1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\SASDIFSV64.SYS [2010-02-17 14920]
S1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL64.SYS [2010-02-17 12360]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x]
S2 mfevtp;McAfee Validation Trust Protection Service;c:\windows\system32\mfevtps.exe [x]
S2 RapportMgmtService;Rapport Management Service;c:\program files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe [2011-09-25 919352]
S2 regi;regi;c:\windows\system32\drivers\regi.sys [x]
S2 rimspci;rimspci;c:\windows\system32\DRIVERS\rimssne64.sys [x]
S2 risdsnpe;risdsnpe;c:\windows\system32\DRIVERS\risdsne64.sys [x]
S2 yksvc;Marvell Yukon Service;c:\windows\System32\svchost.exe [2009-07-14 27136]
S3 ArcSoftKsUFilter;ArcSoft Magic-I Visual Effect;c:\windows\system32\DRIVERS\ArcSoftKsUFilter.sys [x]
S3 btusbflt;Bluetooth USB Filter;c:\windows\system32\drivers\btusbflt.sys [x]
S3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys [x]
S3 mfefirek;McAfee Inc. mfefirek;c:\windows\system32\drivers\mfefirek.sys [x]
S3 netw5v64;Intel® Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit;c:\windows\system32\DRIVERS\netw5v64.sys [x]
S3 NVHDA;Service for NVIDIA High Definition Audio Driver;c:\windows\system32\drivers\nvhda64v.sys [x]
S3 SFEP;Sony Firmware Extension Parser;c:\windows\system32\DRIVERS\SFEP.sys [x]
S3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;c:\windows\system32\DRIVERS\yk62x64.sys [x]
.
.
--- Other Services/Drivers In Memory ---
.
*Deregistered* - mfeavfk01
.
Contents of the 'Scheduled Tasks' folder
.
2011-10-13 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-09-29 15:49]
.
2011-10-13 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-09-29 15:49]
.
2011-10-02 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1815345564-582429406-3232621267-1000Core.job
- c:\users\Sony\AppData\Local\Google\Update\GoogleUpdate.exe [2010-09-29 15:35]
.
2011-10-13 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1815345564-582429406-3232621267-1000UA.job
- c:\users\Sony\AppData\Local\Google\Update\GoogleUpdate.exe [2010-09-29 15:35]
.
2011-10-02 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1815345564-582429406-3232621267-1003Core.job
- c:\users\nazam\AppData\Local\Google\Update\GoogleUpdate.exe [2011-10-01 17:30]
.
2011-10-13 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1815345564-582429406-3232621267-1003UA.job
- c:\users\nazam\AppData\Local\Google\Update\GoogleUpdate.exe [2011-10-01 17:30]
.
2011-08-29 c:\windows\Tasks\Norton Security Scan for Sony.job
- c:\progra~2\NORTON~2\Engine\351~1.6\Nss.exe [2011-08-29 11:19]
.
.
--------- x86-64 -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IAAnotif"="c:\program files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2009-06-05 186904]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2009-07-28 16335392]
"ActivControl"="c:\program files\Activ Software\ActivDriver\ActivControl2x64.exe" [2010-12-17 1240944]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-08-20 171520]
"Skytel"="c:\program files\Realtek\Audio\HDA\Skytel.exe" [2009-07-24 1833504]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2009-07-24 7938080]
"PrnStatusMX"="c:\program files\Hewlett-Packard\PrnStatusMX\PrnStatusMX.exe" [2007-08-29 1238528]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"LoadAppInit_DLLs"=0x0
.
------- Supplementary Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.google.co.uk/
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = 172.25.*.*;<local>
uInternet Settings,ProxyServer = 172.25.111.200:3128
IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
IE: Google Sidewiki... - c:\program files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_70C5B381380DB17F.dll/cmsidewiki.html
IE: Send image to &Bluetooth Device... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: Send page to &Bluetooth Device... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
TCP: DhcpNameServer = 192.168.1.1
.
- - - - ORPHANS REMOVED - - - -
.
Wow6432Node-HKLM-Run-Adobe Reader Speed Launcher - c:\program files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe
WebBrowser-{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC} - (no file)
WebBrowser-{30F9B915-B755-4826-820B-08FBA6BD249D} - (no file)
WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe
AddRemove-Adobe Shockwave Player - c:\windows\system32\Adobe\Shockwave 11\uninstaller.exe
.
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10k_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10k_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10k.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.10"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10k.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10k.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10k.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\McAfee]
"SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,6d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Completion time: 2011-10-13 07:58:22
ComboFix-quarantined-files.txt 2011-10-13 06:58
.
Pre-Run: 354,249,703,424 bytes free
Post-Run: 363,047,006,208 bytes free
.
- - End Of File - - 3B53764F13992A4BC42B33BD3247E6A8

Does this mean the computer is free of viruses/malware? Thanks




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users