Google redirect. Hijacked?

Status
Not open for further replies.
(part 3)
========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://mail.google.com/mail/?shva=1#inbox
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,XMLHTTP_UUID_Default = 70 77 9B 04 AC A4 06 49 BD AE 6D B3 D1 3A 70 B2 [binary data]
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.startup.homepage: "http://mail.google.com/mail/?hl=en&zx=u06py5wpbe5w&shva=1#inbox|http://www.telegraph.co.uk/news/?source=refresh|http://www.timesonline.co.uk/tol/news/|http://www.thisiscornwall.co.uk/|http://bnp.org.uk/|http://www.google.co.uk/webhp?sourceid=navclient-ff|http://en.wikipedia.org/wiki/Main_Page|http://www.imdb.com/"
FF - prefs.js..extensions.enabledItems: {D4DD63FA-01E4-46a7-B6B1-EDAB7D6AD389}:0.9.6.5
FF - prefs.js..extensions.enabledItems: {3d7eb24f-2740-49df-8937-200b1cc08f8a}:1.5.11.2
FF - prefs.js..extensions.enabledItems: {3112ca9c-de6d-4884-a869-9855de68056c}:6.1.20091007W
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}:6.0.17
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: {8FFE139B-90A7-4460-A972-9D2738997F6D}:1.6.2
FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.5.5

FF - HKLM\software\mozilla\Firefox\Extensions\\FFToolbar@bitdefender.com: C:\Program Files\BitDefender\BitDefender 2009\FFToolbar\ [2009/10/26 20:18:04 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\Program Files\Real\RealPlayer\browserrecord\firefox\ext
FF - HKLM\software\mozilla\Firefox\Extensions\\jqs@sun.com: C:\Program Files\Java\jre6\lib\deploy\jqs\ff [2009/10/30 19:24:02 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.5\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2009/11/06 15:31:06 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.5\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2009/11/06 15:31:06 | 00,000,000 | ---D | M]

[2009/10/26 04:29:08 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Tony Collins\Application Data\Mozilla\Extensions
[2009/11/06 15:31:32 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Tony Collins\Application Data\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
[2009/11/03 14:31:18 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Tony Collins\Application Data\Mozilla\Extensions\mozswing@mozswing.org
[2009/11/06 14:56:26 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Tony Collins\Application Data\Mozilla\Firefox\Profiles\96seda8b.default\extensions
[2009/11/06 15:31:32 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Tony Collins\Application Data\Mozilla\Firefox\Profiles\alqhvz6q.default\extensions
[2009/11/06 20:23:16 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Tony Collins\Application Data\Mozilla\Firefox\Profiles\alqhvz6q.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}
[2009/11/06 15:58:28 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Tony Collins\Application Data\Mozilla\Firefox\Profiles\alqhvz6q.default\extensions\{3d7eb24f-2740-49df-8937-200b1cc08f8a}
[2009/11/06 15:58:26 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Tony Collins\Application Data\Mozilla\Firefox\Profiles\alqhvz6q.default\extensions\{8FFE139B-90A7-4460-A972-9D2738997F6D}
[2009/11/07 20:26:34 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Tony Collins\Application Data\Mozilla\Firefox\Profiles\alqhvz6q.default\extensions\{af5514fc-7603-4cec-9894-f07f3d8672a5}
[2009/11/06 15:58:28 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Tony Collins\Application Data\Mozilla\Firefox\Profiles\alqhvz6q.default\extensions\{D4DD63FA-01E4-46a7-B6B1-EDAB7D6AD389}
[2009/11/07 20:26:34 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Tony Collins\Application Data\Mozilla\Firefox\Profiles\alqhvz6q.default\extensions\staged-xpis
[2009/11/06 15:31:06 | 00,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2009/11/06 15:31:06 | 00,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2009/11/10 15:03:24 | 00,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}
[2009/11/03 03:28:04 | 00,023,512 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\browserdirprovider.dll
[2009/11/03 03:28:04 | 00,137,176 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\brwsrcmp.dll
[2009/11/12 20:03:10 | 00,065,536 | ---- | M] () -- C:\Program Files\Mozilla Firefox\components\FFComm.dll
[2009/11/03 03:28:04 | 00,064,984 | ---- | M] (mozilla.org) -- C:\Program Files\Mozilla Firefox\plugins\npnul32.dll
[2009/10/11 04:17:28 | 00,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeploytk.dll
[2009/11/03 01:42:02 | 00,001,538 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\amazon-en-GB.xml
[2009/11/03 01:42:02 | 00,002,193 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\answers.xml
[2009/11/03 01:42:02 | 00,000,947 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\chambers-en-GB.xml
[2009/11/03 01:42:02 | 00,001,534 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\creativecommons.xml
[2009/11/03 01:42:02 | 00,000,769 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\eBay-en-GB.xml
[2009/11/03 01:42:02 | 00,002,371 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\google.xml
[2009/11/03 01:42:02 | 00,001,178 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia.xml
[2009/11/03 01:42:02 | 00,000,831 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\yahoo-en-GB.xml
 
(part 4)
O1 HOSTS File: (734 bytes) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.3.4501.1418\swg.dll (Google Inc.)
O2 - BHO: (Google Dictionary Compression sdch) - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll (Google Inc.)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)
O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (BitDefender Toolbar) - {381FFDE8-2394-4f90-B10D-FC6124A40F8C} - C:\Program Files\BitDefender\BitDefender 2009\IEToolbar.dll (Bitdefender)
O3 - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O4 - HKLM..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe (ATI Technologies, Inc.)
O4 - HKLM..\Run: [BDAgent] C:\Program Files\BitDefender\BitDefender 2009\bdagent.exe (BitDefender S.R.L.)
O4 - HKLM..\Run: [BitDefender Antiphishing Helper] C:\Program Files\BitDefender\BitDefender 2009\IEShow.exe (BitDefender)
O4 - HKLM..\Run: [CtrlVol] C:\Program Files\Launch Manager\CtrlVol.exe (Wistron)
O4 - HKLM..\Run: [eRecoveryService] C:\WINDOWS\system32\Check.exe (acer Inc.)
O4 - HKLM..\Run: [LManager] C:\Program Files\Launch Manager\HotkeyApp.exe (Wistron)
O4 - HKLM..\Run: [LMgrOSD] C:\Program Files\Launch Manager\OSDCtrl.exe ()
O4 - HKLM..\Run: [PowerKey] C:\Program Files\Launch Manager\PowerKey.exe ()
O4 - HKLM..\Run: [preload] C:\WINDOWS\RUNXMLPL.EXE (Wistron)
O4 - HKLM..\Run: [QuickTime Task] C:\Program Files\QuickTime\QTTask.exe (Apple Inc.)
O4 - HKLM..\Run: [SoundMan] C:\WINDOWS\SOUNDMAN.EXE (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [StartupDelayer] C:\Program Files\r2 Studios\Startup Delayer\Startup Launcher GUI.exe (r2 studios)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre6\bin\jusched.exe (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Synaptics, Inc.)
O4 - HKLM..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe (Synaptics, Inc.)
O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Common Files\Real\Update_OB\realsched.exe (RealNetworks, Inc.)
O4 - HKLM..\Run: [Wbutton] C:\Program Files\Launch Manager\Wbutton.exe ()
O4 - HKCU..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
O4 - HKCU..\Run: [TClockEx] C:\Program Files\TClockEx\TCLOCKEX.EXE (Dale Nurden)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Infodelivery present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableRegistryTools = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\WINDOWS\System32\GPhotos.scr (Google Inc.)
O8 - Extra context menu item: E&xport to Microsoft Excel - C:\Program Files\Microsoft Office\OFFICE11\EXCEL.EXE (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Uninstall BitDefender Online Scanner - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe ()
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\OFFICE11\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\network diagnostic\xpnetdiag.exe (Microsoft Corporation)
O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
O15 - HKLM\..Trusted Domains: 1 domain(s) and sub-domain(s) not assigned to a zone.
O15 - HKCU\..Trusted Domains: 8 domain(s) and sub-domain(s) not assigned to a zone.
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} http://download.bitdefender.com/resources/scanner/sources/en/scan8/oscan8.cab (BDSCANONLINE Control)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1256584701857 (WUWebControl Class)
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab (OnlineScanner Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ipp - No CLSID value found
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp - No CLSID value found
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap {3D9F03FA-7A94-11D3-BE81-0050048385D1} - C:\Program Files\Common Files\Microsoft Shared\Web Components\10\OWC10.DLL (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - C:\Program Files\Common Files\Microsoft Shared\Web Components\11\OWC11.DLL (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807553E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE11\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\!SASWinLogon: DllName - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL (SUPERAntiSpyware.com)
O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O24 - Desktop Components:0 (My Current Home Page) - About:Home
O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL (SuperAdBlocker.com)
O31 - SafeBoot: AlternateShell - cmd.exe
 
(part 4)
O1 HOSTS File: (734 bytes) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.3.4501.1418\swg.dll (Google Inc.)
O2 - BHO: (Google Dictionary Compression sdch) - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll (Google Inc.)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)
O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (BitDefender Toolbar) - {381FFDE8-2394-4f90-B10D-FC6124A40F8C} - C:\Program Files\BitDefender\BitDefender 2009\IEToolbar.dll (Bitdefender)
O3 - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O4 - HKLM..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe (ATI Technologies, Inc.)
O4 - HKLM..\Run: [BDAgent] C:\Program Files\BitDefender\BitDefender 2009\bdagent.exe (BitDefender S.R.L.)
O4 - HKLM..\Run: [BitDefender Antiphishing Helper] C:\Program Files\BitDefender\BitDefender 2009\IEShow.exe (BitDefender)
O4 - HKLM..\Run: [CtrlVol] C:\Program Files\Launch Manager\CtrlVol.exe (Wistron)
O4 - HKLM..\Run: [eRecoveryService] C:\WINDOWS\system32\Check.exe (acer Inc.)
O4 - HKLM..\Run: [LManager] C:\Program Files\Launch Manager\HotkeyApp.exe (Wistron)
O4 - HKLM..\Run: [LMgrOSD] C:\Program Files\Launch Manager\OSDCtrl.exe ()
O4 - HKLM..\Run: [PowerKey] C:\Program Files\Launch Manager\PowerKey.exe ()
O4 - HKLM..\Run: [preload] C:\WINDOWS\RUNXMLPL.EXE (Wistron)
O4 - HKLM..\Run: [QuickTime Task] C:\Program Files\QuickTime\QTTask.exe (Apple Inc.)
O4 - HKLM..\Run: [SoundMan] C:\WINDOWS\SOUNDMAN.EXE (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [StartupDelayer] C:\Program Files\r2 Studios\Startup Delayer\Startup Launcher GUI.exe (r2 studios)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre6\bin\jusched.exe (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Synaptics, Inc.)
O4 - HKLM..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe (Synaptics, Inc.)
O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Common Files\Real\Update_OB\realsched.exe (RealNetworks, Inc.)
O4 - HKLM..\Run: [Wbutton] C:\Program Files\Launch Manager\Wbutton.exe ()
O4 - HKCU..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
O4 - HKCU..\Run: [TClockEx] C:\Program Files\TClockEx\TCLOCKEX.EXE (Dale Nurden)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Infodelivery present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableRegistryTools = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\WINDOWS\System32\GPhotos.scr (Google Inc.)
O8 - Extra context menu item: E&xport to Microsoft Excel - C:\Program Files\Microsoft Office\OFFICE11\EXCEL.EXE (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Uninstall BitDefender Online Scanner - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe ()
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\OFFICE11\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\network diagnostic\xpnetdiag.exe (Microsoft Corporation)
O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
O15 - HKLM\..Trusted Domains: 1 domain(s) and sub-domain(s) not assigned to a zone.
O15 - HKCU\..Trusted Domains: 8 domain(s) and sub-domain(s) not assigned to a zone.
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} http://download.bitdefender.com/resources/scanner/sources/en/scan8/oscan8.cab (BDSCANONLINE Control)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1256584701857 (WUWebControl Class)
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab (OnlineScanner Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ipp - No CLSID value found
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp - No CLSID value found
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap {3D9F03FA-7A94-11D3-BE81-0050048385D1} - C:\Program Files\Common Files\Microsoft Shared\Web Components\10\OWC10.DLL (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - C:\Program Files\Common Files\Microsoft Shared\Web Components\11\OWC11.DLL (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807553E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE11\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\!SASWinLogon: DllName - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL (SUPERAntiSpyware.com)
O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O24 - Desktop Components:0 (My Current Home Page) - About:Home
O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL (SuperAdBlocker.com)
O31 - SafeBoot: AlternateShell - cmd.exe
 
(part 5)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2003/05/30 12:56:16 | 00,000,047 | R--- | M] () - E:\autorun.inf -- [ CDFS ]
O34 - HKLM BootExecute: (autocheck) - File not found
O34 - HKLM BootExecute: (autochk) - C:\WINDOWS\System32\autochk.exe (Microsoft Corporation)
O34 - HKLM BootExecute: (*) - File not found
O34 - HKLM BootExecute: (lsdelete) - C:\WINDOWS\System32\lsdelete.exe ()
O35 - comfile [open] -- "%1" %* File not found
O35 - exefile [open] -- "%1" %* File not found

========== Files/Folders - Created Within 30 Days ==========

[2009/11/17 17:25:36 | 00,529,408 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Tony Collins\Desktop\OTL.exe
[2009/11/17 10:30:55 | 00,000,000 | ---D | C] -- C:\Avenger
[2009/11/14 21:39:44 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Tony Collins\Local Settings\Application Data\Identities
[2009/11/14 20:20:16 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Tony Collins\Desktop\gmer
[2009/11/13 10:45:21 | 00,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe
[2009/11/13 10:45:21 | 00,161,792 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe
[2009/11/13 10:45:21 | 00,136,704 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe
[2009/11/13 10:45:21 | 00,031,232 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe
[2009/11/13 10:44:38 | 00,000,000 | ---D | C] -- C:\Qoobox
[2009/11/11 20:53:24 | 00,000,000 | ---D | C] -- C:\Program Files\ESET
[2009/11/11 20:22:54 | 00,271,872 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Tony Collins\Desktop\TFC.exe
[2009/11/11 10:30:20 | 00,000,000 | ---D | C] -- C:\Program Files\Trend Micro
[2009/11/10 15:34:49 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Tony Collins\Application Data\Canon
[2009/11/10 15:03:21 | 00,149,280 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
[2009/11/10 15:03:21 | 00,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
[2009/11/10 15:03:21 | 00,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
[2009/11/10 00:18:49 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Tony Collins\My Documents\Drama
[2009/11/09 23:10:26 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Tony Collins\Application Data\Trusteer
[2009/11/09 23:10:15 | 00,000,000 | ---D | C] -- C:\Program Files\Trusteer
[2009/11/09 23:09:09 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Trusteer
[2009/11/07 21:36:03 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Tony Collins\Application Data\AdobeUM
[2009/11/07 21:35:46 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Tony Collins\Local Settings\Application Data\Adobe
[2009/11/07 21:35:39 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Tony Collins\My Documents\My eBooks
[2009/11/07 20:03:32 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Tony Collins\My Documents\CD Labels
[2009/11/07 16:23:29 | 00,226,816 | ---- | C] (honest technology) -- C:\WINDOWS\System32\htvcdsvcd70.ax
[2009/11/07 00:57:19 | 00,160,640 | ---- | C] ( ) -- C:\WINDOWS\System32\drivers\a347bus.sys
[2009/11/07 00:57:19 | 00,005,248 | ---- | C] ( ) -- C:\WINDOWS\System32\drivers\a347scsi.sys
[2009/11/06 20:26:15 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Tony Collins\Desktop\Scan results
[2009/11/06 15:31:04 | 00,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2009/11/05 21:27:33 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Tony Collins\Application Data\Cyberlink
[2009/11/05 20:08:52 | 00,000,000 | R--D | C] -- C:\Documents and Settings\Tony Collins\My Documents\My Pictures
[2009/11/05 17:39:00 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Tony Collins\My Documents\Downloads
[2009/11/05 00:27:10 | 00,000,000 | RHSD | C] -- C:\cmdcons
[2009/11/04 23:43:36 | 00,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2009/11/04 23:22:21 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Tony Collins\My Documents\PhoenixRC Demo
[2009/11/04 22:21:20 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Tony Collins\Application Data\IObit
[2009/11/04 22:21:19 | 00,000,000 | ---D | C] -- C:\Program Files\IObit
[2009/11/04 18:25:18 | 00,000,000 | RH-D | C] -- C:\Documents and Settings\Tony Collins\Recent
[2009/11/04 11:18:27 | 00,000,000 | ---D | C] -- C:\WINDOWS\Sun
[2009/11/04 11:18:26 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\SUPERAntiSpyware.com
[2009/11/04 10:40:00 | 00,000,000 | ---D | C] -- C:\Config.Msi
[2009/11/03 22:25:02 | 00,000,000 | ---D | C] -- C:\Program Files\SUPERAntiSpyware
[2009/11/03 22:25:02 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Tony Collins\Application Data\SUPERAntiSpyware.com
[2009/11/03 19:48:30 | 00,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2009/11/03 19:23:07 | 00,000,000 | ---D | C] -- C:\WINDOWS\pss
[2009/11/03 14:17:32 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Tony Collins\Incomplete
[2009/11/01 23:29:47 | 00,062,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xinput1_1.dll
 
(part 6)
[2009/11/01 23:29:46 | 00,229,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_1.dll
[2009/11/01 23:29:45 | 02,388,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_30.dll
[2009/11/01 23:29:44 | 00,230,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_0.dll
[2009/11/01 23:29:44 | 00,014,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\x3daudio1_0.dll
[2009/11/01 23:29:43 | 02,332,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_29.dll
[2009/11/01 23:29:43 | 02,323,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_28.dll
[2009/11/01 23:29:42 | 00,061,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xinput9_1_0.dll
[2009/11/01 23:29:41 | 02,319,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_27.dll
[2009/11/01 23:29:40 | 02,297,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_26.dll
[2009/11/01 23:29:39 | 02,337,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_25.dll
[2009/11/01 23:29:37 | 02,222,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_24.dll
[2009/11/01 23:28:58 | 00,000,000 | ---D | C] -- C:\Program Files\PhoenixRC Demo
[2009/11/01 22:35:20 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Tony Collins\.cornice
[2009/11/01 22:03:01 | 00,000,000 | ---D | C] -- C:\gs
[2009/11/01 21:59:39 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Tony Collins\Application Data\ACD Systems
[2009/11/01 21:58:19 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\ACD Systems
[2009/11/01 21:58:18 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\ACD Systems
[2009/11/01 21:58:18 | 00,000,000 | ---D | C] -- C:\Program Files\ACD Systems
[2009/11/01 11:20:14 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ptpusb.dll
[2009/11/01 11:20:13 | 00,015,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\usbscan.sys
[2009/11/01 11:20:13 | 00,015,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbscan.sys
[2009/11/01 11:20:12 | 00,159,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ptpusd.dll
[2009/10/31 17:25:56 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Tony Collins\Local Settings\Application Data\Serif
[2009/10/31 16:33:32 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Tony Collins\Application Data\CD-LabelPrint
[2009/10/31 10:36:28 | 00,000,000 | -HSD | C] -- C:\Documents and Settings\Tony Collins\IECompatCache
[2009/10/30 22:10:24 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Tony Collins\Application Data\ArcSoft
[2009/10/30 21:31:09 | 00,000,000 | ---D | C] -- C:\Program Files\Simple File Shredder
[2009/10/30 19:24:25 | 00,411,368 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\deploytk.dll
[2009/10/30 19:24:25 | 00,073,728 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javacpl.cpl
[2009/10/30 19:23:42 | 00,000,000 | ---D | C] -- C:\Program Files\Java
[2009/10/30 19:23:07 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Tony Collins\Application Data\Sun
[2009/10/29 20:20:20 | 00,000,000 | ---D | C] -- C:\Program Files\GFI
[2009/10/28 10:42:54 | 00,000,000 | ---D | C] -- C:\Program Files\CrPlane Master
[2009/10/27 16:03:51 | 00,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents\My Videos
[2009/10/27 15:59:46 | 00,017,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsg.dll
[2009/10/27 15:59:26 | 00,000,000 | ---D | C] -- C:\Program Files\Windows Media Connect 2
[2009/10/27 15:57:41 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\UMDF
[2009/10/27 15:57:41 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\LogFiles
[2009/10/27 11:58:55 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\iolo
[2009/10/27 11:44:05 | 00,165,888 | ---- | C] (Kenonic Controls) -- C:\WINDOWS\Ckconfig.exe
[2009/10/27 11:44:05 | 00,052,224 | ---- | C] (Kenonic Controls Ltd.) -- C:\WINDOWS\System32\Crypserv.exe
[2009/10/27 11:41:04 | 00,000,000 | ---D | C] -- C:\Program Files\i-CD
[2009/10/27 11:35:50 | 00,041,984 | ---- | C] (Autodesk, Inc.) -- C:\WINDOWS\System32\ADIMON.DLL
[2009/10/27 11:35:50 | 00,014,848 | ---- | C] (Autodesk, Inc.) -- C:\WINDOWS\System32\ADI3.HDI
[2009/10/27 11:35:49 | 00,447,488 | ---- | C] (Autodesk, Inc.) -- C:\WINDOWS\System32\HEIDI3.DLL
[2009/10/27 11:35:49 | 00,081,920 | ---- | C] (Autodesk, Inc.) -- C:\WINDOWS\System32\GDIFONT3.HDI
[2009/10/27 11:35:48 | 00,330,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\COMCTL32.OCX
[2009/10/27 11:34:30 | 00,000,000 | ---D | C] -- C:\Program Files\AutoCAD R14
[2009/10/27 11:32:16 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Tony Collins\WINDOWS
[2009/10/27 10:07:38 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Tony Collins\Application Data\r2 Studios
[2009/10/27 10:07:38 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\r2 Studios
[2009/10/27 10:07:32 | 00,000,000 | ---D | C] -- C:\Program Files\r2 Studios
[2009/10/27 00:28:47 | 00,000,000 | ---D | C] -- C:\Program Files\MSXML 4.0
[2009/10/27 00:22:25 | 00,000,000 | ---D | C] -- C:\Program Files\YouTube Downloader
[2009/10/26 23:36:01 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Tony Collins\Local Settings\Application Data\Temp
[2009/10/26 23:28:21 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Tony Collins\Local Settings\Application Data\Real
[2009/10/26 23:27:20 | 00,185,920 | ---- | C] (RealNetworks, Inc.) -- C:\WINDOWS\System32\rmoc3260.dll
[2009/10/26 23:26:57 | 00,006,656 | ---- | C] (RealNetworks, Inc.) -- C:\WINDOWS\System32\pndx5016.dll
[2009/10/26 23:26:57 | 00,005,632 | ---- | C] (RealNetworks, Inc.) -- C:\WINDOWS\System32\pndx5032.dll
[2009/10/26 23:26:54 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\xing shared
[2009/10/26 23:26:17 | 00,278,528 | ---- | C] (Real Networks, Inc) -- C:\WINDOWS\System32\pncrt.dll
[2009/10/26 23:26:15 | 00,000,000 | ---D | C] -- C:\Program Files\Real
[2009/10/26 23:26:13 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Real
[2009/10/26 23:26:11 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Real
[2009/10/26 23:26:06 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Tony Collins\Application Data\Real
[2009/10/26 23:04:09 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Tony Collins\Application Data\Malwarebytes
[2009/10/26 23:04:07 | 00,017,200 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2009/10/26 23:04:06 | 00,038,528 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2009/10/26 23:04:05 | 00,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2009/10/26 23:04:05 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
 
(part 7)
[2009/10/26 23:03:46 | 00,081,632 | ---- | C] (USPTO) -- C:\WINDOWS\System32\FLKill.exe
[2009/10/26 22:49:42 | 00,140,800 | ---- | C] (The Duck Corporation) -- C:\WINDOWS\System32\tm20dec.ax
[2009/10/26 22:49:42 | 00,038,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\LMRTREND.dll
[2009/10/26 22:49:41 | 00,182,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dxtmsft3.dll
[2009/10/26 22:49:40 | 00,063,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\unam4ie.exe
[2009/10/26 22:49:39 | 00,194,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qcut.dll
[2009/10/26 22:49:39 | 00,011,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mciqtz.drv
[2009/10/26 22:49:38 | 00,004,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\w95inf32.dll
[2009/10/26 22:49:38 | 00,002,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\w95inf16.dll
[2009/10/26 22:49:34 | 00,188,416 | ---- | C] (EMAGIC) -- C:\WINDOWS\System32\PlgEnabler.exe
[2009/10/26 22:49:34 | 00,131,072 | ---- | C] (Magix) -- C:\WINDOWS\System32\MagixDS.dll
[2009/10/26 22:49:34 | 00,114,688 | ---- | C] (emagic GmbH) -- C:\WINDOWS\System32\EASIMME.dll
[2009/10/26 22:49:34 | 00,077,824 | ---- | C] (emagic GmbH) -- C:\WINDOWS\System32\EASIMME.exe
[2009/10/26 22:49:04 | 00,000,000 | ---D | C] -- C:\Program Files\msg6
[2009/10/26 22:48:19 | 00,151,552 | ---- | C] (MAGIX AG) -- C:\WINDOWS\System32\mgxoschk.dll
[2009/10/26 22:39:46 | 00,000,000 | ---D | C] -- C:\Program Files\Alcohol Soft
[2009/10/26 22:37:43 | 00,000,000 | -HSD | C] -- C:\Documents and Settings\Tony Collins\PrivacIE
[2009/10/26 22:37:40 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Tony Collins\Local Settings\Application Data\Google
[2009/10/26 22:37:40 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Tony Collins\Application Data\Google
[2009/10/26 22:32:59 | 00,000,000 | ---D | C] -- C:\Program Files\Lavasoft
[2009/10/26 22:32:58 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Lavasoft
[2009/10/26 22:32:21 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Wise Installation Wizard
[2009/10/26 22:31:02 | 00,000,000 | ---D | C] -- C:\Program Files\TheSage
[2009/10/26 22:18:26 | 00,000,000 | ---D | C] -- C:\WINDOWS\WBEM
[2009/10/26 22:18:26 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\en-US
[2009/10/26 22:17:35 | 00,000,000 | -H-D | C] -- C:\WINDOWS\ie7
[2009/10/26 22:17:05 | 00,000,000 | -H-D | C] -- C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$
[2009/10/26 22:16:49 | 00,026,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spupdsvc.exe
[2009/10/26 22:16:48 | 00,000,000 | -H-D | C] -- C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$
[2009/10/26 22:16:22 | 00,000,000 | -H-D | C] -- C:\WINDOWS\$hf_mig$
[2009/10/26 22:16:19 | 00,121,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xmllite.dll
[2009/10/26 22:15:43 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage
[2009/10/26 22:12:01 | 00,000,000 | ---D | C] -- C:\Program Files\TClockEx
[2009/10/26 22:06:55 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Tony Collins\Application Data\Macromedia
[2009/10/26 22:06:08 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Autodesk Shared
[2009/10/26 22:06:08 | 00,000,000 | ---D | C] -- C:\Program Files\backburner 2
[2009/10/26 22:06:06 | 00,000,000 | ---D | C] -- C:\Program Files\JSR
[2009/10/26 22:06:05 | 00,000,000 | ---D | C] -- C:\Program Files\webdepot
[2009/10/26 22:06:02 | 00,000,000 | ---D | C] -- C:\Program Files\UI
[2009/10/26 22:05:57 | 00,000,000 | ---D | C] -- C:\Program Files\stdplugs
[2009/10/26 22:05:57 | 00,000,000 | ---D | C] -- C:\Program Files\renderpresets
[2009/10/26 22:05:56 | 00,000,000 | ---D | C] -- C:\Program Files\plugins
[2009/10/26 22:05:56 | 00,000,000 | ---D | C] -- C:\Program Files\plugcfg
[2009/10/26 22:05:56 | 00,000,000 | ---D | C] -- C:\Program Files\matlibs
[2009/10/26 22:05:56 | 00,000,000 | ---D | C] -- C:\Program Files\maps
[2009/10/26 22:05:55 | 00,000,000 | ---D | C] -- C:\Program Files\HardwareShaders
[2009/10/26 22:05:55 | 00,000,000 | ---D | C] -- C:\Program Files\drivers
[2009/10/26 22:05:55 | 00,000,000 | ---D | C] -- C:\Program Files\dlcomponents
[2009/10/26 22:05:54 | 00,000,000 | ---D | C] -- C:\Program Files\Defaults
[2009/10/26 22:05:48 | 00,000,000 | ---D | C] -- C:\Program Files\web
[2009/10/26 22:05:48 | 00,000,000 | ---D | C] -- C:\Program Files\vpost
[2009/10/26 22:05:48 | 00,000,000 | ---D | C] -- C:\Program Files\sounds
[2009/10/26 22:05:48 | 00,000,000 | ---D | C] -- C:\Program Files\scripts
[2009/10/26 22:05:48 | 00,000,000 | ---D | C] -- C:\Program Files\scenes
[2009/10/26 22:05:48 | 00,000,000 | ---D | C] -- C:\Program Files\previews
[2009/10/26 22:05:48 | 00,000,000 | ---D | C] -- C:\Program Files\network
[2009/10/26 22:05:48 | 00,000,000 | ---D | C] -- C:\Program Files\meshes
[2009/10/26 22:05:48 | 00,000,000 | ---D | C] -- C:\Program Files\mentalray
[2009/10/26 22:05:48 | 00,000,000 | ---D | C] -- C:\Program Files\images
[2009/10/26 22:05:48 | 00,000,000 | ---D | C] -- C:\Program Files\html
[2009/10/26 22:05:48 | 00,000,000 | ---D | C] -- C:\Program Files\help
[2009/10/26 22:05:48 | 00,000,000 | ---D | C] -- C:\Program Files\fonts
[2009/10/26 22:05:48 | 00,000,000 | ---D | C] -- C:\Program Files\express
[2009/10/26 22:05:48 | 00,000,000 | ---D | C] -- C:\Program Files\downloads
[2009/10/26 22:05:48 | 00,000,000 | ---D | C] -- C:\Program Files\autoback
[2009/10/26 22:05:48 | 00,000,000 | ---D | C] -- C:\Program Files\animations
[2009/10/26 22:05:48 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Autodesk
[2009/10/26 21:54:18 | 00,000,000 | -HSD | C] -- C:\Documents and Settings\Tony Collins\IETldCache
[2009/10/26 21:52:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\ie8updates
 
(part 8)
[2009/10/26 21:52:27 | 00,000,000 | ---D | C] -- C:\Program Files\WinRAR
[2009/10/26 21:50:08 | 00,000,000 | -H-D | C] -- C:\WINDOWS\ie8
[2009/10/26 21:49:17 | 00,000,000 | ---D | C] -- C:\Program Files\Google
[2009/10/26 21:49:17 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Google
[2009/10/26 21:47:00 | 26,768,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MRT.exe
[2009/10/26 21:46:50 | 00,594,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeeds.dll
[2009/10/26 21:46:50 | 00,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeedsbs.dll
[2009/10/26 21:46:50 | 00,012,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\xpshims.dll
[2009/10/26 21:46:48 | 01,985,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iertutil.dll
[2009/10/26 21:46:48 | 00,246,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieproxy.dll
[2009/10/26 21:46:44 | 11,069,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieframe.dll
[2009/10/26 21:39:48 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Tony Collins\Desktop\Utilities
[2009/10/26 21:35:42 | 00,017,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mdimon.dll
[2009/10/26 21:35:05 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\L&H
[2009/10/26 21:34:57 | 00,000,000 | ---D | C] -- C:\Program Files\Microsoft.NET
[2009/10/26 21:34:48 | 00,000,000 | ---D | C] -- C:\Program Files\Microsoft ActiveSync
[2009/10/26 21:34:26 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER
[2009/10/26 21:34:16 | 00,000,000 | ---D | C] -- C:\Program Files\Microsoft Visual Studio
[2009/10/26 21:34:03 | 00,000,000 | ---D | C] -- C:\WINDOWS\SHELLNEW
[2009/10/26 21:30:28 | 00,000,000 | R--D | C] -- C:\MSOCache
[2009/10/26 21:28:18 | 00,000,000 | ---D | C] -- C:\WINDOWS\Prefetch
[2009/10/26 21:27:17 | 00,000,000 | ---D | C] -- C:\Program Files\Avanquest update
[2009/10/26 21:27:00 | 00,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\usbser.sys
[2009/10/26 21:26:02 | 00,000,000 | ---D | C] -- C:\Program Files\Motorola Phone Tools
[2009/10/26 21:26:02 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\BVRP Software
[2009/10/26 21:25:50 | 00,024,192 | ---- | C] (Microsoft Corporation) -- C:\Documents and Settings\Tony Collins\usbsermptxp.sys
[2009/10/26 21:25:50 | 00,022,768 | ---- | C] (Microsoft Corporation) -- C:\Documents and Settings\Tony Collins\usbsermpt.sys
[2009/10/26 21:21:06 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\scripting
[2009/10/26 21:21:06 | 00,000,000 | ---D | C] -- C:\WINDOWS\l2schemas
[2009/10/26 21:21:05 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\en
[2009/10/26 21:21:05 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\bits
[2009/10/26 21:19:21 | 00,000,000 | ---D | C] -- C:\WINDOWS\ServicePackFiles
[2009/10/26 21:16:40 | 00,000,000 | ---D | C] -- C:\WINDOWS\network diagnostic
[2009/10/26 20:53:13 | 00,000,000 | -H-D | C] -- C:\WINDOWS\$NtServicePackUninstall$
[2009/10/26 20:51:47 | 00,000,000 | ---D | C] -- C:\WINDOWS\EHome
[2009/10/26 20:45:46 | 00,685,056 | ---- | C] (Conexant Systems, Inc.) -- C:\WINDOWS\System32\drivers\hsfcxts2.sys
[2009/10/26 20:45:46 | 00,104,960 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinrvxx.sys
[2009/10/26 20:45:46 | 00,036,463 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1tuxx.sys
[2009/10/26 20:45:46 | 00,013,240 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slwdmsup.sys
[2009/10/26 20:45:46 | 00,011,935 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\wadv11nt.sys
[2009/10/26 20:44:48 | 00,031,744 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinxbxx.sys
[2009/10/26 20:44:48 | 00,028,672 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinsnxx.sys
[2009/10/26 20:44:47 | 01,309,184 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\mtlstrm.sys
[2009/10/26 20:44:47 | 00,220,032 | ---- | C] (Conexant Systems, Inc.) -- C:\WINDOWS\System32\drivers\hsfbs2s2.sys
[2009/10/26 20:44:47 | 00,073,216 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atintuxx.sys
[2009/10/26 20:44:47 | 00,022,271 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\watv06nt.sys
[2009/10/26 20:44:46 | 00,056,623 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1btxx.sys
[2009/10/26 20:44:46 | 00,034,735 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1xsxx.sys
[2009/10/26 20:44:46 | 00,013,776 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\recagent.sys
[2009/10/26 20:44:45 | 01,897,408 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\drivers\nv4_mini.sys
[2009/10/26 20:44:45 | 00,180,360 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\ntmtlfax.sys
[2009/10/26 20:44:45 | 00,126,686 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\mtlmnt5.sys
[2009/10/26 20:44:45 | 00,057,856 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinbtxx.sys
[2009/10/26 20:44:44 | 00,404,990 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slntamr.sys
[2009/10/26 20:44:44 | 00,327,040 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati2mtaa.sys
[2009/10/26 20:44:44 | 00,095,424 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slnthal.sys
[2009/10/26 20:44:44 | 00,011,807 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\wadv07nt.sys
[2009/10/26 20:44:43 | 00,452,736 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\drivers\mtxparhm.sys
[2009/10/26 20:44:43 | 00,166,912 | ---- | C] (S3 Graphics, Inc.) -- C:\WINDOWS\System32\drivers\s3gnbm.sys
[2009/10/26 20:44:43 | 00,063,488 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinxsxx.sys
[2009/10/26 20:44:43 | 00,052,224 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinraxx.sys
[2009/10/26 20:44:43 | 00,030,671 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1raxx.sys
[2009/10/26 20:44:43 | 00,025,471 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\watv10nt.sys
[2009/10/26 20:44:43 | 00,012,047 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1pdxx.sys
[2009/10/26 20:44:43 | 00,011,615 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1mdxx.sys
[2009/10/26 20:44:43 | 00,011,295 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\wadv08nt.sys
[2009/10/26 20:44:42 | 01,041,536 | ---- | C] (Conexant Systems, Inc.) -- C:\WINDOWS\System32\drivers\hsfdpsp2.sys
[2009/10/26 20:44:42 | 00,063,663 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1rvxx.sys
[2009/10/26 20:44:42 | 00,026,367 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1snxx.sys
[2009/10/26 20:44:42 | 00,021,343 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1ttxx.sys
[2009/10/26 20:44:42 | 00,013,824 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinmdxx.sys
[2009/10/26 20:44:40 | 00,129,535 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slnt7554.sys
 
(part 9)
[2009/10/26 20:44:39 | 00,029,455 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1xbxx.sys
[2009/10/26 20:44:39 | 00,014,336 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinpdxx.sys
[2009/10/26 20:44:36 | 00,013,824 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinttxx.sys
[2009/10/26 20:44:36 | 00,011,871 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\wadv09nt.sys
[2009/10/26 20:31:45 | 00,272,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bthport.sys
[2009/10/26 20:29:37 | 00,401,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rpcss.dll
[2009/10/26 20:29:37 | 00,284,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pdh.dll
[2009/10/26 20:29:37 | 00,110,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\services.exe
[2009/10/26 20:29:36 | 00,473,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fastprox.dll
[2009/10/26 20:29:36 | 00,227,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiprvse.exe
[2009/10/26 20:29:35 | 00,453,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiprvsd.dll
[2009/10/26 20:29:34 | 00,617,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\advapi32.dll
[2009/10/26 20:29:33 | 00,714,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntdll.dll
[2009/10/26 20:29:10 | 00,153,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\triedit.dll
[2009/10/26 20:28:09 | 00,128,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dhtmled.ocx
[2009/10/26 20:26:40 | 00,203,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rmcast.sys
[2009/10/26 20:26:37 | 00,455,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mrxsmb.sys
[2009/10/26 20:26:32 | 00,333,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srv.sys
[2009/10/26 20:26:28 | 00,331,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadce.dll
[2009/10/26 20:26:24 | 01,315,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msoe.dll
[2009/10/26 20:26:11 | 00,691,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetcomm.dll
[2009/10/26 20:26:01 | 02,145,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlmp.exe
[2009/10/26 20:25:58 | 02,066,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlpa.exe
[2009/10/26 20:25:58 | 02,023,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrpamp.exe
[2009/10/26 20:25:16 | 00,337,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\netapi32.dll
[2009/10/26 20:25:10 | 01,106,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxml3.dll
[2009/10/26 20:24:34 | 00,215,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wordpad.exe
[2009/10/26 20:24:34 | 00,002,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xpsp4res.dll
[2009/10/26 20:18:23 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Tony Collins\Application Data\BitDefender
[2009/10/26 20:18:02 | 00,000,000 | ---D | C] -- C:\Program Files\BitDefender
[2009/10/26 20:18:02 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\BitDefender
[2009/10/26 20:17:22 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\BitDefender
[2009/10/26 19:30:30 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\PreInstall
[2009/10/26 19:21:49 | 00,044,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wups2.dll
[2009/10/26 19:21:48 | 00,021,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wucltui.dll.mui
[2009/10/26 19:21:48 | 00,017,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuaueng.dll.mui
[2009/10/26 19:21:48 | 00,015,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuaucpl.cpl.mui
[2009/10/26 19:21:47 | 00,015,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuapi.dll.mui
[2009/10/26 19:21:47 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\SoftwareDistribution
[2009/10/26 18:55:47 | 00,000,000 | ---D | C] -- C:\WINDOWS\BDOSCAN8
[2009/10/26 16:50:01 | 00,000,000 | ---D | C] -- C:\Program Files\QuickTime
[2009/10/26 16:50:00 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Apple Computer
[2009/10/26 16:49:48 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Tony Collins\Local Settings\Application Data\Apple
[2009/10/26 16:49:45 | 00,000,000 | ---D | C] -- C:\Program Files\Apple Software Update
[2009/10/26 16:49:45 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Apple
[2009/10/26 16:39:49 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Tony Collins\Local Settings\Application Data\Apple Computer
[2009/10/26 16:28:37 | 00,005,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\mstee.sys
[2009/10/26 16:28:32 | 00,010,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\NdisIP.sys
[2009/10/26 16:28:30 | 00,015,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\StreamIP.sys
[2009/10/26 16:28:29 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ipsink.ax
[2009/10/26 16:28:25 | 00,011,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\slip.sys
[2009/10/26 16:28:23 | 00,019,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\wstcodec.sys
[2009/10/26 16:28:21 | 00,085,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\nabtsfec.sys
[2009/10/26 16:28:19 | 00,017,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\ccdecode.sys
[2009/10/26 16:25:44 | 00,073,728 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\VfwWdm32.dll
[2009/10/26 16:25:44 | 00,052,224 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Kswdmcap.ax
[2009/10/26 16:25:44 | 00,015,600 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\VfwWdm.drv
[2009/10/26 16:25:43 | 00,401,484 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MSVCRTD.DLL
[2009/10/26 16:25:43 | 00,024,576 | R--- | C] (Sunplus Technology LTD.) -- C:\WINDOWS\System32\VFW508A.DLL
[2009/10/26 16:25:42 | 00,099,014 | R--- | C] (Sunplus Technology Co. LTD.) -- C:\WINDOWS\System32\drivers\SPCA508A.SYS
[2009/10/26 16:25:42 | 00,098,304 | R--- | C] (Sunplus Technology Corporation) -- C:\WINDOWS\System32\SP6X_32.DLL
[2009/10/26 16:25:42 | 00,014,336 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\DSHOW508.AX
[2009/10/26 16:25:34 | 00,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kstvtune.ax
[2009/10/26 16:25:34 | 00,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\vidcap.ax
[2009/10/26 16:25:32 | 00,043,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksxbar.ax
[2009/10/26 07:36:39 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Macrovision
[2009/10/26 07:36:37 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe Systems Shared
[2009/10/26 07:35:06 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe
[2009/10/26 07:27:13 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Tony Collins\Application Data\NewSoft
[2009/10/26 07:27:08 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Tony Collins\Local Settings\Application Data\NewSoft
[2009/10/26 07:25:38 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Tony Collins\Local Settings\Application Data\Scansoft
[2009/10/26 07:22:54 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\NewSoft
[2009/10/26 07:22:31 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\PDFView
[2009/10/26 07:22:30 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\Color
[2009/10/26 07:22:30 | 00,000,000 | ---D | C] -- C:\Program Files\NewSoft
[2009/10/26 07:21:54 | 00,000,000 | ---D | C] -- C:\Program Files\ArcSoft
[2009/10/26 07:20:28 | 00,188,416 | ---- | C] (Canon Inc.) -- C:\WINDOWS\System32\CNQ2412O.DLL
[2009/10/26 07:20:27 | 01,400,832 | ---- | C] (CANON INC.) -- C:\WINDOWS\System32\CNQ2412C.DLL
[2009/10/26 07:20:27 | 01,155,072 | ---- | C] (CANON INC.) -- C:\WINDOWS\System32\CNQ2412L.DLL
[2009/10/26 07:20:27 | 00,098,304 | ---- | C] (CANON INC.) -- C:\WINDOWS\System32\CNQ2412I.DLL
[2009/10/26 07:17:55 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Tony Collins\Desktop\Images
 
(part 10)
[2009/10/26 07:16:17 | 00,025,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\usbprint.sys
[2009/10/26 07:15:27 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\CANON
[2009/10/26 07:12:58 | 00,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Application Data\CanonBJ
[2009/10/26 07:12:46 | 00,197,632 | ---- | C] (CANON INC.) -- C:\WINDOWS\System32\CNMLM86.DLL
[2009/10/26 07:12:43 | 00,000,000 | -H-D | C] -- C:\WINDOWS\System32\CanonIJ Uninstaller Information
[2009/10/26 07:12:33 | 00,000,000 | -H-D | C] -- C:\Program Files\CanonBJ
[2009/10/26 07:11:18 | 00,000,000 | ---D | C] -- C:\Program Files\Canon
[2009/10/26 07:05:59 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\InstallShield
[2009/10/26 07:05:57 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Tony Collins\Application Data\ScanSoft
[2009/10/26 07:05:53 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\ScanSoft Shared
[2009/10/26 07:05:53 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\ScanSoft
[2009/10/26 07:05:11 | 00,000,000 | ---D | C] -- C:\Program Files\ScanSoft
[2009/10/26 06:54:44 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Tony Collins\Desktop\Authoring & Edit
[2009/10/26 06:53:43 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Tony Collins\Application Data\Serif
[2009/10/26 06:49:15 | 00,000,000 | ---D | C] -- C:\Program Files\Serif
[2009/10/26 05:30:19 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Tony Collins\Application Data\Adobe
[2009/10/26 05:30:15 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\SourceTec
[2009/10/26 05:20:10 | 00,000,000 | ---D | C] -- C:\Program Files\HepYek
[2009/10/26 05:17:44 | 00,000,000 | ---D | C] -- C:\Program Files\My Free Mahjong
[2009/10/26 04:57:32 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Tony Collins\Desktop\Games
[2009/10/26 04:56:22 | 00,000,000 | ---D | C] -- C:\Program Files\RC Plane Master
[2009/10/26 04:55:34 | 00,000,000 | ---D | C] -- C:\Program Files\directx
[2009/10/26 04:28:55 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Tony Collins\Local Settings\Application Data\Mozilla
[2009/10/26 04:28:54 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Tony Collins\Application Data\Mozilla
[2009/10/26 04:27:52 | 00,017,134 | ---- | C] (Printing Communications Assoc., Inc. (PCAUSA)) -- C:\WINDOWS\System32\PCANDIS5.sys
[2009/10/26 04:27:51 | 00,081,920 | ---- | C] (Printing Communications Assoc., Inc. (PCAUSA)) -- C:\WINDOWS\System32\W32N50.dll
[2009/10/26 04:18:41 | 00,000,000 | ---D | C] -- C:\Program Files\Microsoft Office
[2009/10/26 04:18:37 | 00,000,000 | ---D | C] -- C:\Program Files\Microsoft Works
[2009/10/26 04:17:14 | 00,000,000 | ---D | C] -- C:\Acer
[2009/10/26 04:17:06 | 00,000,000 | ---D | C] -- C:\WINDOWS\Downloaded Installations
[2009/10/26 04:16:48 | 00,000,000 | ---D | C] -- C:\WINDOWS\tiinst
[2009/10/26 04:12:17 | 00,245,760 | ---- | C] (acer Inc.) -- C:\WINDOWS\System32\Check.exe
[2009/10/26 04:12:14 | 00,000,000 | ---D | C] -- C:\Program Files\acer
[2009/10/26 04:11:42 | 00,000,000 | ---D | C] -- C:\Program Files\Realtek AC97
[2009/10/26 04:11:24 | 00,010,368 | ---- | C] (Padus, Inc.) -- C:\WINDOWS\System32\drivers\pfc.sys
[2009/10/26 04:10:56 | 00,221,215 | ---- | C] (DivXNetworks, Inc.) -- C:\WINDOWS\System32\Divxdec.ax
[2009/10/26 04:10:47 | 00,030,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msxml4a.dll
[2009/10/26 04:10:47 | 00,000,000 | ---D | C] -- C:\Program Files\CyberLink
[2009/10/26 04:10:29 | 00,000,000 | ---D | C] -- C:\Program Files\Arcade
[2009/10/26 04:10:23 | 00,000,000 | ---D | C] -- C:\Program Files\Launch Manager
[2009/10/26 04:09:38 | 00,147,456 | ---- | C] (Dritek System Inc.) -- C:\WINDOWS\UNINST32.EXE
[2009/10/26 04:08:26 | 00,000,000 | ---D | C] -- C:\Program Files\ATI Technologies
[2009/10/26 04:08:01 | 00,000,000 | --SD | C] -- C:\Documents and Settings\Tony Collins\Application Data\Microsoft
[2009/10/26 04:08:01 | 00,000,000 | RH-D | C] -- C:\Documents and Settings\Tony Collins\SendTo
[2009/10/26 04:08:01 | 00,000,000 | R--D | C] -- C:\Documents and Settings\Tony Collins\Start Menu
[2009/10/26 04:08:01 | 00,000,000 | R--D | C] -- C:\Documents and Settings\Tony Collins\My Documents
[2009/10/26 04:08:01 | 00,000,000 | R--D | C] -- C:\Documents and Settings\Tony Collins\Favorites
[2009/10/26 04:08:01 | 00,000,000 | -HSD | C] -- C:\Documents and Settings\Tony Collins\Cookies
[2009/10/26 04:08:01 | 00,000,000 | -H-D | C] -- C:\Documents and Settings\Tony Collins\Templates
[2009/10/26 04:08:01 | 00,000,000 | -H-D | C] -- C:\Documents and Settings\Tony Collins\PrintHood
[2009/10/26 04:08:01 | 00,000,000 | -H-D | C] -- C:\Documents and Settings\Tony Collins\NetHood
[2009/10/26 04:08:01 | 00,000,000 | -H-D | C] -- C:\Documents and Settings\Tony Collins\Local Settings
[2009/10/26 04:08:01 | 00,000,000 | -H-D | C] -- C:\Documents and Settings\Tony Collins\Application Data
[2009/10/26 04:08:01 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Tony Collins\Desktop
[2009/10/26 04:08:01 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Tony Collins\Local Settings\Application Data\Microsoft
[2009/10/26 04:08:01 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Tony Collins\Application Data\Identities
[2009/10/25 20:00:37 | 00,012,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\mouhid.sys
[2009/10/25 20:00:29 | 00,010,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\hidusb.sys
[2009/10/25 20:00:15 | 00,000,000 | ---D | C] -- C:\Program Files\CONEXANT
[2004/10/04 18:22:56 | 00,028,727 | ---- | C] (Autodesk, Inc.) -- C:\Program Files\texture7.dll
[2004/10/04 18:22:56 | 00,006,144 | ---- | C] (Discreet, a division of Autodesk, Inc.) -- C:\Program Files\tessint.dll
[2004/10/04 18:22:40 | 00,557,568 | ---- | C] (Discreet, a division of Autodesk, Inc.) -- C:\Program Files\splash.dll
[2004/10/04 18:22:38 | 01,238,016 | ---- | C] (Discreet, a division of Autodesk, Inc.) -- C:\Program Files\Rm.dll
[2004/10/04 18:22:38 | 01,167,360 | ---- | C] (Havok) -- C:\Program Files\rct_preview.dll
[2004/10/04 18:22:38 | 00,225,792 | ---- | C] (Discreet, a division of Autodesk, Inc.) -- C:\Program Files\res3.dll
[2004/10/04 18:22:38 | 00,159,232 | ---- | C] (Discreet, a division of Autodesk, Inc.) -- C:\Program Files\SendDmp.exe
[2004/10/04 18:22:38 | 00,120,320 | ---- | C] (Discreet, a division of Autodesk, Inc.) -- C:\Program Files\senddmpRes.dll
[2004/10/04 18:22:38 | 00,097,280 | ---- | C] (Discreet, a division of Autodesk, Inc.) -- C:\Program Files\res2.dll
[2004/10/04 18:22:38 | 00,096,256 | ---- | C] (Discreet, a division of Autodesk, Inc.) -- C:\Program Files\Poly.dll
[2004/10/04 18:22:38 | 00,073,216 | ---- | C] (Discreet, a division of Autodesk, Inc.) -- C:\Program Files\res1.dll
[2004/10/04 18:22:38 | 00,062,464 | ---- | C] (Discreet, a division of Autodesk, Inc.) -- C:\Program Files\rtmax.dll
[2004/10/04 18:22:38 | 00,044,032 | ---- | C] (Discreet, a division of Autodesk, Inc.) -- C:\Program Files\res5.dll
[2004/10/04 18:22:38 | 00,035,840 | ---- | C] (Discreet, a division of Autodesk, Inc.) -- C:\Program Files\res6.dll
[2004/10/04 18:22:38 | 00,035,328 | ---- | C] (Discreet, a division of Autodesk, Inc.) -- C:\Program Files\res4.dll
[2004/10/04 18:22:38 | 00,018,944 | ---- | C] (Discreet, a division of Autodesk, Inc.) -- C:\Program Files\res7.dll
[2004/10/04 18:22:38 | 00,012,800 | ---- | C] (Discreet, a division of Autodesk, Inc.) -- C:\Program Files\preminfo.dll
[2004/10/04 18:22:38 | 00,012,288 | ---- | C] (Discreet, a division of Autodesk, Inc.) -- C:\Program Files\RenderUtil.dll
[2004/10/04 18:22:38 | 00,010,752 | ---- | C] (Discreet, a division of Autodesk, Inc.) -- C:\Program Files\SaveFile.dll
[2004/10/04 18:22:38 | 00,008,704 | ---- | C] (Discreet, a division of Autodesk, Inc.) -- C:\Program Files\resmgr.dll
[2004/10/04 18:22:38 | 00,007,680 | ---- | C] (Havok) -- C:\Program Files\rct_registry.dll
 
(part 11)
[2004/10/04 18:22:38 | 00,007,168 | ---- | C] (Discreet, a division of Autodesk, Inc.) -- C:\Program Files\res10.dll
[2004/10/04 18:22:38 | 00,006,144 | ---- | C] (Discreet, a division of Autodesk, Inc.) -- C:\Program Files\res8.dll
[2004/10/04 18:22:34 | 00,974,848 | ---- | C] (Microsoft Corporation) -- C:\Program Files\mfc70.dll
[2004/10/04 18:22:34 | 00,681,472 | ---- | C] (Discreet, a division of Autodesk, Inc.) -- C:\Program Files\mesh.dll
[2004/10/04 18:22:34 | 00,649,728 | ---- | C] (Discreet, a division of Autodesk, Inc.) -- C:\Program Files\MNMath.dll
[2004/10/04 18:22:34 | 00,499,712 | ---- | C] (Microsoft Corporation) -- C:\Program Files\msvcp71.dll
[2004/10/04 18:22:34 | 00,495,376 | ---- | C] (Microsoft Corporation) -- C:\Program Files\msxml.dll
[2004/10/04 18:22:34 | 00,487,424 | ---- | C] (Microsoft Corporation) -- C:\Program Files\msvcp70.dll
[2004/10/04 18:22:34 | 00,348,160 | ---- | C] (Microsoft Corporation) -- C:\Program Files\msvcr71.dll
[2004/10/04 18:22:34 | 00,344,064 | ---- | C] (Microsoft Corporation) -- C:\Program Files\msvcr70.dll
[2004/10/04 18:22:34 | 00,226,304 | ---- | C] (Discreet, a division of Autodesk, Inc.) -- C:\Program Files\Paramblk2.dll
[2004/10/04 18:22:34 | 00,089,088 | ---- | C] (Discreet, a division of Autodesk, Inc.) -- C:\Program Files\oglgfx.drv
[2004/10/04 18:22:34 | 00,083,968 | ---- | C] (Discreet, a division of Autodesk, Inc.) -- C:\Program Files\ParticleFlow.dll
[2004/10/04 18:22:34 | 00,071,680 | ---- | C] (Discreet, a division of Autodesk, Inc.) -- C:\Program Files\MenuMan.dll
[2004/10/04 18:22:34 | 00,063,488 | ---- | C] (Discreet, a division of Autodesk, Inc.) -- C:\Program Files\menus.dll
[2004/10/04 18:22:34 | 00,054,784 | ---- | C] (Microsoft Corporation) -- C:\Program Files\msvci70.dll
[2004/10/04 18:22:34 | 00,045,568 | ---- | C] (Discreet, a division of Autodesk, Inc.) -- C:\Program Files\ParamRollup.dll
[2004/10/04 18:22:34 | 00,032,819 | ---- | C] (Autodesk, Inc.) -- C:\Program Files\mtl7.dll
[2004/10/04 18:22:34 | 00,030,208 | ---- | C] (Discreet, a division of Autodesk, Inc.) -- C:\Program Files\particle.dll
[2004/10/04 18:22:34 | 00,010,240 | ---- | C] (Discreet, a division of Autodesk, Inc.) -- C:\Program Files\nulgfx.drv
[2004/10/04 18:22:34 | 00,004,096 | ---- | C] (Discreet, a division of Autodesk, Inc.) -- C:\Program Files\minidumpVer.dll
[2004/10/04 18:22:32 | 05,104,640 | ---- | C] (Discreet, a division of Autodesk, Inc.) -- C:\Program Files\Maxscrpt.dll
[2004/10/04 18:22:32 | 01,030,514 | ---- | C] (Discreet, a division of Autodesk, Inc.) -- C:\Program Files\MaxSave.dll
[2004/10/04 18:22:32 | 00,109,056 | ---- | C] (Discreet, a division of Autodesk, Inc.) -- C:\Program Files\MaxNetWorker.dll
[2004/10/04 18:22:32 | 00,104,960 | ---- | C] (Discreet, a division of Autodesk, Inc.) -- C:\Program Files\MaxFind.exe
[2004/10/04 18:22:32 | 00,097,792 | ---- | C] (Discreet, a division of Autodesk, Inc.) -- C:\Program Files\maxnet.dll
[2004/10/04 18:22:32 | 00,059,904 | ---- | C] (Discreet, a division of Autodesk, Inc.) -- C:\Program Files\max.task
[2004/10/04 18:22:32 | 00,055,808 | ---- | C] (Discreet, a division of Autodesk, Inc.) -- C:\Program Files\MAXComponents.dll
[2004/10/04 18:22:32 | 00,035,328 | ---- | C] (Discreet, a division of Autodesk, Inc.) -- C:\Program Files\maxutil.dll
[2004/10/04 18:22:32 | 00,012,288 | ---- | C] (Discreet, a division of Autodesk, Inc.) -- C:\Program Files\maxzip.exe
[2004/10/04 18:22:32 | 00,011,776 | ---- | C] (Discreet, a division of Autodesk, Inc.) -- C:\Program Files\maxunzip.exe
[2004/10/04 18:22:30 | 04,853,760 | ---- | C] (ITI) -- C:\Program Files\libiges.dll
[2004/10/04 18:22:30 | 03,592,192 | ---- | C] (mental images GmbH) -- C:\Program Files\libray.dll
[2004/10/04 18:22:30 | 01,785,856 | ---- | C] (ITI) -- C:\Program Files\libgdx.dll
[2004/10/04 18:22:30 | 01,622,016 | ---- | C] (Discreet, a division of Autodesk, Inc.) -- C:\Program Files\libDLresmgt.dll
[2004/10/04 18:22:30 | 00,843,776 | ---- | C] (ITI) -- C:\Program Files\libpdx.dll
[2004/10/04 18:22:30 | 00,770,048 | ---- | C] (Discreet, a division of Autodesk, Inc.) -- C:\Program Files\libDLbase.dll
[2004/10/04 18:22:30 | 00,454,656 | ---- | C] (Discreet, a division of Autodesk, Inc.) -- C:\Program Files\libDLprimitives.dll
[2004/10/04 18:22:30 | 00,352,256 | ---- | C] (Autodesk, Inc.) -- C:\Program Files\liblint.dll
[2004/10/04 18:22:30 | 00,133,120 | ---- | C] (Discreet, a division of Autodesk, Inc.) -- C:\Program Files\lprd.dll
[2004/10/04 18:22:30 | 00,097,280 | ---- | C] (Discreet, a division of Autodesk, Inc.) -- C:\Program Files\lsrd.dll
[2004/10/04 18:22:30 | 00,097,280 | ---- | C] (Discreet, a division of Autodesk, Inc.) -- C:\Program Files\libDLcomponentManager.dll
[2004/10/04 18:22:30 | 00,092,160 | ---- | C] (Discreet, a division of Autodesk, Inc.) -- C:\Program Files\lpwrt.dll
[2004/10/04 18:22:30 | 00,074,240 | ---- | C] (Discreet, a division of Autodesk, Inc.) -- C:\Program Files\imageViewers.dll
[2004/10/04 18:22:30 | 00,068,608 | ---- | C] (Discreet, a division of Autodesk, Inc.) -- C:\Program Files\ManipSys.dll
[2004/10/04 18:22:30 | 00,065,024 | ---- | C] (Discreet, a division of Autodesk, Inc.) -- C:\Program Files\libDLltutility.dll
[2004/10/04 18:22:30 | 00,057,344 | ---- | C] (Discreet, a division of Autodesk, Inc.) -- C:\Program Files\libDLltgeometry.dll
[2004/10/04 18:22:30 | 00,023,552 | ---- | C] (Discreet, a division of Autodesk, Inc.) -- C:\Program Files\libDLmaxmgr.dll
[2004/10/04 18:22:30 | 00,006,144 | ---- | C] (Discreet, a division of Autodesk, Inc.) -- C:\Program Files\libDLltutilityRes.dll
[2004/10/04 18:22:30 | 00,004,608 | ---- | C] (Discreet, a division of Autodesk, Inc.) -- C:\Program Files\libDLltgeometryRes.dll
[2004/10/04 18:22:28 | 00,140,288 | ---- | C] (Discreet, a division of Autodesk, Inc.) -- C:\Program Files\IGame.dll
[2004/10/04 18:22:28 | 00,085,504 | ---- | C] (Discreet, a division of Autodesk, Inc.) -- C:\Program Files\hrigfx.drv
[2004/10/04 18:22:28 | 00,035,448 | ---- | C] (Autodesk Inc.) -- C:\Program Files\ieproxy16.dll
[2004/10/04 18:22:28 | 00,009,728 | ---- | C] (Discreet, a division of Autodesk, Inc.) -- C:\Program Files\helpsys.dll
[2004/10/04 18:22:26 | 02,896,896 | ---- | C] (Discreet, a division of Autodesk, Inc.) -- C:\Program Files\gmi.dll
[2004/10/04 18:22:26 | 01,645,320 | ---- | C] (Microsoft Corporation) -- C:\Program Files\GdiPlus.dll
[2004/10/04 18:22:26 | 01,383,424 | ---- | C] (Discreet, a division of Autodesk, Inc.) -- C:\Program Files\edmodel.dll
[2004/10/04 18:22:26 | 01,196,085 | ---- | C] (Autodesk, Inc.) -- C:\Program Files\heidi7.dll
[2004/10/04 18:22:26 | 00,281,208 | ---- | C] (Autodesk, Inc.) -- C:\Program Files\Ereg.dll
[2004/10/04 18:22:26 | 00,106,496 | ---- | C] (Discreet, a division of Autodesk, Inc.) -- C:\Program Files\geom.dll
[2004/10/04 18:22:26 | 00,046,080 | ---- | C] (Discreet, a division of Autodesk, Inc.) -- C:\Program Files\geomimp.dll
[2004/10/04 18:22:26 | 00,036,352 | ---- | C] (Discreet, a division of Autodesk, Inc.) -- C:\Program Files\expr.dll
[2004/10/04 18:22:26 | 00,027,648 | ---- | C] (Discreet, a division of Autodesk, Inc.) -- C:\Program Files\gfx.dll
[2004/10/04 18:22:26 | 00,026,624 | ---- | C] (Discreet, a division of Autodesk, Inc.) -- C:\Program Files\gcomm2.dll
[2004/10/04 18:22:26 | 00,023,552 | ---- | C] (Discreet, a division of Autodesk, Inc.) -- C:\Program Files\flt.dll
[2004/10/04 18:22:26 | 00,017,016 | ---- | C] (Autodesk, Inc.) -- C:\Program Files\EregRes.dll
[2004/10/04 18:22:26 | 00,012,288 | ---- | C] (Discreet, a division of Autodesk, Inc.) -- C:\Program Files\gup.dll
[2004/10/04 18:22:24 | 05,264,896 | ---- | C] (Discreet, a division of Autodesk, Inc.) -- C:\Program Files\core.dll
[2004/10/04 18:22:24 | 00,837,632 | ---- | C] (Discreet, a division of Autodesk, Inc.) -- C:\Program Files\d3dgfx.drv
[2004/10/04 18:22:24 | 00,534,016 | ---- | C] (Discreet, a division of Autodesk, Inc.) -- C:\Program Files\d3d81gfx.drv
[2004/10/04 18:22:24 | 00,486,400 | ---- | C] (Microsoft Corporation) -- C:\Program Files\dbghelp.dll
[2004/10/04 18:22:24 | 00,225,280 | ---- | C] (Discreet, a division of Autodesk, Inc.) -- C:\Program Files\bmm.dll
[2004/10/04 18:22:24 | 00,139,264 | ---- | C] (Discreet, a division of Autodesk, Inc.) -- C:\Program Files\composite.dll
[2004/10/04 18:22:24 | 00,092,160 | ---- | C] (Discreet, a division of Autodesk, Inc.) -- C:\Program Files\CustDlg.dll
[2004/10/04 18:22:24 | 00,017,920 | ---- | C] (Discreet, a division of Autodesk, Inc.) -- C:\Program Files\DbxHost.dll
[2004/10/04 18:22:24 | 00,016,384 | ---- | C] (Discreet, a division of Autodesk, Inc.) -- C:\Program Files\cfgmgr.dll
[2004/10/04 18:22:22 | 00,084,992 | ---- | C] (Microsoft Corporation) -- C:\Program Files\Atl70.dll
[2004/10/04 18:22:20 | 03,604,480 | ---- | C] (ATI Research Silicon Valley Inc.) -- C:\Program Files\Ashli.dll
[2004/10/04 18:22:20 | 00,300,544 | ---- | C] (Discreet, a division of Autodesk, Inc.) -- C:\Program Files\Amodeler.dll
[2004/10/04 18:22:20 | 00,104,448 | ---- | C] (Microsoft Corporation) -- C:\Program Files\apphelp.dll
[2004/10/04 18:22:20 | 00,078,968 | ---- | C] (Autodesk, Inc.) -- C:\Program Files\adlmres.dll
[2004/10/04 18:22:18 | 01,878,548 | ---- | C] (Autodesk, Inc.) -- C:\Program Files\adlmdll.dll
[2004/10/04 18:22:18 | 00,349,392 | ---- | C] (Lassalle Technologies) -- C:\Program Files\addflow4.ocx
[2004/10/04 18:22:18 | 00,223,864 | ---- | C] (Autodesk, Inc.) -- C:\Program Files\acismobj16.dbx
 
(part 12)
[2004/10/04 18:22:16 | 05,129,728 | ---- | C] (Discreet, a division of Autodesk, Inc.) -- C:\Program Files\3dsmax.exe
[2004/10/04 18:22:16 | 00,126,464 | ---- | C] (Discreet, a division of Autodesk, Inc.) -- C:\Program Files\3dsmaxcmd.exe
[2004/10/04 18:22:16 | 00,033,280 | ---- | C] (Discreet, a division of Autodesk, Inc.) -- C:\Program Files\acap.dll
[1 C:\WINDOWS\System32\drivers\*.tmp files -> C:\WINDOWS\System32\drivers\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2009/11/17 17:25:36 | 00,529,408 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Tony Collins\Desktop\OTL.exe
[2009/11/17 16:54:42 | 00,000,735 | ---- | M] () -- C:\WINDOWS\System32\eRLog.ini
[2009/11/17 16:54:26 | 00,000,098 | ---- | M] () -- C:\WINDOWS\ComponentList.xml
[2009/11/17 16:54:02 | 00,000,880 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2009/11/17 16:54:00 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2009/11/17 16:53:52 | 00,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2009/11/17 16:53:48 | 10,718,78144 | -HS- | M] () -- C:\hiberfil.sys
[2009/11/17 15:14:38 | 00,081,984 | ---- | M] () -- C:\WINDOWS\System32\bdod.bin
[2009/11/17 15:14:28 | 04,980,736 | -H-- | M] () -- C:\Documents and Settings\Tony Collins\NTUSER.DAT
[2009/11/17 15:14:28 | 00,000,278 | -HS- | M] () -- C:\Documents and Settings\Tony Collins\ntuser.ini
[2009/11/17 14:41:02 | 00,000,884 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2009/11/17 14:26:58 | 00,000,227 | ---- | M] () -- C:\WINDOWS\system.ini
[2009/11/17 11:25:42 | 10,191,130 | -H-- | M] () -- C:\Documents and Settings\Tony Collins\Local Settings\Application Data\IconCache.db
[2009/11/17 11:25:34 | 00,001,065 | ---- | M] () -- C:\WINDOWS\win.ini
[2009/11/17 11:25:34 | 00,000,264 | RHS- | M] () -- C:\BOOT.INI
[2009/11/17 10:49:48 | 03,564,038 | R--- | M] () -- C:\Documents and Settings\Tony Collins\Desktop\ComboFix.exe
[2009/11/14 21:39:36 | 00,000,256 | ---- | M] () -- C:\sccfg.sys
[2009/11/14 21:25:16 | 00,291,840 | ---- | M] () -- C:\Documents and Settings\Tony Collins\Desktop\3kr7vcfc.exe
[2009/11/14 01:47:58 | 00,260,608 | ---- | M] () -- C:\WINDOWS\PEV.exe
[2009/11/12 20:33:40 | 00,001,126 | ---- | M] () -- C:\WINDOWS\System32\BDUpdateV1.xml
[2009/11/11 21:31:24 | 00,002,643 | ---- | M] () -- C:\Program Files\3dsmax.ini
[2009/11/11 21:31:22 | 00,000,064 | ---- | M] () -- C:\Program Files\maxscrpt.dsk
[2009/11/11 20:22:52 | 00,271,872 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Tony Collins\Desktop\TFC.exe
[2009/11/11 14:22:40 | 00,579,040 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2009/11/07 22:00:10 | 00,000,036 | ---- | M] () -- C:\WINDOWS\ukid.INI
[2009/11/07 20:03:54 | 00,077,824 | ---- | M] () -- C:\Documents and Settings\Tony Collins\My Documents\Cliparts.cld
[2009/11/07 18:07:14 | 00,000,029 | ---- | M] () -- C:\WINDOWS\CDMKR32.INI
[2009/11/07 16:24:46 | 00,001,024 | RH-- | M] () -- C:\WINDOWS\System32\NTIBUN4.dll
[2009/11/07 16:21:18 | 00,001,024 | RH-- | M] () -- C:\WINDOWS\System32\NTIMPEG2.dll
[2009/11/07 16:21:18 | 00,001,024 | RH-- | M] () -- C:\WINDOWS\System32\NTIMP3.dll
[2009/11/07 16:21:18 | 00,001,024 | RH-- | M] () -- C:\WINDOWS\System32\NTIFCD3.dll
[2009/11/07 16:21:18 | 00,001,024 | RH-- | M] () -- C:\WINDOWS\System32\NTICDMK7.dll
[2009/11/07 16:21:14 | 00,006,144 | ---- | M] (NewTech Infosystems, Inc.) -- C:\WINDOWS\System32\drivers\NTIDrvr.sys
[2009/11/05 23:09:04 | 00,001,575 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\RC Plane Master.lnk
[2009/11/05 17:36:22 | 26,768,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\MRT.exe
[2009/11/04 22:21:28 | 00,000,782 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Advanced SystemCare.lnk
[2009/11/04 01:35:12 | 00,000,194 | ---- | M] () -- C:\Boot.bak
[2009/11/03 20:01:58 | 00,000,324 | ---- | M] () -- C:\Documents and Settings\Tony Collins\My Documents\Registry Backup 3.reg
[2009/11/03 19:59:52 | 00,001,180 | ---- | M] () -- C:\Documents and Settings\Tony Collins\My Documents\Registry Backup 2.reg
[2009/11/03 19:58:00 | 00,086,334 | ---- | M] () -- C:\Documents and Settings\Tony Collins\My Documents\Registry Backup.reg
[2009/11/01 23:29:22 | 00,001,581 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\PhoenixRC Demo.lnk
[2009/11/01 22:16:40 | 00,008,704 | ---- | M] () -- C:\Documents and Settings\Tony Collins\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009/10/29 20:34:44 | 00,359,822 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2009/10/29 20:34:44 | 00,316,418 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2009/10/29 20:34:44 | 00,041,910 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2009/10/29 14:08:28 | 00,051,982 | ---- | M] () -- C:\Documents and Settings\Tony Collins\My Documents\spitfire.ico
[2009/10/29 13:52:02 | 00,000,007 | ---- | M] () -- C:\ISACER.id
[2009/10/29 00:43:02 | 00,008,262 | ---- | M] () -- C:\WINDOWS\System32\planemaster.ico
[2009/10/28 10:44:34 | 00,001,744 | ---- | M] () -- C:\WINDOWS\System32\kwa9gen1.ocx
[2009/10/28 10:44:34 | 00,000,008 | ---- | M] () -- C:\WINDOWS\System32\uni4bpu7.ocx
[2009/10/27 19:20:38 | 00,005,040 | ---- | M] () -- C:\WINDOWS\System32\esnecil.ind
[2009/10/27 16:01:28 | 00,001,158 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2009/10/27 15:59:40 | 00,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb
[2009/10/27 15:59:40 | 00,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb
[2009/10/27 15:57:48 | 00,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf
[2009/10/27 12:00:10 | 00,074,703 | ---- | M] () -- C:\WINDOWS\System32\mfc45.dll
[2009/10/27 11:56:48 | 00,005,040 | ---- | M] () -- C:\WINDOWS\System32\esnecil.nlp
[2009/10/27 11:55:48 | 00,183,952 | ---- | M] () -- C:\Documents and Settings\Tony Collins\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
[2009/10/27 11:44:10 | 00,000,051 | ---- | M] () -- C:\WINDOWS\Crypkey.ini
[2009/10/27 11:35:52 | 00,000,000 | ---- | M] () -- C:\WINDOWS\MTSTACK.INI
[2009/10/27 01:04:50 | 00,001,393 | ---- | M] () -- C:\Documents and Settings\Tony Collins\Desktop\Solitaire.lnk
[2009/10/26 23:27:22 | 00,185,920 | ---- | M] (RealNetworks, Inc.) -- C:\WINDOWS\System32\rmoc3260.dll
[2009/10/26 23:26:58 | 00,006,656 | ---- | M] (RealNetworks, Inc.) -- C:\WINDOWS\System32\pndx5016.dll
[2009/10/26 23:26:58 | 00,005,632 | ---- | M] (RealNetworks, Inc.) -- C:\WINDOWS\System32\pndx5032.dll
[2009/10/26 23:26:18 | 00,278,528 | ---- | M] (Real Networks, Inc) -- C:\WINDOWS\System32\pncrt.dll
[2009/10/26 22:51:56 | 00,013,524 | ---- | M] () -- C:\WINDOWS\MAGIX midi studio g6.PRF
[2009/10/26 22:49:58 | 00,000,746 | -HS- | M] () -- C:\midi studio g6.Key
[2009/10/26 22:49:40 | 00,004,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\w95inf32.dll
[2009/10/26 22:49:40 | 00,002,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\w95inf16.dll
[2009/10/26 22:49:34 | 00,000,069 | ---- | M] () -- C:\WINDOWS\magix.ini
[2009/10/26 22:06:16 | 00,000,114 | ---- | M] () -- C:\Program Files\plugin.ini
[2009/10/26 21:35:50 | 00,000,376 | ---- | M] () -- C:\WINDOWS\ODBC.INI
[2009/10/26 21:30:20 | 00,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx
[2009/10/26 21:25:52 | 00,024,192 | ---- | M] (Microsoft Corporation) -- C:\Documents and Settings\Tony Collins\usbsermptxp.sys
[2009/10/26 21:25:52 | 00,022,768 | ---- | M] (Microsoft Corporation) -- C:\Documents and Settings\Tony Collins\usbsermpt.sys
[2009/10/26 21:25:52 | 00,007,195 | ---- | M] () -- C:\Documents and Settings\Tony Collins\USBMOT2000.INF
[2009/10/26 21:25:52 | 00,005,891 | ---- | M] () -- C:\Documents and Settings\Tony Collins\USBMOT2000XP.INF
[2009/10/26 21:25:52 | 00,005,877 | ---- | M] () -- C:\Documents and Settings\Tony Collins\USB_CMCS_2000.INF
[2009/10/26 21:16:14 | 00,250,048 | RHS- | M] () -- C:\ntldr
 
(part 13)
[2009/10/26 20:30:56 | 00,000,121 | ---- | M] () -- C:\WINDOWS\bdagent.INI
[2009/10/26 20:20:08 | 00,000,850 | ---- | M] () -- C:\WINDOWS\System32\ProductTweaks.xml
[2009/10/26 20:20:08 | 00,000,385 | ---- | M] () -- C:\WINDOWS\System32\user_gensett.xml
[2009/10/26 19:00:44 | 00,001,424 | ---- | M] () -- C:\Documents and Settings\Tony Collins\Desktop\Freecell.lnk
[2009/10/26 16:49:50 | 00,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2009/10/26 07:23:22 | 00,000,165 | ---- | M] () -- C:\WINDOWS\setup.iss
[2009/10/26 07:14:00 | 00,000,000 | ---- | M] () -- C:\WINDOWS\OpPrintServer.INI
[2009/10/26 07:06:00 | 00,000,395 | ---- | M] () -- C:\WINDOWS\MAXLINK.INI
[2009/10/26 05:17:48 | 00,001,519 | ---- | M] () -- C:\Documents and Settings\Tony Collins\Desktop\My Free Mahjong.lnk
[2009/10/26 05:14:48 | 00,000,038 | ---- | M] () -- C:\BdUninstallTool2009.10.26-05.14.30.reg
[2009/10/26 04:29:00 | 00,000,000 | ---- | M] () -- C:\WINDOWS\nsreg.dat
[2009/10/26 04:27:54 | 00,081,920 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) -- C:\WINDOWS\System32\W32N50.dll
[2009/10/26 04:27:54 | 00,017,134 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) -- C:\WINDOWS\System32\PCANDIS5.sys
[2009/10/26 04:19:18 | 00,000,170 | ---- | M] () -- C:\WINDOWS\User.xml
[2009/10/26 04:17:36 | 00,000,092 | ---- | M] () -- C:\WINDOWS\GridV.UNI
[2009/10/26 04:12:26 | 00,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2009/10/26 04:12:26 | 00,000,000 | RHS- | M] () -- C:\IO.SYS
[2009/10/26 04:06:26 | 00,000,575 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf
[2009/10/26 04:06:24 | 00,262,144 | ---- | M] () -- C:\Documents and Settings\All Users\NTUSER.DAT
[2009/10/25 06:11:36 | 00,077,312 | ---- | M] () -- C:\WINDOWS\MBR.exe
[2009/10/22 09:19:04 | 05,939,712 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mshtml.dll
[2009/10/22 09:19:04 | 05,939,712 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mshtml.dll
[2009/10/20 11:44:34 | 00,001,794 | ---- | M] () -- C:\WINDOWS\System32\epid2110.dll
[1 C:\WINDOWS\System32\drivers\*.tmp files -> C:\WINDOWS\System32\drivers\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2009/11/17 10:49:21 | 03,564,038 | R--- | C] () -- C:\Documents and Settings\Tony Collins\Desktop\ComboFix.exe
[2009/11/17 10:27:12 | 00,731,136 | ---- | C] () -- C:\Documents and Settings\Tony Collins\Desktop\avenger.exe
[2009/11/14 21:25:20 | 00,291,840 | ---- | C] () -- C:\Documents and Settings\Tony Collins\Desktop\3kr7vcfc.exe
[2009/11/14 21:04:03 | 10,718,78144 | -HS- | C] () -- C:\hiberfil.sys
[2009/11/13 10:45:21 | 00,260,608 | ---- | C] () -- C:\WINDOWS\PEV.exe
[2009/11/13 10:45:21 | 00,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
[2009/11/13 10:45:21 | 00,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
[2009/11/13 10:45:21 | 00,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
[2009/11/08 20:39:31 | 00,002,990 | ---- | C] () -- C:\WINDOWS\System32\backgammon.ico
[2009/11/07 20:03:52 | 00,077,824 | ---- | C] () -- C:\Documents and Settings\Tony Collins\My Documents\Cliparts.cld
[2009/11/07 18:07:12 | 00,000,029 | ---- | C] () -- C:\WINDOWS\CDMKR32.INI
[2009/11/05 23:08:45 | 00,051,982 | ---- | C] () -- C:\Documents and Settings\Tony Collins\My Documents\spitfire.ico
[2009/11/05 00:27:15 | 00,000,194 | ---- | C] () -- C:\Boot.bak
[2009/11/05 00:27:12 | 00,260,272 | ---- | C] () -- C:\cmldr
[2009/11/05 00:25:56 | 00,077,312 | ---- | C] () -- C:\WINDOWS\MBR.exe
[2009/11/04 22:21:26 | 00,000,782 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Advanced SystemCare.lnk
[2009/11/04 11:12:52 | 10,191,130 | -H-- | C] () -- C:\Documents and Settings\Tony Collins\Local Settings\Application Data\IconCache.db
[2009/11/03 20:01:52 | 00,000,324 | ---- | C] () -- C:\Documents and Settings\Tony Collins\My Documents\Registry Backup 3.reg
[2009/11/03 19:59:47 | 00,001,180 | ---- | C] () -- C:\Documents and Settings\Tony Collins\My Documents\Registry Backup 2.reg
[2009/11/03 19:57:38 | 00,086,334 | ---- | C] () -- C:\Documents and Settings\Tony Collins\My Documents\Registry Backup.reg
[2009/11/01 23:29:20 | 00,001,581 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\PhoenixRC Demo.lnk
[2009/10/29 13:52:00 | 00,000,007 | ---- | C] () -- C:\ISACER.id
[2009/10/29 00:34:46 | 00,008,262 | ---- | C] () -- C:\WINDOWS\System32\planemaster.ico
[2009/10/28 10:44:34 | 00,001,794 | ---- | C] () -- C:\WINDOWS\System32\epid2110.dll
[2009/10/28 10:44:34 | 00,001,744 | ---- | C] () -- C:\WINDOWS\System32\kwa9gen1.ocx
[2009/10/28 10:44:34 | 00,000,008 | ---- | C] () -- C:\WINDOWS\System32\uni4bpu7.ocx
[2009/10/28 10:43:04 | 00,001,575 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\RC Plane Master.lnk
[2009/10/27 15:57:47 | 00,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf
[2009/10/27 12:00:08 | 00,074,703 | ---- | C] () -- C:\WINDOWS\System32\mfc45.dll
[2009/10/27 11:56:46 | 00,005,040 | ---- | C] () -- C:\WINDOWS\System32\esnecil.nlp
[2009/10/27 11:56:46 | 00,005,040 | ---- | C] () -- C:\WINDOWS\System32\esnecil.ind
[2009/10/27 11:45:45 | 00,000,036 | ---- | C] () -- C:\WINDOWS\ukid.INI
[2009/10/27 11:44:09 | 00,000,051 | ---- | C] () -- C:\WINDOWS\Crypkey.ini
[2009/10/27 11:44:05 | 00,027,648 | R--- | C] () -- C:\WINDOWS\Setup_ck.exe
[2009/10/27 11:44:05 | 00,024,608 | ---- | C] () -- C:\WINDOWS\System32\Ckldrv.sys
[2009/10/27 11:44:05 | 00,018,432 | ---- | C] () -- C:\WINDOWS\Setup_ck.dll
[2009/10/27 11:44:05 | 00,011,776 | ---- | C] () -- C:\WINDOWS\Ckrfresh.exe
[2009/10/27 11:35:51 | 00,000,000 | ---- | C] () -- C:\WINDOWS\MTSTACK.INI
[2009/10/26 23:34:32 | 00,008,704 | ---- | C] () -- C:\Documents and Settings\Tony Collins\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009/10/26 23:31:56 | 00,000,884 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2009/10/26 23:31:56 | 00,000,880 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2009/10/26 23:03:59 | 00,000,256 | ---- | C] () -- C:\sccfg.sys
[2009/10/26 22:51:55 | 00,013,524 | ---- | C] () -- C:\WINDOWS\MAGIX midi studio g6.PRF
[2009/10/26 22:49:56 | 00,000,746 | -HS- | C] () -- C:\midi studio g6.Key
[2009/10/26 22:49:39 | 00,010,240 | ---- | C] () -- C:\WINDOWS\System32\vidx16.dll
[2009/10/26 22:49:39 | 00,005,672 | ---- | C] () -- C:\WINDOWS\System32\quartz.vxd
[2009/10/26 22:49:34 | 00,035,422 | ---- | C] () -- C:\WINDOWS\System32\EASIMME.hlp
[2009/10/26 22:49:34 | 00,026,624 | ---- | C] () -- C:\WINDOWS\System32\LOG_DS.AX
[2009/10/26 22:49:34 | 00,007,368 | ---- | C] () -- C:\WINDOWS\System32\PlugIn Enabler.hlp
 
(part 14)
[2009/10/26 22:48:20 | 00,000,069 | ---- | C] () -- C:\WINDOWS\magix.ini
[2009/10/26 22:48:19 | 00,000,603 | ---- | C] () -- C:\WINDOWS\mgxoschk.ini
[2009/10/26 22:10:55 | 00,000,064 | ---- | C] () -- C:\Program Files\maxscrpt.dsk
[2009/10/26 22:10:41 | 00,000,000 | ---- | C] () -- C:\Program Files\RtDxStdMtl2.log
[2009/10/26 22:06:15 | 00,002,643 | ---- | C] () -- C:\Program Files\3dsmax.ini
[2009/10/26 22:06:15 | 00,000,114 | ---- | C] () -- C:\Program Files\plugin.ini
[2009/10/26 21:35:48 | 00,000,376 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2009/10/26 21:25:50 | 00,007,195 | ---- | C] () -- C:\Documents and Settings\Tony Collins\USBMOT2000.INF
[2009/10/26 21:25:50 | 00,005,891 | ---- | C] () -- C:\Documents and Settings\Tony Collins\USBMOT2000XP.INF
[2009/10/26 21:25:50 | 00,005,877 | ---- | C] () -- C:\Documents and Settings\Tony Collins\USB_CMCS_2000.INF
[2009/10/26 21:00:39 | 00,001,126 | ---- | C] () -- C:\WINDOWS\System32\BDUpdateV1.xml
[2009/10/26 20:45:53 | 00,022,060 | ---- | C] () -- C:\WINDOWS\System32\dllcache\npds.zip
[2009/10/26 20:45:53 | 00,000,403 | ---- | C] () -- C:\WINDOWS\System32\dllcache\npdrmv2.zip
[2009/10/26 20:45:52 | 00,375,519 | ---- | C] () -- C:\WINDOWS\System32\dllcache\nuskin.wmv
[2009/10/26 20:45:52 | 00,077,307 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plyr_err.chm
[2009/10/26 20:45:51 | 00,572,557 | ---- | C] () -- C:\WINDOWS\System32\dllcache\rtuner.wmv
[2009/10/26 20:45:51 | 00,300,969 | ---- | C] () -- C:\WINDOWS\System32\dllcache\viz.wmv
[2009/10/26 20:45:51 | 00,023,829 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tourbg.gif
[2009/10/26 20:45:51 | 00,017,489 | ---- | C] () -- C:\WINDOWS\System32\dllcache\videobg.gif
[2009/10/26 20:45:51 | 00,005,789 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm1.gif
[2009/10/26 20:45:51 | 00,005,290 | ---- | C] () -- C:\WINDOWS\System32\dllcache\vidsamp.gif
[2009/10/26 20:45:51 | 00,003,187 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tour.js
[2009/10/26 20:45:51 | 00,002,469 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tplay.gif
[2009/10/26 20:45:51 | 00,002,450 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tpause.gif
[2009/10/26 20:45:51 | 00,002,375 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tplayh.gif
[2009/10/26 20:45:51 | 00,002,371 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tpauseh.gif
[2009/10/26 20:45:51 | 00,001,398 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taon.gif
[2009/10/26 20:45:51 | 00,001,380 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taonh.gif
[2009/10/26 20:45:51 | 00,001,380 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taoff.gif
[2009/10/26 20:45:51 | 00,001,367 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taoffh.gif
[2009/10/26 20:45:51 | 00,001,148 | ---- | C] () -- C:\WINDOWS\System32\dllcache\snd.htm
[2009/10/26 20:45:51 | 00,000,908 | ---- | C] () -- C:\WINDOWS\System32\dllcache\skins.inf
[2009/10/26 20:45:50 | 00,354,468 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud1.wav
[2009/10/26 20:45:50 | 00,343,204 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud7.wav
[2009/10/26 20:45:50 | 00,343,204 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud6.wav
[2009/10/26 20:45:50 | 00,172,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud9.wav
[2009/10/26 20:45:50 | 00,172,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud8.wav
[2009/10/26 20:45:50 | 00,172,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud3.wav
[2009/10/26 20:45:50 | 00,086,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud5.wav
[2009/10/26 20:45:50 | 00,086,180 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud4.wav
[2009/10/26 20:45:50 | 00,086,180 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud2.wav
[2009/10/26 20:45:50 | 00,017,272 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmdm.inf
[2009/10/26 20:45:50 | 00,008,677 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm7.gif
[2009/10/26 20:45:50 | 00,007,892 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm9.gif
[2009/10/26 20:45:50 | 00,007,636 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm2.gif
[2009/10/26 20:45:50 | 00,007,369 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm4.gif
[2009/10/26 20:45:50 | 00,006,769 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmfsdk.inf
[2009/10/26 20:45:50 | 00,006,241 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm3.gif
[2009/10/26 20:45:50 | 00,006,060 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm6.gif
[2009/10/26 20:45:50 | 00,004,193 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm8.gif
[2009/10/26 20:45:50 | 00,002,477 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm5.gif
[2009/10/26 20:45:49 | 00,613,334 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmplayer.chm
[2009/10/26 20:45:49 | 00,010,457 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmptour.hta
[2009/10/26 20:45:49 | 00,001,771 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmptour.css
[2009/10/26 20:45:49 | 00,000,855 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpocm.inf
[2009/10/26 20:45:49 | 00,000,420 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmploc.js
[2009/10/26 20:45:46 | 00,097,117 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplayer2.hlp
[2009/10/26 20:45:46 | 00,067,866 | ---- | C] () -- C:\WINDOWS\System32\drivers\netwlan5.img
[2009/10/26 20:45:46 | 00,001,885 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplayer2.cnt
[2009/10/26 20:45:46 | 00,001,477 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst6.wpl
[2009/10/26 20:45:46 | 00,001,477 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst5.wpl
[2009/10/26 20:45:46 | 00,001,474 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst3.wpl
[2009/10/26 20:45:46 | 00,001,451 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst12.wpl
[2009/10/26 20:45:46 | 00,001,448 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst4.wpl
[2009/10/26 20:45:46 | 00,001,250 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst1.wpl
[2009/10/26 20:45:46 | 00,001,049 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst2.wpl
[2009/10/26 20:45:46 | 00,001,046 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst7.wpl
[2009/10/26 20:45:46 | 00,001,036 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst8.wpl
[2009/10/26 20:45:46 | 00,000,789 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst11.wpl
[2009/10/26 20:45:46 | 00,000,787 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst10.wpl
[2009/10/26 20:45:46 | 00,000,784 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst9.wpl
[2009/10/26 20:45:46 | 00,000,783 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst13.wpl
[2009/10/26 20:45:46 | 00,000,775 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst14.wpl
[2009/10/26 20:45:46 | 00,000,733 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst15.wpl
[2009/10/26 20:44:46 | 00,381,425 | ---- | C] () -- C:\WINDOWS\System32\dllcache\copycd.wmv
[2009/10/26 20:44:46 | 00,129,045 | ---- | C] () -- C:\WINDOWS\System32\drivers\cxthsfs2.cty
[2009/10/26 20:44:46 | 00,009,585 | ---- | C] () -- C:\WINDOWS\System32\dllcache\controls.css
[2009/10/26 20:44:46 | 00,008,298 | ---- | C] () -- C:\WINDOWS\System32\dllcache\contents.htm
[2009/10/26 20:44:46 | 00,006,878 | ---- | C] () -- C:\WINDOWS\System32\dllcache\controls.js
[2009/10/26 20:44:46 | 00,000,999 | ---- | C] () -- C:\WINDOWS\System32\dllcache\bktrh.gif
[2009/10/26 20:44:46 | 00,000,773 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cnth.gif
[2009/10/26 20:44:46 | 00,000,773 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cnt.gif
[2009/10/26 20:44:46 | 00,000,772 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cntd.gif
[2009/10/26 20:44:46 | 00,000,760 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cloapph.gif
[2009/10/26 20:44:46 | 00,000,717 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cloapp.gif
[2009/10/26 20:44:45 | 00,005,971 | ---- | C] () -- C:\WINDOWS\System32\dllcache\events.js
[2009/10/26 20:44:44 | 00,064,352 | ---- | C] () -- C:\WINDOWS\System32\drivers\ativmc20.cod
[2009/10/26 20:44:43 | 00,457,607 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mdlib.wmv
[2009/10/26 20:44:42 | 00,018,286 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplayer2.inf
[2009/10/26 20:44:42 | 00,002,778 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplogoh.gif
[2009/10/26 20:44:42 | 00,002,545 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplogo.gif
[2009/10/26 20:30:54 | 00,000,121 | ---- | C] () -- C:\WINDOWS\bdagent.INI
[2009/10/26 20:29:06 | 00,081,984 | ---- | C] () -- C:\WINDOWS\System32\bdod.bin
[2009/10/26 20:24:34 | 01,203,922 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sysmain.sdb
[2009/10/26 20:20:07 | 00,000,850 | ---- | C] () -- C:\WINDOWS\System32\ProductTweaks.xml
[2009/10/26 20:20:06 | 00,000,385 | ---- | C] () -- C:\WINDOWS\System32\user_gensett.xml
[2009/10/26 16:49:49 | 00,000,284 | ---- | C] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2009/10/26 16:25:44 | 00,015,317 | R--- | C] () -- C:\WINDOWS\PP508.INI
[2009/10/26 16:25:44 | 00,010,549 | R--- | C] () -- C:\WINDOWS\PP508.SRC
[2009/10/26 07:23:21 | 00,000,165 | ---- | C] () -- C:\WINDOWS\setup.iss
[2009/10/26 07:23:07 | 00,011,776 | ---- | C] () -- C:\WINDOWS\System32\pmsbfn32.dll
[2009/10/26 07:13:58 | 00,000,000 | ---- | C] () -- C:\WINDOWS\OpPrintServer.INI
[2009/10/26 07:05:59 | 00,000,395 | ---- | C] () -- C:\WINDOWS\MAXLINK.INI
[2009/10/26 05:17:46 | 00,001,519 | ---- | C] () -- C:\Documents and Settings\Tony Collins\Desktop\My Free Mahjong.lnk
 
(part 15)
[2009/10/26 05:14:30 | 00,000,038 | ---- | C] () -- C:\BdUninstallTool2009.10.26-05.14.30.reg
[2009/10/26 04:58:13 | 00,001,393 | ---- | C] () -- C:\Documents and Settings\Tony Collins\Desktop\Solitaire.lnk
[2009/10/26 04:58:00 | 00,001,424 | ---- | C] () -- C:\Documents and Settings\Tony Collins\Desktop\Freecell.lnk
[2009/10/26 04:28:58 | 00,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2009/10/26 04:17:35 | 00,000,092 | ---- | C] () -- C:\WINDOWS\GridV.UNI
[2009/10/26 04:17:21 | 00,183,952 | ---- | C] () -- C:\Documents and Settings\Tony Collins\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
[2009/10/26 04:14:44 | 00,000,735 | ---- | C] () -- C:\WINDOWS\System32\eRLog.ini
[2009/10/26 04:12:25 | 03,318,626 | ---- | C] () -- C:\WINDOWS\as_1280x800.swf
[2009/10/26 04:12:24 | 00,000,000 | RHS- | C] () -- C:\MSDOS.SYS
[2009/10/26 04:12:24 | 00,000,000 | RHS- | C] () -- C:\IO.SYS
[2009/10/26 04:08:02 | 00,000,062 | -HS- | C] () -- C:\Documents and Settings\Tony Collins\Application Data\desktop.ini
[2009/10/26 04:08:00 | 00,000,278 | -HS- | C] () -- C:\Documents and Settings\Tony Collins\ntuser.ini
[2009/10/26 04:07:59 | 04,980,736 | -H-- | C] () -- C:\Documents and Settings\Tony Collins\NTUSER.DAT
[2009/10/26 04:06:23 | 00,262,144 | ---- | C] () -- C:\Documents and Settings\All Users\NTUSER.DAT
[2009/01/05 15:44:10 | 00,000,453 | ---- | C] () -- C:\WINDOWS\bdoscandellang.ini
[2008/10/09 16:31:54 | 00,192,512 | ---- | C] () -- C:\WINDOWS\System32\txmlutil.dll
[2007/01/31 14:50:32 | 00,913,408 | ---- | C] () -- C:\WINDOWS\System32\xreglib.dll
[2005/04/02 10:44:46 | 00,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2005/04/02 10:11:10 | 00,000,033 | ---- | C] () -- C:\WINDOWS\Acer.ini
[2005/04/02 10:11:09 | 00,001,150 | ---- | C] () -- C:\WINDOWS\System32\oeminfo.ini
[2005/04/02 10:11:08 | 00,872,448 | ---- | C] () -- C:\WINDOWS\iconv.dll
[2005/04/02 10:11:08 | 00,743,424 | ---- | C] () -- C:\WINDOWS\libxml2.dll
[2005/04/02 10:11:08 | 00,081,920 | ---- | C] () -- C:\WINDOWS\Capsule.dll
[2005/04/02 09:24:56 | 00,001,024 | RH-- | C] () -- C:\WINDOWS\System32\NTIBUN4.dll
[2005/04/02 09:24:05 | 00,001,024 | RH-- | C] () -- C:\WINDOWS\System32\NTIMPEG2.dll
[2005/04/02 09:24:05 | 00,001,024 | RH-- | C] () -- C:\WINDOWS\System32\NTIMP3.dll
[2005/04/02 09:24:05 | 00,001,024 | RH-- | C] () -- C:\WINDOWS\System32\NTIFCD3.dll
[2005/04/02 09:24:05 | 00,001,024 | RH-- | C] () -- C:\WINDOWS\System32\NTICDMK7.dll
[2005/04/02 09:19:23 | 00,000,052 | ---- | C] () -- C:\WINDOWS\Apire Series.ini
[2005/04/02 09:18:08 | 00,156,672 | ---- | C] () -- C:\WINDOWS\System32\RtlCPAPI.dll
[2005/04/02 09:17:43 | 00,009,867 | ---- | C] () -- C:\WINDOWS\System32\drivers\HOTKEY.sys
[2005/03/10 07:42:21 | 00,168,960 | ---- | C] () -- C:\WINDOWS\System32\sfsshell.dll
[2004/12/17 17:14:44 | 00,013,952 | ---- | C] () -- C:\WINDOWS\System32\drivers\UBHelper.sys
[2004/10/04 18:22:40 | 01,911,296 | ---- | C] () -- C:\Program Files\splash.fla
[2004/10/04 18:22:40 | 00,113,557 | ---- | C] () -- C:\Program Files\splash.swf
[2004/10/04 18:22:40 | 00,025,470 | ---- | C] () -- C:\Program Files\splash.cfg
[2004/10/04 18:22:34 | 00,143,360 | ---- | C] () -- C:\Program Files\model.dll
[2004/10/04 18:22:32 | 00,004,590 | ---- | C] () -- C:\Program Files\max.tres
[2004/10/04 18:22:32 | 00,004,096 | ---- | C] () -- C:\Program Files\MaxIges.msx
[2004/10/04 18:22:30 | 01,032,266 | ---- | C] () -- C:\Program Files\libmmd.dll
[2004/10/04 18:22:28 | 00,398,456 | ---- | C] () -- C:\Program Files\ie80.dll
[2004/10/04 18:22:28 | 00,078,968 | ---- | C] () -- C:\Program Files\iejfifrd80.dll
[2004/10/04 18:22:28 | 00,066,680 | ---- | C] () -- C:\Program Files\iepngrd80.dll
[2004/10/04 18:22:28 | 00,054,904 | ---- | C] () -- C:\Program Files\iejfifwr80.dll
[2004/10/04 18:22:28 | 00,054,392 | ---- | C] () -- C:\Program Files\iepngwr80.dll
[2004/10/04 18:22:28 | 00,030,840 | ---- | C] () -- C:\Program Files\ietiffrd80.dll
[2004/10/04 18:22:28 | 00,030,328 | ---- | C] () -- C:\Program Files\ietiffwr80.dll
[2004/10/04 18:22:28 | 00,023,672 | ---- | C] () -- C:\Program Files\iepictrd80.dll
[2004/10/04 18:22:28 | 00,023,160 | ---- | C] () -- C:\Program Files\iespotrd80.dll
[2004/10/04 18:22:28 | 00,023,160 | ---- | C] () -- C:\Program Files\ierlcrw80.dll
[2004/10/04 18:22:28 | 00,022,528 | ---- | C] () -- C:\Program Files\IgesTrans.msx
[2004/10/04 18:22:28 | 00,019,576 | ---- | C] () -- C:\Program Files\ieig4rd80.dll
[2004/10/04 18:22:28 | 00,019,064 | ---- | C] () -- C:\Program Files\ieigsrd80.dll
[2004/10/04 18:22:28 | 00,018,432 | ---- | C] () -- C:\Program Files\IgesLog.msx
[2004/10/04 18:22:28 | 00,017,528 | ---- | C] () -- C:\Program Files\ietgard80.dll
[2004/10/04 18:22:28 | 00,016,504 | ---- | C] () -- C:\Program Files\ieflicwr80.dll
[2004/10/04 18:22:28 | 00,015,480 | ---- | C] () -- C:\Program Files\ieflicrd80.dll
[2004/10/04 18:22:28 | 00,014,968 | ---- | C] () -- C:\Program Files\iebmprd80.dll
[2004/10/04 18:22:28 | 00,014,456 | ---- | C] () -- C:\Program Files\iepcxrd80.dll
[2004/10/04 18:22:28 | 00,013,432 | ---- | C] () -- C:\Program Files\ietgawr80.dll
[2004/10/04 18:22:28 | 00,013,432 | ---- | C] () -- C:\Program Files\iecalsrd80.dll
[2004/10/04 18:22:28 | 00,013,432 | ---- | C] () -- C:\Program Files\iebmpwr80.dll
[2004/10/04 18:22:28 | 00,012,920 | ---- | C] () -- C:\Program Files\iepcxwr80.dll
[2004/10/04 18:22:28 | 00,012,920 | ---- | C] () -- C:\Program Files\iecalswr80.dll
[2004/10/04 18:22:28 | 00,000,610 | ---- | C] () -- C:\Program Files\hotkeyMap.html
[2004/10/04 18:22:26 | 00,002,048 | ---- | C] () -- C:\Program Files\DxTrans.msx
[2004/10/04 18:22:24 | 00,069,632 | ---- | C] () -- C:\Program Files\CdaLCDlg.dll
[2004/10/04 18:22:24 | 00,001,753 | ---- | C] () -- C:\Program Files\B2A7B000plu250.cfg
[2004/10/04 18:22:24 | 00,000,148 | ---- | C] () -- C:\Program Files\CrashHandler.ini
[2004/10/04 18:22:20 | 00,281,088 | ---- | C] () -- C:\Program Files\AdskScInst.dll
[2004/10/04 18:22:20 | 00,032,447 | ---- | C] () -- C:\Program Files\AdlmLog.xml
[2004/09/14 13:01:42 | 00,001,793 | ---- | C] () -- C:\WINDOWS\System32\fxsperf.ini
[2004/09/14 12:56:41 | 00,000,062 | -HS- | C] () -- C:\Documents and Settings\All Users\Application Data\desktop.ini
[2004/08/03 22:59:44 | 00,096,512 | ---- | C] () -- C:\WINDOWS\System32\drivers\atapi.sys
[2004/01/14 07:46:34 | 00,172,032 | ---- | C] () -- C:\WINDOWS\System32\tifmicon.dll
[2003/01/07 15:05:08 | 00,002,695 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI
[2002/03/21 12:51:52 | 00,503,808 | R--- | C] () -- C:\WINDOWS\System32\lt_xtrans.dll
[2002/03/21 12:51:52 | 00,286,720 | R--- | C] () -- C:\WINDOWS\System32\MrSIDD.dll
[2002/03/21 12:51:52 | 00,163,840 | R--- | C] () -- C:\WINDOWS\System32\lt_common.dll
[2002/03/21 12:51:52 | 00,126,976 | R--- | C] () -- C:\WINDOWS\System32\lt_trans.dll
[2002/03/21 12:51:52 | 00,069,632 | R--- | C] () -- C:\WINDOWS\System32\lt_meta.dll
[2002/03/21 12:51:52 | 00,053,248 | R--- | C] () -- C:\WINDOWS\System32\lt_encrypt.dll
[2002/03/21 12:51:52 | 00,020,480 | R--- | C] () -- C:\WINDOWS\System32\lt_messagetext.dll
[2002/03/20 21:01:06 | 00,006,688 | R--- | C] () -- C:\WINDOWS\System32\Digita.sys
[2002/03/20 21:00:20 | 00,049,152 | R--- | C] () -- C:\WINDOWS\System32\TransportUSB.dll
[2002/03/20 21:00:20 | 00,049,152 | R--- | C] () -- C:\WINDOWS\System32\TransportSerial.dll
[2002/03/20 21:00:20 | 00,049,152 | R--- | C] () -- C:\WINDOWS\System32\TransportIrDA.dll
[2002/03/20 21:00:20 | 00,049,152 | R--- | C] () -- C:\WINDOWS\System32\TransportIrCOMM.dll
[2001/12/26 16:12:30 | 00,065,536 | R--- | C] () -- C:\WINDOWS\System32\multiplex_vcd.dll
[2001/09/03 23:46:38 | 00,110,592 | R--- | C] () -- C:\WINDOWS\System32\Hmpg12.dll
[2001/07/30 16:33:56 | 00,118,784 | R--- | C] () -- C:\WINDOWS\System32\HMPV2_ENC.dll
[2001/07/23 22:04:36 | 00,118,784 | R--- | C] () -- C:\WINDOWS\System32\HMPV2_ENC_MMX.dll
[1980/01/01 00:00:00 | 00,001,065 | ---- | C] () -- C:\WINDOWS\win.ini
[1980/01/01 00:00:00 | 00,000,227 | ---- | C] () -- C:\WINDOWS\system.ini
 
(part 16)
========== LOP Check ==========

[2009/10/26 07:05:54 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ScanSoft
[2009/10/26 07:13:00 | 00,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\CanonBJ
[2009/10/26 21:26:04 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\BVRP Software
[2009/10/26 22:05:50 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Autodesk
[2009/10/26 20:18:04 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\BitDefender
[2009/10/27 10:07:40 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\r2 Studios
[2009/10/27 11:58:56 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\iolo
[2009/11/01 21:58:20 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ACD Systems
[2009/11/09 23:09:10 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Trusteer
[2009/10/26 06:53:44 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Tony Collins\Application Data\Serif
[2009/10/26 07:05:58 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Tony Collins\Application Data\ScanSoft
[2009/10/26 07:27:14 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Tony Collins\Application Data\NewSoft
[2009/10/26 20:18:24 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Tony Collins\Application Data\BitDefender
[2009/10/27 10:07:40 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Tony Collins\Application Data\r2 Studios
[2009/10/31 16:33:34 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Tony Collins\Application Data\CD-LabelPrint
[2009/11/01 21:59:40 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Tony Collins\Application Data\ACD Systems
[2009/11/04 22:21:22 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Tony Collins\Application Data\IObit
[2009/11/09 23:10:28 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Tony Collins\Application Data\Trusteer
[2009/11/10 15:34:50 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Tony Collins\Application Data\Canon
[2004/08/04 05:00:00 | 00,000,065 | RH-- | M] () -- C:\WINDOWS\Tasks\desktop.ini
[2009/11/17 16:54:00 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\Tasks\SA.DAT

========== Purity Check ==========


< End of report >


That's the OTL log; Extras log to follow soon after a short break.
 
  • Please copy (Edit->Select All, Edit->Copy) the contents of these files, one at a time, and post it with your next reply. You may need two posts to fit them all in.
That's why he pasted it in

I think you obviously need to change the wording of your replies in furture to stop thie re-occurring again (I note: 18 log posts pasted in)
I note on all other Guides and support in the past, members have always stated Attach even for one small log
 
Now the Extras log:
(part 1)
OTL Extras logfile created on: 17/11/2009 17:30:52 - Run 1
OTL by OldTimer - Version 3.1.6.0 Folder = C:\Documents and Settings\Tony Collins\Desktop
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000809 | Country: United Kingdom | Language: ENG | Date Format: dd/MM/yyyy

1022.16 Mb Total Physical Memory | 633.95 Mb Available Physical Memory | 62.02% Memory free
2.40 Gb Paging File | 1.95 Gb Available in Paging File | 81.33% Paging File free
Paging file location(s): C:\pagefile.sys 1536 3072 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 45.15 Gb Total Space | 30.18 Gb Free Space | 66.83% Space Free | Partition Type: FAT32
Drive D: | 45.54 Gb Total Space | 42.04 Gb Free Space | 92.32% Space Free | Partition Type: FAT32
Drive E: | 203.37 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: ACER-684C9A655D
Current User Name: Tony Collins
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Minimal

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.chm [@ = chm.file] -- "%SYSTEMROOT%\hh.exe" %1
.html [@ = Reg Error: Value error.] -- Reg Error: Key error. File not found
.scr [@ = AutoCADScript] -- C:\WINDOWS\NOTEPAD.EXE (Microsoft Corporation)

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %* File not found
chm.file [open] -- "%SYSTEMROOT%\hh.exe" %1 File not found
cmdfile [open] -- "%1" %* File not found
comfile [open] -- "%1" %* File not found
exefile [open] -- "%1" %* File not found
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohome (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohome (Microsoft Corporation)
https [open] -- "D:\Program Files\firefox.exe" -requestPending -osint -url "%1" File not found
piffile [open] -- "%1" %* File not found
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1" File not found
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S File not found
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 File not found
Directory [ACDBrowse] -- "C:\Program Files\ACD Systems\ACDSee\5.0\ACDSee5.exe" "%1" (ACD Systems, Ltd.)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "%programfiles%\internet explorer\iexplore.exe" File not found

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0
 
Sorry, sent the previous 'part 1' without noting your reply. (Phew! That's a relief, that 10000 character limit is a severe limitation on a 115000 character log)
Herewith the whole Extras log attachment.
 
That's why he pasted it in

I think you obviously need to change the wording of your replies in furture to stop thie re-occurring again (I note: 18 log posts pasted in)
I note on all other Guides and support in the past, members have always stated Attach even for one small log

Kimsland,

I know exactly what I wrote, I wrote it for a reason. You may say in the past members always wanted them attached, however times move on.

I like them pasted as it aids my searches, this is the only forum where you cannot fit one OTL log into a post, maybe you guys need to look at increasing post counts? I think that this is one of the few forums that actually still wants logs attached.
 
Obviously from the example in this very Topic, Attaching is the best option
You can take that up with Julio if you feel that I'm wrong in stating this
I still believe that Attaching is better than pasting, and I have seen the other forums and they are difficult to follow due to pasted in logs (IMO)
Note: This is post 46 in this Topic !
 
If you take the time to research them properly you will see why it is so much easier with pasted logs.
 
I'm sorry, but we can't support members pasting huge log files in 20 consecutive messages. Attaching a log is way more practical and the encouraged way to do things in this specific scenarios.
 
Status
Not open for further replies.
Back