Active Infected with SafeSurf and SurfGuard

[Active] Infected with SafeSurf and SurfGuard

in my system32/drivers folder I have the files "SafeSurf.exe" and "surfguard.exe" those two process start as soon as the computer starts up and i also get a windows that its in Russian and at the top left says "JetSwap SafeSurf" (picture in link below) random sounds are also played on the computer. computer has also shut down randomly about 3 times. i have runned Malwarebytes' Anti-Malware and Spybot S&D and they both havent find anything but cookies.
http://img682.imageshack.us/img682/9068/vrs3.jpg




DDS (Ver_10-03-17.01) - NTFSx86
Run by Admin at 17:59:22.84 on Mon 08/23/2010
Internet Explorer: 8.0.7600.16385 BrowserJavaVersion: 1.6.0_21
Microsoft Windows 7 Home Premium 6.1.7600.0.1252.1.1033.18.1790.866 [GMT -4:00]


============== Running Processes ===============

C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\nvvsvc.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k HsfXAudioService
C:\Program Files\IObit\IObit Security 360\IS360srv.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Norton 360\Engine\3.8.0.41\ccSvcHst.exe
C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
C:\Windows\System32\svchost.exe -k HPZ12
C:\Program Files\Palm, Inc\novacom\x86\novacomd.exe
C:\Windows\System32\svchost.exe -k HPZ12
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\system\svchost.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\IObit\IObit Security 360\is360tray.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Norton 360\Engine\3.8.0.41\ccSvcHst.exe
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\System32\drivers\safesurf.exe
C:\Windows\System32\drivers\surfguard.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe
C:\Windows\system32\AUDIODG.EXE
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\Admin\Desktop\dds.scr
C:\Windows\system32\conhost.exe

============== Pseudo HJT Report ===============

uInternet Settings,ProxyOverride = *.local
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: {5C255C8A-E604-49b4-9D64-90988571CECB} - No File
BHO: Symantec NCO BHO: {602adb0e-4aff-4217-8aa1-95dac4dfa408} - c:\program files\norton 360\engine\3.8.0.41\coIEPlg.dll
BHO: Symantec Intrusion Prevention: {6d53ec84-6aae-4787-aeee-f4628f01010c} - c:\program files\norton 360\engine\3.8.0.41\IPSBHO.DLL
BHO: Windows Live Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
TB: Norton Toolbar: {7febefe3-6b19-4349-98d2-ffb09d4b49ca} - c:\program files\norton 360\engine\3.8.0.41\coIEPlg.dll
uRun: [Sidebar] c:\program files\windows sidebar\sidebar.exe /autoRun
uRun: [Google Update] "c:\users\admin\appdata\local\google\update\GoogleUpdate.exe" /c
mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
mRun: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
mRun: [USB2Check] RUNDLL32.EXE "c:\windows\system32\PCLECoInst.dll ",CheckUSBController
mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 9.0\reader\Reader_sl.exe "
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe "
mRun: [IObit Security 360] "c:\program files\iobit\iobit security 360\IS360tray.exe" /autostart
mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe "
mRun: [jsafesurf] c:\windows\system32\drivers\safesurf.exe
mPolicies-system: ConsentPromptBehaviorAdmin = 0 (0x0)
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableLUA = 0 (0x0)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
mPolicies-system: PromptOnSecureDesktop = 0 (0x0)
IE: E&xport to Microsoft Excel - c:\progra~1\micros~3\office11\EXCEL.EXE/3000
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~3\office11\REFIEBAR.DLL
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler: symres - {AA1061FE-6C41-421f-9344-69640C9732AB} - c:\program files\norton 360\engine\3.8.0.41\CoIEPlg.dll
Hosts: 127.0.0.1 www.spywareinfo.com

================= FIREFOX ===================

FF - ProfilePath - c:\users\admin\appdata\roaming\mozilla\firefox\profiles\1wf29ulr.default\
FF - prefs.js: browser.startup.homepage - www.aol.com
FF - prefs.js: keyword.URL - hxxp://www.google.com/search?ie=UTF-8&oe=UTF-8&sourceid=navclient&gfns=1&q=
FF - component: c:\programdata\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\norton\coffplgn\components\coFFPlgn.dll
FF - component: c:\programdata\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\norton\ipsffplgn\components\IPSFFPl.dll
FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: c:\users\admin\appdata\local\google\update\1.2.183.29\npGoogleOneClick8.dll
FF - plugin: c:\users\admin\appdata\roaming\move networks\plugins\npqmp071503000010.dll
FF - plugin: c:\users\admin\appdata\roaming\move networks\plugins\npqmp071701000002.dll
FF - plugin: c:\users\admin\appdata\roaming\move networks\plugins\npqmp071705000014.dll
FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}
FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA}
FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}

---- FIREFOX POLICIES ----
c:\program files\mozilla firefox\greprefs\all.js - pref( "ui.use_native_colors ", true);
c:\program files\mozilla firefox\greprefs\all.js - pref( "ui.use_native_popup_windows ", false);
c:\program files\mozilla firefox\greprefs\all.js - pref( "browser.enable_click_image_resizing ", true);
c:\program files\mozilla firefox\greprefs\all.js - pref( "accessibility.browsewithcaret_shortcut.enabled ", true);
c:\program files\mozilla firefox\greprefs\all.js - pref( "javascript.options.mem.high_water_mark ", 32);
c:\program files\mozilla firefox\greprefs\all.js - pref( "javascript.options.mem.gc_frequency ", 1600);
c:\program files\mozilla firefox\greprefs\all.js - pref( "network.IDN.whitelist.lu ", true);
c:\program files\mozilla firefox\greprefs\all.js - pref( "network.IDN.whitelist.nu ", true);
c:\program files\mozilla firefox\greprefs\all.js - pref( "network.IDN.whitelist.nz ", true);
c:\program files\mozilla firefox\greprefs\all.js - pref( "network.IDN.whitelist.xn--mgbaam7a8h ", true);
c:\program files\mozilla firefox\greprefs\all.js - pref( "network.IDN.whitelist.xn--mgberp4a5d4ar ", true);
c:\program files\mozilla firefox\greprefs\all.js - pref( "network.IDN.whitelist.xn--p1ai ", true);
c:\program files\mozilla firefox\greprefs\all.js - pref( "network.IDN.whitelist.xn--mgbayh7gpa ", true);
c:\program files\mozilla firefox\greprefs\all.js - pref( "network.IDN.whitelist.tel ", true);
c:\program files\mozilla firefox\greprefs\all.js - pref( "network.auth.force-generic-ntlm ", false);
c:\program files\mozilla firefox\greprefs\all.js - pref( "network.proxy.type ", 5);
c:\program files\mozilla firefox\greprefs\all.js - pref( "network.buffer.cache.count ", 24);
c:\program files\mozilla firefox\greprefs\all.js - pref( "network.buffer.cache.size ", 4096);
c:\program files\mozilla firefox\greprefs\all.js - pref( "dom.ipc.plugins.timeoutSecs ", 45);
c:\program files\mozilla firefox\greprefs\all.js - pref( "svg.smil.enabled ", false);
c:\program files\mozilla firefox\greprefs\all.js - pref( "ui.trackpoint_hack.enabled ", -1);
c:\program files\mozilla firefox\greprefs\all.js - pref( "browser.formfill.debug ", false);
c:\program files\mozilla firefox\greprefs\all.js - pref( "browser.formfill.agedWeight ", 2);
c:\program files\mozilla firefox\greprefs\all.js - pref( "browser.formfill.bucketSize ", 1);
c:\program files\mozilla firefox\greprefs\all.js - pref( "browser.formfill.maxTimeGroupings ", 25);
c:\program files\mozilla firefox\greprefs\all.js - pref( "browser.formfill.timeGroupingSize ", 604800);
c:\program files\mozilla firefox\greprefs\all.js - pref( "browser.formfill.boundaryWeight ", 25);
c:\program files\mozilla firefox\greprefs\all.js - pref( "browser.formfill.prefixWeight ", 5);
c:\program files\mozilla firefox\greprefs\all.js - pref( "accelerometer.enabled ", true);
c:\program files\mozilla firefox\greprefs\all.js - pref( "html5.enable ", false);
c:\program files\mozilla firefox\greprefs\security-prefs.js - pref( "security.ssl.allow_unrestricted_renego_everywhere__temporarily_available_pref ", true);
c:\program files\mozilla firefox\greprefs\security-prefs.js - pref( "security.ssl.renego_unrestricted_hosts ", " ");
c:\program files\mozilla firefox\greprefs\security-prefs.js - pref( "security.ssl.treat_unsafe_negotiation_as_broken ", false);
c:\program files\mozilla firefox\greprefs\security-prefs.js - pref( "security.ssl.require_safe_negotiation ", false);
c:\program files\mozilla firefox\greprefs\security-prefs.js - pref( "security.ssl3.rsa_seed_sha ", true);
c:\program files\mozilla firefox\defaults\pref\firefox-branding.js - pref( "app.update.download.backgroundInterval ", 600);
c:\program files\mozilla firefox\defaults\pref\firefox-branding.js - pref( "app.update.url.manual ", "http://www.firefox.com ");
c:\program files\mozilla firefox\defaults\pref\firefox-branding.js - pref( "browser.search.param.yahoo-fr-ja ", "mozff ");
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref( "extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.name ", "chrome://browser/locale/browser.properties ");
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref( "extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.description ", "chrome://browser/locale/browser.properties ");
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref( "xpinstall.whitelist.add ", "addons.mozilla.org ");
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref( "xpinstall.whitelist.add.36 ", "getpersonas.com ");
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref( "lightweightThemes.update.enabled ", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref( "browser.allTabs.previews ", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref( "plugins.hide_infobar_for_outdated_plugin ", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref( "plugins.update.notifyUser ", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref( "toolbar.customization.usesheet ", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref( "dom.ipc.plugins.enabled.nptest.dll ", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref( "dom.ipc.plugins.enabled.npswf32.dll ", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref( "dom.ipc.plugins.enabled.npctrl.dll ", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref( "dom.ipc.plugins.enabled.npqtplugin.dll ", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref( "dom.ipc.plugins.enabled ", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref( "browser.taskbar.previews.enable ", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref( "browser.taskbar.previews.max ", 20);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref( "browser.taskbar.previews.cachetime ", 20);

============= SERVICES / DRIVERS ===============

R0 SymEFA;Symantec Extended File Attributes;c:\windows\system32\drivers\n360\0308000.029\SymEFA.sys [2010-1-28 310320]
R1 BHDrvx86;Symantec Heuristics Driver;c:\windows\system32\drivers\n360\0308000.029\BHDrvx86.sys [2010-1-28 259632]
R1 ccHP;Symantec Hash Provider;c:\windows\system32\drivers\n360\0308000.029\cchpx86.sys [2010-1-28 482432]
R1 IDSVix86;IDSVix86;c:\programdata\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\norton\definitions\ipsdefs\20100820.001\IDSvix86.sys [2010-8-20 344112]
R1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\drivers\vwififlt.sys [2009-7-13 48128]
R2 HsfXAudioService;HsfXAudioService;c:\windows\system32\svchost.exe -k HsfXAudioService [2009-7-13 20992]
R2 IS360service;IS360service;c:\program files\iobit\iobit security 360\is360srv.exe [2010-7-5 312152]
R2 N360;Norton 360;c:\program files\norton 360\engine\3.8.0.41\ccSvcHst.exe [2010-1-28 117640]
R2 NovacomD;Palm Novacom;c:\program files\palm, inc\novacom\x86\novacomd.exe [2009-11-6 33280]
R2 Win_Updater;Win32 Updater;c:\windows\system32\system\svchost.exe [2010-8-13 1399296]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files\common files\symantec shared\eengine\EraserUtilRebootDrv.sys [2010-5-26 102448]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver;c:\windows\system32\drivers\nvhda32v.sys [2009-8-21 66592]
R3 SYMNDISV;Symantec Network Filter Driver;c:\windows\system32\drivers\n360\0308000.029\symndisv.sys [2010-1-28 48688]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\drivers\vwifimp.sys [2009-7-13 14336]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-13 229888]
S3 MotDev;Motorola Inc. USB Device;c:\windows\system32\drivers\motodrv.sys [2007-10-10 42112]
S3 Revoflt;Revoflt;c:\windows\system32\drivers\revoflt.sys [2010-8-23 27192]
S3 SrvHsfHDA;SrvHsfHDA;c:\windows\system32\drivers\VSTAZL3.SYS [2009-7-13 207360]
S3 SrvHsfV92;SrvHsfV92;c:\windows\system32\drivers\VSTDPV3.SYS [2009-7-13 980992]
S3 SrvHsfWinac;SrvHsfWinac;c:\windows\system32\drivers\VSTCNXT3.SYS [2009-7-13 661504]

=============== Created Last 30 ================

2010-08-23 21:14:05 27192 ----a-w- c:\windows\system32\drivers\revoflt.sys
2010-08-23 21:14:03 0 d-----w- c:\program files\VS Revo Group
2010-08-23 05:06:12 0 d-----w- c:\program files\Norman
2010-08-23 04:00:53 210944 ----a-w- c:\windows\system32\drivers\safesurf2.exe
2010-08-23 04:00:53 210944 ----a-w- c:\windows\system32\drivers\safesurf.exe
2010-08-23 03:33:46 0 d-----w- c:\program files\Enigma Software Group
2010-08-23 03:32:42 0 d-----w- c:\windows\4FC9DA9DF608454E8191D7EFFDCC5726.TMP
2010-08-22 05:52:08 19456 ----a-w- c:\windows\system32\drivers\surfguard.exe
2010-08-21 02:48:21 0 d-----w- c:\programdata\Spybot - Search & Destroy
2010-08-21 02:48:21 0 d-----w- c:\program files\Spybot - Search & Destroy
2010-08-20 23:07:58 95024 ----a-w- c:\windows\system32\drivers\SBREDrv.sys
2010-08-20 22:26:29 0 d-----w- c:\programdata\Lavasoft
2010-08-20 22:26:29 0 d-----w- c:\program files\Lavasoft
2010-08-20 06:00:25 0 d---a-w- c:\programdata\TEMP
2010-08-17 20:02:27 0 d-----w- C:\!KillBox
2010-08-15 21:35:26 4286 ----a-w- c:\windows\system32\ico.ico
2010-08-15 21:34:58 158720 ----a-w- c:\windows\system32\drivers\skybound.gecko.dll
2010-08-15 21:34:55 0 d-----w- c:\users\admin\appdata\roaming\Emergency Soft
2010-08-15 21:34:51 0 d-----w- c:\windows\system32\drivers\f
2010-08-15 21:34:50 16896 ----a-w- c:\windows\system32\drivers\up.exe
2010-08-15 21:34:42 0 d-----w- c:\windows\system32\system
2010-08-12 23:54:36 0 d-----w- C:\17dab1a11307f3c0a9c94841f972fa0d
2010-08-12 17:49:18 830976 ----a-w- c:\windows\system32\Help64.exe
2010-08-12 17:16:43 1286016 ----a-w- c:\windows\system32\drivers\tcpip.sys
2010-08-12 17:16:14 82944 ----a-w- c:\windows\system32\iccvid.dll
2010-08-12 17:16:14 197632 ----a-w- c:\windows\system32\ir32_32.dll
2010-08-12 17:16:08 37376 ----a-w- c:\windows\system32\rtutils.dll
2010-08-12 17:14:57 2326016 ----a-w- c:\windows\system32\win32k.sys
2010-07-25 06:37:26 56 ---ha-w- c:\windows\system32\ezsidmv.dat
2010-07-25 06:34:30 0 d-----w- c:\programdata\Skype

==================== Find3M ====================

2010-08-17 00:05:36 423656 ----a-w- c:\windows\system32\deployJava1.dll
2010-07-16 04:38:54 392704 ----a-w- c:\windows\system32\ICH.exe
2010-06-30 06:25:31 978432 ----a-w- c:\windows\system32\wininet.dll
2010-06-19 06:33:29 3955080 ----a-w- c:\windows\system32\ntkrnlpa.exe
2010-06-19 06:33:29 3899784 ----a-w- c:\windows\system32\ntoskrnl.exe
2010-06-16 05:48:35 224256 ----a-w- c:\windows\system32\schannel.dll
2010-06-08 06:02:06 1233920 ----a-w- c:\windows\system32\msxml3.dll
2010-05-27 07:24:13 34304 ----a-w- c:\windows\system32\atmlib.dll
2010-05-27 03:49:37 293888 ----a-w- c:\windows\system32\atmfd.dll
2009-07-14 04:56:42 31548 ----a-w- c:\windows\inf\perflib\0409\perfd.dat
2009-07-14 04:56:42 31548 ----a-w- c:\windows\inf\perflib\0409\perfc.dat
2009-07-14 04:56:42 291294 ----a-w- c:\windows\inf\perflib\0409\perfi.dat
2009-07-14 04:56:42 291294 ----a-w- c:\windows\inf\perflib\0409\perfh.dat
2009-07-14 04:41:57 174 --sha-w- c:\program files\desktop.ini
2009-07-14 00:34:40 291294 ----a-w- c:\windows\inf\perflib\0000\perfi.dat
2009-07-14 00:34:40 291294 ----a-w- c:\windows\inf\perflib\0000\perfh.dat
2009-07-14 00:34:38 31548 ----a-w- c:\windows\inf\perflib\0000\perfd.dat
2009-07-14 00:34:38 31548 ----a-w- c:\windows\inf\perflib\0000\perfc.dat
2009-06-10 21:26:35 9633792 --sha-r- c:\windows\fonts\StaticCache.dat
2010-01-22 19:19:33 245760 --sha-w- c:\windows\serviceprofiles\localservice\appdata\roaming\microsoft\windows\ietldcache\index.dat
2009-07-14 01:14:45 396800 --sha-w- c:\windows\winsxs\x86_microsoft-windows-mail-app_31bf3856ad364e35_6.1.7600.16385_none_f12e83abb108c86c\WinMail.exe

============= FINISH: 18:01:12.12 ===============





UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT

DDS (Ver_10-03-17.01)

Microsoft Windows 7 Home Premium
Boot Device: \Device\HarddiskVolume1
Install Date: 10/27/2009 8:11:01 PM
System Uptime: 8/23/2010 5:07:24 PM (1 hours ago)

Motherboard: Wistron | | 360A
Processor: AMD Athlon Dual-Core QL-60 | Socket A | 1900/133mhz

==== Disk Partitions =========================

C: is FIXED (NTFS) - 139 GiB total, 41.689 GiB free.
D: is FIXED (NTFS) - 10 GiB total, 1.695 GiB free.
E: is CDROM ()
F: is CDROM ()

==== Disabled Device Manager Items =============

==== System Restore Points ===================

RP171: 8/19/2010 12:57:37 PM - Windows Update
RP172: 8/20/2010 12:37:44 AM - Windows Update
RP173: 8/20/2010 3:44:40 AM - Norton 360 Registry Clean
RP174: 8/22/2010 2:08:48 AM - Installed AVG Free 9.0
RP175: 8/22/2010 3:26:38 AM - Removed AVG Free 9.0
RP176: 8/22/2010 3:28:44 AM - Installed AVG Free 9.0
RP177: 8/22/2010 11:32:59 PM - Installed SpyHunter
RP178: 8/23/2010 12:31:30 AM - Removed SpyHunter
RP179: 8/23/2010 12:33:02 AM - Removed SpyHunter
RP180: 8/23/2010 1:05:46 AM - Installed Norman Security Suite.
RP181: 8/23/2010 4:35:33 AM - Removed Norman Security Suite.
RP182: 8/23/2010 5:41:56 PM - Windows Update

==== Installed Programs ======================

µTorrent
32 Bit HP CIO Components Installer
Adobe Anchor Service CS3
Adobe Asset Services CS3
Adobe Bridge CS3
Adobe Bridge Start Meeting
Adobe Camera Raw 4.0
Adobe CMaps
Adobe Color - Photoshop Specific
Adobe Color Common Settings
Adobe Color EU Extra Settings
Adobe Color JA Extra Settings
Adobe Color NA Recommended Settings
Adobe Default Language CS3
Adobe Device Central CS3
Adobe ExtendScript Toolkit 2
Adobe Flash Player 10 ActiveX
Adobe Flash Player 10 Plugin
Adobe Fonts All
Adobe Help Viewer CS3
Adobe Linguistics CS3
Adobe PDF Library Files
Adobe Photoshop CS3
Adobe Reader 9.3.4
Adobe Setup
Adobe Stock Photos CS3
Adobe Type Support
Adobe Update Manager CS3
Adobe Version Cue CS3 Client
Adobe WinSoft Linguistics Plugin
Adobe XMP Panels CS3
Advertising Center
Boris Graffiti
Camfrog Video Chat 5.5
Conexant HD Audio
DivX Plus Media Foundation Components
DivX Version Checker
DJ_SF_05_D2600_Software_Min
DolbyFiles
Google Chrome
HDAUDIO Soft Data Fax Modem with SmartCP
Hex Workshop v6
HP Deskjet D2600 Printer Driver 14.0 Rel. 5
HxD Hex Editor version 1.7.7.0
ImagXpress
Internet TV for Windows Media Center
IObit Security 360
Java Auto Updater
Java(TM) 6 Update 21
Magic Bullet Looks Studio
MagicDisc 2.7.106
Malwarebytes' Anti-Malware
Menu Templates - Starter Kit
Microsoft .NET Framework 4 Client Profile
Microsoft Application Error Reporting
Microsoft Choice Guard
Microsoft Games for Windows - LIVE
Microsoft Games for Windows - LIVE Redistributable
Microsoft Office Professional Edition 2003
Microsoft Silverlight
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
mkv2vob
Move Media Player
Movie Templates - Starter Kit
Mozilla Firefox (3.6.8)
MSVCRT
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
Nero 9
Nero BurnRights
Nero ControlCenter
Nero CoverDesigner
Nero Disc Copy Gadget
Nero DiscSpeed
Nero DriveSpeed
Nero InfoTool
Nero Installer
Nero PhotoSnap
Nero Recode
Nero Rescue Agent
Nero ShowTime
Nero StartSmart
Nero Vision
Nero WaveEditor
NeroBurningROM
NeroExpress
neroxml
Norton 360
Norton Internet Security
Novacomd
NVIDIA Drivers
Paint.NET v3.5.5
PDF Settings
Pinnacle Studio 12
Pinnacle Studio 12 Ultimate Plugins
Pinnacle Video Driver
proDAD Vitascene 1.0
Revo Uninstaller Pro 2.4.1
SoundTrax
Spybot - Search & Destroy
Synaptics Pointing Device Driver
System Requirements Lab
Tinker
Toolbox
Vegas Pro 9.0
Visual C++ 2008 x86 Runtime - (v9.0.30729)
Visual C++ 2008 x86 Runtime - v9.0.30729.01
WinAce Archiver
Windows Driver Package - Palm (WinUSB) Palm Devices (11/30/2008 1.0.0)
Windows Live Call
Windows Live Communications Platform
Windows Live Essentials
Windows Live Messenger
Windows Live Sign-in Assistant
Windows Live Upload Tool
Windows Media Player Firefox Plugin

==== Event Viewer Messages From Past Week ========

8/23/2010 1:08:01 AM, Error: Service Control Manager [7030] - The Norman NJeeves service is marked as an interactive service. However, the system is configured to not allow interactive services. This service may not function properly.
8/23/2010 1:07:58 AM, Error: Service Control Manager [7030] - The Norman Resource Provider service is marked as an interactive service. However, the system is configured to not allow interactive services. This service may not function properly.
8/23/2010 1:07:16 AM, Error: Service Control Manager [7030] - The Norman ZANDA service is marked as an interactive service. However, the system is configured to not allow interactive services. This service may not function properly.
8/22/2010 1:51:47 AM, Error: Microsoft-Windows-WHEA-Logger [20] - A fatal hardware error has occurred. Component: AMD Northbridge Error Source: Machine Check Exception Error Type: 11 Processor ID: 0 The details view of this entry contains further information.
8/21/2010 12:01:08 AM, Error: Service Control Manager [7001] - The PnP-X IP Bus Enumerator service depends on the Function Discovery Provider Host service which failed to start because of the following error: The dependency service or group failed to start.
8/20/2010 6:27:44 PM, Error: Service Control Manager [7030] - The Lavasoft Ad-Aware Service service is marked as an interactive service. However, the system is configured to not allow interactive services. This service may not function properly.
8/20/2010 2:36:26 AM, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the Windows Search service to connect.
8/20/2010 2:36:26 AM, Error: Service Control Manager [7000] - The Windows Search service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
8/20/2010 2:36:26 AM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1053" attempting to start the service WSearch with arguments " " in order to run the server: {9E175B6D-F52A-11D8-B9A5-505054503030}
8/20/2010 11:59:28 PM, Error: Service Control Manager [7001] - The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error: The dependency service or group failed to start.
8/20/2010 11:59:25 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service WSearch with arguments " " in order to run the server: {9E175B6D-F52A-11D8-B9A5-505054503030}
8/20/2010 11:59:25 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service WSearch with arguments " " in order to run the server: {7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}
8/20/2010 11:59:21 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1068" attempting to start the service netprofm with arguments " " in order to run the server: {A47979D2-C419-11D9-A5B4-001185AD2B89}
8/20/2010 11:59:21 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1068" attempting to start the service netman with arguments " " in order to run the server: {BA126AD1-2166-11D1-B1D0-00805FC1270E}
8/20/2010 11:59:19 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service EventSystem with arguments " " in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
8/20/2010 11:59:12 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service ShellHWDetection with arguments " " in order to run the server: {DD522ACC-F821-461A-A407-50B198B896DC}
8/20/2010 11:59:11 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service TermService with arguments " " in order to run the server: {F9A874B6-F8A8-4D73-B5A8-AB610816828B}
8/20/2010 11:59:08 PM, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: AFD BHDrvx86 ccHP DfsC discache eeCtrl IDSVix86 NetBIOS NetBT nsiproxy Psched rdbss spldr SRTSPX SymIM SYMTDI tdx vwififlt Wanarpv6 WfpLwf
8/20/2010 11:59:05 PM, Error: Service Control Manager [7001] - The Workstation service depends on the Network Store Interface Service service which failed to start because of the following error: The dependency service or group failed to start.
8/20/2010 11:59:05 PM, Error: Service Control Manager [7001] - The TCP/IP NetBIOS Helper service depends on the Ancillary Function Driver for Winsock service which failed to start because of the following error: A device attached to the system is not functioning.
8/20/2010 11:59:05 PM, Error: Service Control Manager [7001] - The SMB MiniRedirector Wrapper and Engine service depends on the Redirected Buffering Sub Sysytem service which failed to start because of the following error: A device attached to the system is not functioning.
8/20/2010 11:59:05 PM, Error: Service Control Manager [7001] - The SMB 2.0 MiniRedirector service depends on the SMB MiniRedirector Wrapper and Engine service which failed to start because of the following error: The dependency service or group failed to start.
8/20/2010 11:59:05 PM, Error: Service Control Manager [7001] - The SMB 1.x MiniRedirector service depends on the SMB MiniRedirector Wrapper and Engine service which failed to start because of the following error: The dependency service or group failed to start.
8/20/2010 11:59:05 PM, Error: Service Control Manager [7001] - The Network Store Interface Service service depends on the NSI proxy service driver. service which failed to start because of the following error: A device attached to the system is not functioning.
8/20/2010 11:59:05 PM, Error: Service Control Manager [7001] - The Network Location Awareness service depends on the Network Store Interface Service service which failed to start because of the following error: The dependency service or group failed to start.
8/20/2010 11:59:05 PM, Error: Service Control Manager [7001] - The Media Center Extender Service service depends on the Function Discovery Provider Host service which failed to start because of the following error: The dependency service or group failed to start.
8/20/2010 11:59:05 PM, Error: Service Control Manager [7001] - The IP Helper service depends on the Network Store Interface Service service which failed to start because of the following error: The dependency service or group failed to start.
8/20/2010 11:59:05 PM, Error: Service Control Manager [7001] - The DNS Client service depends on the NetIO Legacy TDI Support Driver service which failed to start because of the following error: A device attached to the system is not functioning.
8/20/2010 11:59:05 PM, Error: Service Control Manager [7001] - The DHCP Client service depends on the Ancillary Function Driver for Winsock service which failed to start because of the following error: A device attached to the system is not functioning.
8/20/2010 11:43:55 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0xc00002e3 (0x892890f8, 0xc0000189, 0x00000000, 0x00000000). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 082010-30014-01.
8/18/2010 11:59:42 PM, Error: Disk [11] - The driver detected a controller error on \Device\Harddisk1\DR3.

==== End Of File ===========================

 

Hi and welcome to the WindowsBBS forums .

=========

I see you have P2P software ( Azures, Limewire, BitTorrent, uTorrent etc…) installed on your machine. We are not here to pass judgment on file-sharing as a concept. However, we will warn you that engaging in this activity and having this kind of software installed on your machine will always make you more susceptible to re-infections. It may be contributing to your current situation. This page will give you further information.

Please note: Even if you are using a "safe" P2P program, it is only the program that is safe. You will be sharing files from uncertified sources, and these are often infected. The bad guys use P2P filesharing as a major conduit to spread their wares and their infections.

References for the risk of these programs are here, and here.

I would strongly recommend that you uninstall them, and read the links above for educational value!

Note: Please be advised that continued use of these programs after being warned of the danger of infections from them, may result in the discontinued help of future cleaning of your system here at WindowsBBS Malware and Virus removal.

===========

Please download ComboFix by sUBs from HERE or HERE

• You must download it to and run it from your Desktop
• Physically disconnect from the internet.
• Now STOP all your monitoring programs (Antivirus/Antispyware, Guards and Shields) as they could easily interfere with ComboFix.
• Double click combofix.exe & follow the prompts.
• When finished, it will produce a log. Please save that log to post in your next reply.
• Re-enable all the programs that were disabled during the running of ComboFix..

Note:
Do not mouse-click combofix's window while it is running. That may cause it to stall.

CF disconnects your machine from the internet. The connection is automatically restored before CF completes its run. If CF runs into difficulty and terminates prematurely, the connection can be manually restored by restarting your machine.

Run Combofix ONCE only!!

 

hi, i followed the directions u provided me with but i had problems. I run ComboFix and when it was doing something with command prompt i got a blue screen(see link for picture please) http://a.imageshack.us/img842/3742/cimg0150.jpg then the computer restarted i tried ComboFix again and the same thing happened again i got the blue error screen.
thanks

 

Ok. Try this first please:

Download Bootkit Remover to your Desktop.

• You then need to extract the remover.exe file from the RAR using a program capable of extracting RAR compressed files. If you don't have an extraction program, you can use 7-Zip: http://www.7-zip.org/
• After extracting remover.exe to your Desktop, double-click on remover.exe to run the program (Vista/7 users,right click on remover.exe and click Run As Administrator.
• It will show a Black screen with some data on it.
• Right click on the screen and click Select All.
• Press CTRL+C
• Open a Notepad and press CTRL+V
• Post the output back here.

 

Bootkit Remover
(c) 2009 eSage Lab
www.esagelab.com

Program version: 1.1.0.0
OS Version: Microsoft Windows 7 Home Premium Edition (build 7600), 32-bit

System volume is \\.\C:
\\.\C: -> \\.\PhysicalDrive0 at offset 0x00000000`06500000
Boot sector MD5 is: bb4f1627d8b9beda49ac0d010229f3ff

Size Device Name MBR Status
--------------------------------------------
149 GB \\.\PhysicalDrive0 OK (DOS/Win32 Boot code found)


Done;
Press any key to quit...

 

That looks ok.

Can you boot into safe mode and try running Combofix please.

 

I tried to boot into safe mode twice and got a blue screen error message twice the third time i got it to boot into safe mode. i ran ComboFix got to "Complete stage 50" and then the computer just turned off by itself

 

Download OTL to your Desktop.

* Double click on the icon to run it. Make sure all other windows are closed and to let it run uninterrupted.
* Under the Custom Scan box paste this in:


netsvcs
%SYSTEMDRIVE%\*.exe
/md5start
eventlog.dll
scecli.dll
netlogon.dll
cngaudit.dll
sceclt.dll
ntelogon.dll
logevent.dll
iaStor.sys
nvstor.sys
atapi.sys
IdeChnDr.sys
viasraid.sys
AGP440.sys
vaxscsi.sys
nvatabus.sys
viamraid.sys
nvata.sys
nvgts.sys
iastorv.sys
ViPrt.sys
eNetHook.dll
ahcix86.sys
KR10N.sys
nvstor32.sys
/md5stop
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\System32\config\*.sav
CREATERESTOREPOINT


* Click the Quick Scan button. Do not change any settings unless otherwise told to do so. The scan wont take long.

• When the scan completes, it will open two notepad windows: OTL.txt and Extras.txt. These are saved in the same location as OTL.
• Please copy (Edit->Select All, Edit->Copy) the contents of these files, one at a time, and post them back here.

 

OTL logfile created on: 8/27/2010 9:00:15 PM - Run 1
OTL by OldTimer - Version 3.2.10.0 Folder = C:\Users\Admin\Desktop
Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

2.00 Gb Total Physical Memory | 1.00 Gb Available Physical Memory | 56.00% Memory free
3.00 Gb Paging File | 3.00 Gb Available in Paging File | 72.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 139.07 Gb Total Space | 40.45 Gb Free Space | 29.09% Space Free | Partition Type: NTFS
Drive D: | 9.88 Gb Total Space | 1.70 Gb Free Space | 17.21% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: LAPTOP-PC
Current User Name: Admin
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: On
Skip Microsoft Files: On
File Age = 90 Days
Output = Standard
Quick Scan

========== Processes (SafeList) ==========

PRC - [2010/08/27 20:57:23 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Users\Admin\Desktop\OTL.exe
PRC - [2010/08/25 22:29:22 | 000,211,968 | ---- | M] (JetSwap) -- C:\Windows\System32\drivers\safesurf.exe
PRC - [2010/08/25 22:29:22 | 000,019,456 | ---- | M] (JetSwap) -- C:\Windows\System32\drivers\surfguard.exe
PRC - [2010/08/17 17:06:22 | 001,399,296 | ---- | M] (Micro Software ©) -- C:\Windows\System32\system\svchost.exe
PRC - [2010/02/25 19:21:50 | 000,126,392 | R--- | M] (Symantec Corporation) -- C:\Program Files\Norton 360\Engine\4.1.0.32\ccSvcHst.exe
PRC - [2009/11/06 13:03:46 | 000,033,280 | ---- | M] (Palm) -- C:\Program Files\Palm, Inc\novacom\x86\novacomd.exe
PRC - [2009/10/31 01:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2009/09/23 14:38:18 | 000,935,208 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
PRC - [2009/07/13 21:14:42 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2009/07/13 21:14:12 | 000,100,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\audiodg.exe


========== Modules (SafeList) ==========

MOD - [2010/08/27 20:57:23 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Users\Admin\Desktop\OTL.exe
MOD - [2009/07/13 21:16:15 | 000,099,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sspicli.dll
MOD - [2009/07/13 21:16:13 | 000,092,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sechost.dll
MOD - [2009/07/13 21:16:12 | 000,031,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\profapi.dll
MOD - [2009/07/13 21:15:35 | 000,288,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KernelBase.dll
MOD - [2009/07/13 21:15:13 | 000,067,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dwmapi.dll
MOD - [2009/07/13 21:15:11 | 000,064,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\devobj.dll
MOD - [2009/07/13 21:15:07 | 000,036,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cryptbase.dll
MOD - [2009/07/13 21:15:02 | 000,145,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cfgmgr32.dll
MOD - [2009/07/13 21:14:10 | 000,095,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msscript.ocx
MOD - [2009/07/13 21:03:50 | 001,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc\comctl32.dll


========== Win32 Services (SafeList) ==========

SRV - File not found [Auto | Stopped] -- C:\Program Files\IObit\IObit Security 360\IS360srv.exe -- (IS360service)
SRV - [2010/08/17 17:06:22 | 001,399,296 | ---- | M] (Micro Software ©) [Auto | Running] -- C:\Windows\System32\system\svchost.exe -- (Win_Updater)
SRV - [2010/04/25 22:44:24 | 000,654,848 | ---- | M] (Macrovision Europe Ltd.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2010/03/18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010/02/25 20:21:50 | 000,126,392 | R--- | M] (Symantec Corporation) [Unknown | Running] -- C:\Program Files\Norton 360\Engine\4.2.0.12\ccSvcHst.exe -- (N360)
SRV - [2009/11/06 13:03:46 | 000,033,280 | ---- | M] (Palm) [Auto | Running] -- C:\Program Files\Palm, Inc\novacom\x86\novacomd.exe -- (NovacomD)
SRV - [2009/09/23 14:38:18 | 000,935,208 | ---- | M] (Nero AG) [Auto | Running] -- C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe -- (Nero BackItUp Scheduler 4.0)
SRV - [2009/07/13 21:16:21 | 000,185,856 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\wwansvc.dll -- (WwanSvc)
SRV - [2009/07/13 21:16:17 | 000,151,552 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\wbiosrvc.dll -- (WbioSrvc)
SRV - [2009/07/13 21:16:17 | 000,119,808 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\umpo.dll -- (Power)
SRV - [2009/07/13 21:16:16 | 000,037,376 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\themeservice.dll -- (Themes)
SRV - [2009/07/13 21:16:15 | 000,053,760 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sppuinotify.dll -- (sppuinotify)
SRV - [2009/07/13 21:16:13 | 000,043,520 | ---- | M] (Microsoft Corporation) [Unknown | Running] -- C:\Windows\System32\RpcEpMap.dll -- (RpcEptMapper)
SRV - [2009/07/13 21:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009/07/13 21:16:12 | 000,269,824 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\pnrpsvc.dll -- (PNRPsvc)
SRV - [2009/07/13 21:16:12 | 000,269,824 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\pnrpsvc.dll -- (p2pimsvc)
SRV - [2009/07/13 21:16:12 | 000,165,376 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\provsvc.dll -- (HomeGroupProvider)
SRV - [2009/07/13 21:16:12 | 000,020,480 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\pnrpauto.dll -- (PNRPAutoReg)
SRV - [2009/07/13 21:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2009/07/13 21:15:36 | 000,194,560 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\ListSvc.dll -- (HomeGroupListener)
SRV - [2009/07/13 21:15:21 | 000,797,696 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\FntCache.dll -- (FontCache)
SRV - [2009/07/13 21:15:11 | 000,253,440 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\dhcpcore.dll -- (Dhcp)
SRV - [2009/07/13 21:15:10 | 000,218,624 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\defragsvc.dll -- (defragsvc)
SRV - [2009/07/13 21:14:59 | 000,076,800 | ---- | M] (Microsoft Corporation) [Unknown | Stopped] -- C:\Windows\System32\bdesvc.dll -- (BDESVC)
SRV - [2009/07/13 21:14:58 | 000,088,064 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\AxInstSv.dll -- (AxInstSV) ActiveX Installer (AxInstSV)
SRV - [2009/07/13 21:14:53 | 000,027,648 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\appidsvc.dll -- (AppIDSvc)
SRV - [2009/07/13 21:14:29 | 003,179,520 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\sppsvc.exe -- (sppsvc)
SRV - [2009/04/29 03:21:04 | 000,410,624 | ---- | M] (Conexant Systems, Inc.) [Auto | Running] -- C:\Windows\System32\XAudio32.dll -- (HsfXAudioService)


========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\N360\0308000.029\SYMNDISV.SYS -- (SYMNDISV)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\N360\0308000.029\SYMFW.SYS -- (SYMFW)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\System32\PCTINDIS5.SYS -- (PCTINDIS5)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\System32\DRIVERS\pctnullport.sys -- (Nmea)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Users\Admin\AppData\Local\Temp\catchme.sys -- (catchme)
DRV - [2010/08/27 18:56:43 | 000,063,536 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\SymSMR130.SYS -- (SymSMR130)
DRV - [2010/08/27 16:08:14 | 000,124,976 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\SYMEVENT.SYS -- (SymEvent)
DRV - [2010/08/27 01:00:00 | 001,362,608 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_4.1.0.32\Definitions\VirusDefs\20100827.003\navex15.sys -- (NAVEX15)
DRV - [2010/08/27 01:00:00 | 000,085,424 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_4.1.0.32\Definitions\VirusDefs\20100827.003\naveng.sys -- (NAVENG)
DRV - [2010/08/10 01:16:24 | 000,692,272 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_4.1.0.32\Definitions\BASHDefs\20100810.004\BHDrvx86.sys -- (BHDrvx86)
DRV - [2010/06/16 21:54:13 | 000,344,112 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_4.1.0.32\Definitions\IPSDefs\20100826.001\IDSvix86.sys -- (IDSVix86)
DRV - [2010/05/26 04:00:00 | 000,371,248 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys -- (eeCtrl)
DRV - [2010/05/26 04:00:00 | 000,102,448 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys -- (EraserUtilRebootDrv)
DRV - [2010/04/29 01:03:51 | 000,116,784 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\system32\drivers\N360\0402000.00C\Ironx86.SYS -- (SymIRON)
DRV - [2010/04/21 23:02:20 | 000,173,104 | ---- | M] (Symantec Corporation) [File_System | Boot | Running] -- C:\Windows\system32\drivers\N360\0402000.00C\SYMEFA.SYS -- (SymEFA)
DRV - [2010/04/21 22:29:50 | 000,043,696 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\system32\drivers\N360\0402000.00C\SRTSPX.SYS -- (SRTSPX) Symantec Real Time Storage Protection (PEL)
DRV - [2010/02/26 22:23:21 | 000,325,680 | R--- | M] (Symantec Corporation) [File_System | On_Demand | Running] -- C:\Windows\System32\Drivers\N360\0401000.020\SRTSP.SYS -- (SRTSP)
DRV - [2010/02/25 20:22:57 | 000,501,888 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\system32\drivers\N360\0402000.00C\ccHPx86.sys -- (ccHP)
DRV - [2010/02/03 21:40:52 | 000,340,016 | R--- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\system32\drivers\N360\0401000.020\SYMTDIV.SYS -- (SYMTDIv)
DRV - [2010/02/03 21:40:51 | 000,044,080 | R--- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\SymIMV.sys -- (SymIM)
DRV - [2010/02/03 21:40:47 | 000,328,752 | R--- | M] (Symantec Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\drivers\N360\0402000.00C\SYMDS.SYS -- (SymDS)
DRV - [2009/12/11 03:44:02 | 000,133,720 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\ksecpkg.sys -- (KSecPkg)
DRV - [2009/10/09 02:37:44 | 001,096,704 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\athr.sys -- (athr)
DRV - [2009/08/21 20:24:04 | 000,066,592 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvhda32v.sys -- (NVHDA)
DRV - [2009/07/24 05:01:00 | 009,791,072 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2009/07/13 21:26:21 | 000,015,952 | ---- | M] (CMD Technology, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\cmdide.sys -- (cmdide)
DRV - [2009/07/13 21:26:17 | 000,297,552 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\adpahci.sys -- (adpahci)
DRV - [2009/07/13 21:26:15 | 000,422,976 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\adp94xx.sys -- (adp94xx)
DRV - [2009/07/13 21:26:15 | 000,159,312 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\amdsbs.sys -- (amdsbs)
DRV - [2009/07/13 21:26:15 | 000,146,512 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\adpu320.sys -- (adpu320)
DRV - [2009/07/13 21:26:15 | 000,086,608 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\arcsas.sys -- (arcsas)
DRV - [2009/07/13 21:26:15 | 000,079,952 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\amdsata.sys -- (amdsata)
DRV - [2009/07/13 21:26:15 | 000,076,368 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\arc.sys -- (arc)
DRV - [2009/07/13 21:26:15 | 000,023,616 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\amdxata.sys -- (amdxata)
DRV - [2009/07/13 21:26:15 | 000,014,400 | ---- | M] (Acer Laboratories Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\aliide.sys -- (aliide)
DRV - [2009/07/13 21:20:44 | 000,142,416 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\nvstor.sys -- (nvstor)
DRV - [2009/07/13 21:20:44 | 000,117,312 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\nvraid.sys -- (nvraid)
DRV - [2009/07/13 21:20:44 | 000,044,624 | ---- | M] (IBM Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\nfrd960.sys -- (nfrd960)
DRV - [2009/07/13 21:20:37 | 000,089,168 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\lsi_sas.sys -- (LSI_SAS)
DRV - [2009/07/13 21:20:36 | 000,332,352 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\iaStorV.sys -- (iaStorV)
DRV - [2009/07/13 21:20:36 | 000,235,584 | ---- | M] (LSI Corporation, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\MegaSR.sys -- (MegaSR)
DRV - [2009/07/13 21:20:36 | 000,096,848 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\lsi_scsi.sys -- (LSI_SCSI)
DRV - [2009/07/13 21:20:36 | 000,095,824 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\lsi_fc.sys -- (LSI_FC)
DRV - [2009/07/13 21:20:36 | 000,054,864 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\lsi_sas2.sys -- (LSI_SAS2)
DRV - [2009/07/13 21:20:36 | 000,041,040 | ---- | M] (Intel Corp./ICP vortex GmbH) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\iirsp.sys -- (iirsp)
DRV - [2009/07/13 21:20:36 | 000,030,800 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\megasas.sys -- (megasas)
DRV - [2009/07/13 21:20:36 | 000,013,904 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\hwpolicy.sys -- (hwpolicy)
DRV - [2009/07/13 21:20:28 | 000,453,712 | ---- | M] (Emulex) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\elxstor.sys -- (elxstor)
DRV - [2009/07/13 21:20:28 | 000,070,720 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\djsvs.sys -- (aic78xx)
DRV - [2009/07/13 21:20:28 | 000,067,152 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\HpSAMD.sys -- (HpSAMD)
DRV - [2009/07/13 21:20:28 | 000,046,160 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\fsdepends.sys -- (FsDepends)
DRV - [2009/07/13 21:19:11 | 000,141,904 | ---- | M] (VIA Technologies Inc.,Ltd) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\vsmraid.sys -- (vsmraid)
DRV - [2009/07/13 21:19:10 | 000,159,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\vhdmp.sys -- (vhdmp)
DRV - [2009/07/13 21:19:10 | 000,032,832 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\vdrvroot.sys -- (vdrvroot)
DRV - [2009/07/13 21:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\wimmount.sys -- (WIMMount)
DRV - [2009/07/13 21:19:10 | 000,016,976 | ---- | M] (VIA Technologies, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\viaide.sys -- (viaide)
DRV - [2009/07/13 21:19:04 | 001,383,488 | ---- | M] (QLogic Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\ql2300.sys -- (ql2300)
DRV - [2009/07/13 21:19:04 | 000,173,648 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\rdyboost.sys -- (rdyboost)
DRV - [2009/07/13 21:19:04 | 000,106,064 | ---- | M] (QLogic Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\ql40xx.sys -- (ql40xx)
DRV - [2009/07/13 21:19:04 | 000,077,888 | ---- | M] (Silicon Integrated Systems) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\sisraid4.sys -- (SiSRaid4)
DRV - [2009/07/13 21:19:04 | 000,043,088 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\pcw.sys -- (pcw)
DRV - [2009/07/13 21:19:04 | 000,040,016 | ---- | M] (Silicon Integrated Systems Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\SiSRaid2.sys -- (SiSRaid2)
DRV - [2009/07/13 21:19:04 | 000,021,072 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\stexstor.sys -- (stexstor)
DRV - [2009/07/13 21:17:54 | 000,369,568 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\cng.sys -- (CNG)
DRV - [2009/07/13 20:57:25 | 000,272,128 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\Brserid.sys -- (Brserid) Brother MFC Serial Port Interface Driver (WDM)
DRV - [2009/07/13 20:02:41 | 000,018,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\rdpbus.sys -- (rdpbus)
DRV - [2009/07/13 20:01:41 | 000,007,168 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\RDPREFMP.sys -- (RDPREFMP)
DRV - [2009/07/13 19:55:00 | 000,049,152 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\agilevpn.sys -- (RasAgileVpn) WAN Miniport (IKEv2)
DRV - [2009/07/13 19:53:51 | 000,009,728 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\wfplwf.sys -- (WfpLwf)
DRV - [2009/07/13 19:52:44 | 000,027,136 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ndiscap.sys -- (NdisCap)
DRV - [2009/07/13 19:52:10 | 000,014,336 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\vwifimp.sys -- (vwifimp)
DRV - [2009/07/13 19:52:04 | 000,048,128 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\vwififlt.sys -- (vwififlt)
DRV - [2009/07/13 19:52:02 | 000,019,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\vwifibus.sys -- (vwifibus)
DRV - [2009/07/13 19:52:00 | 000,163,328 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\1394ohci.sys -- (1394ohci)
DRV - [2009/07/13 19:51:35 | 000,008,192 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\umpass.sys -- (UmPass)
DRV - [2009/07/13 19:51:11 | 000,034,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (WinUSB)
DRV - [2009/07/13 19:51:08 | 000,004,096 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\mshidkmdf.sys -- (mshidkmdf)
DRV - [2009/07/13 19:46:55 | 000,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\MTConfig.sys -- (MTConfig)
DRV - [2009/07/13 19:45:26 | 000,031,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\CompositeBus.sys -- (CompositeBus)
DRV - [2009/07/13 19:36:52 | 000,050,176 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\appid.sys -- (AppID)
DRV - [2009/07/13 19:33:50 | 000,026,624 | ---- | M] (Microsoft Corporation) [Kernel | Unknown | Stopped] -- C:\Windows\System32\drivers\scfilter.sys -- (scfilter)
DRV - [2009/07/13 19:24:05 | 000,032,256 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\discache.sys -- (discache)
DRV - [2009/07/13 19:19:21 | 000,021,504 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\HidBatt.sys -- (HidBatt)
DRV - [2009/07/13 19:16:36 | 000,009,728 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\acpipmi.sys -- (AcpiPmi)
DRV - [2009/07/13 19:11:04 | 000,052,736 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\amdppm.sys -- (AmdPPM)
DRV - [2009/07/13 18:54:14 | 000,026,624 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\hcw85cir.sys -- (hcw85cir)
DRV - [2009/07/13 18:53:33 | 000,012,160 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\BrUsbMdm.sys -- (BrUsbMdm)
DRV - [2009/07/13 18:53:33 | 000,011,904 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\BrUsbSer.sys -- (BrUsbSer)
DRV - [2009/07/13 18:53:32 | 000,062,336 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\BrSerWdm.sys -- (BrSerWdm)
DRV - [2009/07/13 18:53:28 | 000,013,568 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\BrFiltLo.sys -- (BrFiltLo)
DRV - [2009/07/13 18:53:28 | 000,005,248 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\BrFiltUp.sys -- (BrFiltUp)
DRV - [2009/07/13 18:13:46 | 000,980,992 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VSTDPV3.SYS -- (SrvHsfV92)
DRV - [2009/07/13 18:13:45 | 000,661,504 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VSTCNXT3.SYS -- (SrvHsfWinac)
DRV - [2009/07/13 18:13:45 | 000,207,360 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VSTAZL3.SYS -- (SrvHsfHDA)
DRV - [2009/07/13 18:02:52 | 000,347,264 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\nvm62x32.sys -- (NVENETFD)
DRV - [2009/07/13 18:02:49 | 000,229,888 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\b57nd60x.sys -- (b57nd60x)
DRV - [2009/07/13 18:02:48 | 003,100,160 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\evbdx.sys -- (ebdrv)
DRV - [2009/07/13 18:02:48 | 000,430,080 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\bxvbdx.sys -- (b06bdrv)
DRV - [2009/07/01 12:20:54 | 000,287,392 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvmf6232.sys -- (NVNET)
DRV - [2009/06/29 00:36:36 | 000,017,920 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvsmu.sys -- (nvsmu)
DRV - [2009/06/18 20:12:34 | 000,212,400 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\SynTP.sys -- (SynTP)
DRV - [2009/06/14 19:46:22 | 000,475,648 | ---- | M] (Conexant Systems Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\CHDRT32.sys -- (CnxtHdAudService)
DRV - [2009/05/26 18:38:12 | 000,026,888 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\swmsflt.sys -- (swmsflt)
DRV - [2009/04/29 03:20:56 | 000,008,704 | ---- | M] (Conexant Systems, Inc.) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\XAudio32.sys -- (XAudio)
DRV - [2009/02/24 18:42:14 | 000,116,736 | ---- | M] (MagicISO, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\mcdbus.sys -- (mcdbus)
DRV - [2009/02/12 14:00:22 | 000,980,992 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\HSX_DPV.sys -- (HSF_DPV)
DRV - [2009/02/12 13:58:16 | 000,207,360 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\HSXHWAZL.sys -- (HSXHWAZL)
DRV - [2009/02/12 13:57:28 | 000,661,504 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\HSX_CNXT.sys -- (winachsf)
DRV - [2007/10/10 18:41:50 | 000,042,112 | ---- | M] (Motorola Inc) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\motodrv.sys -- (MotDev)
DRV - [2006/12/12 11:16:06 | 000,022,528 | ---- | M] (Pinnacle Systems GmbH) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\emAudio.sys -- (emAudio)
DRV - [2005/12/21 09:14:52 | 000,100,957 | ---- | M] (eMPIA Technology, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\emDevice.sys -- (DCamUSBEMPIA)
DRV - [2005/12/21 09:14:52 | 000,005,245 | ---- | M] (eMPIA Technology, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\emFilter.sys -- (FiltUSBEMPIA)
DRV - [2005/12/21 09:14:52 | 000,004,493 | ---- | M] (eMPIA Technology, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\emScan.sys -- (ScanUSBEMPIA)
DRV - [2005/09/23 23:18:32 | 000,171,520 | ---- | M] (Pinnacle Systems GmbH) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\MarvinBus.sys -- (MarvinBus)
DRV - [2005/08/17 07:47:48 | 000,073,696 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\sscdserd.sys -- (sscdserd) SAMSUNG CDMA Modem Diagnostic Serial Port (WDM)
DRV - [2005/08/17 07:46:26 | 000,093,872 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\sscdmdm.sys -- (sscdmdm)
DRV - [2005/08/17 07:46:20 | 000,008,272 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\sscdmdfl.sys -- (sscdmdfl)
DRV - [2005/08/17 07:45:00 | 000,058,352 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\sscdbus.sys -- (sscdbus) SAMSUNG USB Composite Device driver (WDM)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========


IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-us
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 10 9D 0F B8 4D 3E CB 01 [binary data]
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - prefs.js..browser.startup.homepage: "www.aol.com "
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21
FF - prefs.js..extensions.enabledItems: personas@christopher.beard:1.5.3
FF - prefs.js..extensions.enabledItems: splashupdate@aldreneo.com:2.0.2b
FF - prefs.js..extensions.enabledItems: {BBDA0591-3099-440a-AA10-41764D9DB4DB}:2.0
FF - prefs.js..extensions.enabledItems: {2D3F3651-74B9-4795-BDEC-6DA2F431CB62}:4.6
FF - prefs.js..extensions.enabledItems: moveplayer@movenetworks.com:7
FF - prefs.js..keyword.URL: "http://www.google.com/search?ie=UTF-8&oe=UTF-8&sourceid=navclient&gfns=1&q= "

FF - HKLM\software\mozilla\Firefox\Extensions\\{BBDA0591-3099-440a-AA10-41764D9DB4DB}: C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_4.1.0.32\IPSFFPlgn\ [2010/08/27 16:15:25 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}: C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_4.1.0.32\coFFPlgn\ [2010/08/27 16:12:11 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.8\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010/07/24 16:32:03 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.8\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010/08/22 23:24:46 | 000,000,000 | ---D | M]

[2009/10/27 20:55:21 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\mozilla\Extensions
[2010/08/27 16:14:18 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\mozilla\Firefox\Profiles\1wf29ulr.default\extensions
[2010/04/12 23:08:55 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\mozilla\Firefox\Profiles\1wf29ulr.default\extensions\personas@christopher.beard
[2009/10/28 13:25:07 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\mozilla\Firefox\Profiles\1wf29ulr.default\extensions\splash@aldreneo.com
[2010/04/17 16:47:00 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\mozilla\Firefox\Profiles\1wf29ulr.default\extensions\splashupdate@aldreneo.com
[2010/08/27 16:08:44 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2010/08/16 20:06:16 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
[2010/08/16 20:05:39 | 000,423,656 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll

O1 HOSTS File: ([2010/08/23 00:01:22 | 000,416,916 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 www.007guard.com
O1 - Hosts: 127.0.0.1 007guard.com
O1 - Hosts: 127.0.0.1 008i.com
O1 - Hosts: 127.0.0.1 www.008k.com
O1 - Hosts: 127.0.0.1 008k.com
O1 - Hosts: 127.0.0.1 www.00hq.com
O1 - Hosts: 127.0.0.1 00hq.com
O1 - Hosts: 127.0.0.1 010402.com
O1 - Hosts: 127.0.0.1 www.032439.com
O1 - Hosts: 127.0.0.1 032439.com
O1 - Hosts: 127.0.0.1 www.0scan.com
O1 - Hosts: 127.0.0.1 0scan.com
O1 - Hosts: 127.0.0.1 1000gratisproben.com
O1 - Hosts: 127.0.0.1 www.1000gratisproben.com
O1 - Hosts: 127.0.0.1 1001namen.com
O1 - Hosts: 127.0.0.1 www.1001namen.com
O1 - Hosts: 127.0.0.1 100888290cs.com
O1 - Hosts: 127.0.0.1 www.100888290cs.com
O1 - Hosts: 127.0.0.1 www.100sexlinks.com
O1 - Hosts: 127.0.0.1 100sexlinks.com
O1 - Hosts: 127.0.0.1 10sek.com
O1 - Hosts: 127.0.0.1 www.10sek.com
O1 - Hosts: 127.0.0.1 www.1-2005-search.com
O1 - Hosts: 127.0.0.1 1-2005-search.com
O1 - Hosts: 127.0.0.1 123fporn.info
O1 - Hosts: 14387 more lines...
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (Symantec NCO BHO) - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Norton 360\Engine\4.1.0.32\CoIEPlg.dll (Symantec Corporation)
O2 - BHO: (Symantec Intrusion Prevention) - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Norton 360\Engine\4.1.0.32\IPSBHO.dll (Symantec Corporation)
O3 - HKLM\..\Toolbar: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton 360\Engine\4.1.0.32\CoIEPlg.dll (Symantec Corporation)
O4 - HKLM..\Run: [jsafesurf] C:\Windows\System32\drivers\safesurf.exe (JetSwap)
O4 - HKLM..\Run: [NvCplDaemon] C:\Windows\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [USB2Check] C:\Windows\System32\PCLECoInst.DLL (Pinnacle Systems)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Computer, Inc.)
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 71.252.0.12
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O30 - LSA: Security Packages - (pku2u) - C:\Windows\System32\pku2u.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/06/10 17:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

NetSvcs: FastUserSwitchingCompatibility - File not found
NetSvcs: Ias - File not found
NetSvcs: Nla - File not found
NetSvcs: Ntmssvc - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: SRService - File not found
NetSvcs: Wmi - C:\Windows\System32\wmi.dll (Microsoft Corporation)
NetSvcs: WmdmPmSp - File not found
NetSvcs: LogonHours - File not found
NetSvcs: PCAudit - File not found
NetSvcs: helpsvc - File not found
NetSvcs: uploadmgr - File not found
NetSvcs: Themes - C:\Windows\System32\themeservice.dll (Microsoft Corporation)
NetSvcs: BDESVC - C:\Windows\System32\bdesvc.dll (Microsoft Corporation)

========== Files/Folders - Created Within 90 Days ==========

[2010/08/27 20:57:22 | 000,575,488 | ---- | C] (OldTimer Tools) -- C:\Users\Admin\Desktop\OTL.exe
[2010/08/27 18:57:36 | 000,044,080 | R--- | C] (Symantec Corporation) -- C:\Windows\System32\drivers\SymIMV.sys
[2010/08/27 18:56:43 | 000,063,536 | ---- | C] (Symantec Corporation) -- C:\Windows\System32\drivers\SymSMR130.SYS
[2010/08/27 18:51:49 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache
[2010/08/27 18:51:05 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\f\1\dictionaries
[2010/08/27 18:51:04 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\f\1\res\fonts
[2010/08/27 18:51:04 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\f\1\res\entityTables
[2010/08/27 18:51:03 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\f\1\defaults\autoconfig
[2010/08/27 18:51:02 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\f\1\defaults\pref
[2010/08/27 18:51:02 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\f\1\modules
[2010/08/27 18:51:02 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\f\1\greprefs
[2010/08/27 18:51:01 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\f\1\res\html
[2010/08/27 18:51:01 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\f\1\res\dtd
[2010/08/27 18:51:01 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\f\1\chrome
[2010/08/27 18:51:00 | 000,443,352 | ---- | C] (sqlite.org) -- C:\Windows\System32\drivers\f\1\sqlite3.dll
[2010/08/27 18:51:00 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\f\1\defaults\profile\US
[2010/08/27 18:51:00 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\f\1\defaults\profile\US\chrome
[2010/08/27 18:51:00 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\f\1\defaults\profile\chrome
[2010/08/27 18:50:59 | 000,701,400 | ---- | C] (Netscape Communications Corporation) -- C:\Windows\System32\drivers\f\1\js3250.dll
[2010/08/27 18:50:59 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\f\1\res
[2010/08/27 18:50:59 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\f\1\defaults\profile
[2010/08/27 18:50:59 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\f\1\plugins
[2010/08/27 18:50:59 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\f\1\defaults
[2010/08/27 18:50:59 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\f\1\components
[2010/08/27 18:50:59 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\f\1
[2010/08/27 18:44:32 | 000,000,000 | --SD | C] -- C:\ComboFix
[2010/08/27 18:30:12 | 000,161,792 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe
[2010/08/27 18:30:12 | 000,136,704 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe
[2010/08/27 18:30:12 | 000,031,232 | ---- | C] (NirSoft) -- C:\Windows\NIRCMD.exe
[2010/08/27 18:29:47 | 000,212,480 | ---- | C] (SteelWerX) -- C:\Windows\SWXCACLS.exe
[2010/08/27 17:33:37 | 000,211,968 | ---- | C] (JetSwap) -- C:\Windows\System32\drivers\safesurf.exe
[2010/08/27 17:23:04 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Local\NPE
[2010/08/27 17:14:33 | 005,716,848 | ---- | C] (Symantec Corporation) -- C:\Users\Admin\Desktop\NPE.exe
[2010/08/27 06:07:11 | 000,000,000 | ---D | C] -- C:\Qoobox
[2010/08/27 04:23:56 | 000,000,000 | ---D | C] -- C:\Program Files\Safer Networking
[2010/08/27 04:23:19 | 007,966,432 | ---- | C] (Safer Networking Limited ) -- C:\Users\Admin\Desktop\runalyz-1.6.1.24.exe
[2010/08/25 03:21:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Kaspersky Lab Setup Files
[2010/08/25 03:19:01 | 000,000,000 | ---D | C] -- C:\ProgramData\McAfee
[2010/08/24 20:51:23 | 010,030,424 | ---- | C] (IObit ) -- C:\Users\Admin\Desktop\is360setup.exe
[2010/08/24 00:29:54 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Roaming\Tific
[2010/08/24 00:29:54 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Local\Tific
[2010/08/23 23:57:15 | 000,000,000 | ---D | C] -- C:\ProgramData\F-Secure
[2010/08/23 18:11:01 | 000,000,000 | ---D | C] -- C:\Windows\ERDNT
[2010/08/23 18:08:24 | 000,000,000 | ---D | C] -- C:\Program Files\ERUNT
[2010/08/23 17:14:16 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Local\VS Revo Group
[2010/08/23 01:06:12 | 000,000,000 | ---D | C] -- C:\Program Files\Norman
[2010/08/22 23:33:46 | 000,000,000 | ---D | C] -- C:\Program Files\Enigma Software Group
[2010/08/22 23:32:42 | 000,000,000 | ---D | C] -- C:\Windows\4FC9DA9DF608454E8191D7EFFDCC5726.TMP
[2010/08/22 01:52:08 | 000,019,456 | ---- | C] (JetSwap) -- C:\Windows\System32\drivers\surfguard.exe
[2010/08/20 22:48:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Spybot - Search & Destroy
[2010/08/20 22:48:21 | 000,000,000 | ---D | C] -- C:\Program Files\Spybot - Search & Destroy
[2010/08/20 22:46:38 | 016,409,960 | ---- | C] (Safer Networking Limited ) -- C:\Users\Admin\Desktop\spybotsd162.exe
[2010/08/20 19:07:58 | 000,095,024 | ---- | C] (Sunbelt Software) -- C:\Windows\System32\drivers\SBREDrv.sys
[2010/08/20 18:27:59 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Local\Sunbelt Software
[2010/08/20 18:26:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Lavasoft
[2010/08/20 18:26:29 | 000,000,000 | ---D | C] -- C:\Program Files\Lavasoft
[2010/08/20 02:00:25 | 000,000,000 | ---D | C] -- C:\ProgramData\TEMP
[2010/08/17 16:02:27 | 000,000,000 | ---D | C] -- C:\!KillBox
[2010/08/17 15:17:45 | 000,092,672 | ---- | C] (Option^Explicit Software vbtechcd@gmail.com) -- C:\Users\Admin\Documents\KillBox.exe
[2010/08/16 20:06:49 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2010/08/16 20:05:28 | 000,000,000 | ---D | C] -- C:\Program Files\Java
[2010/08/15 17:34:58 | 000,158,720 | ---- | C] (Skybound Software (http://www.skybound.ca)) -- C:\Windows\System32\drivers\skybound.gecko.dll
[2010/08/15 17:34:55 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Roaming\Emergency Soft
[2010/08/15 17:34:51 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\f
[2010/08/15 17:34:50 | 000,016,896 | ---- | C] (JetSwap) -- C:\Windows\System32\drivers\up.exe
[2010/08/15 17:34:42 | 000,000,000 | ---D | C] -- C:\Windows\System32\system
[2010/08/12 19:54:36 | 000,000,000 | ---D | C] -- C:\17dab1a11307f3c0a9c94841f972fa0d
[2010/08/09 16:38:30 | 000,000,000 | ---D | C] -- C:\Users\Admin\Desktop\Ringtones
[2010/08/09 16:27:03 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Roaming\Ahead
[2010/08/03 16:38:21 | 000,000,000 | ---D | C] -- C:\Users\Admin\Documents\NeroVision
[2010/07/25 02:37:24 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Roaming\skypePM
[2010/07/25 02:35:12 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Roaming\Skype
[2010/07/25 02:34:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Skype
[2010/07/14 00:49:23 | 000,000,000 | ---D | C] -- C:\Program Files\BreakPoint Software
[2010/07/14 00:15:32 | 000,000,000 | ---D | C] -- C:\Users\Admin\Desktop\DaDAT
[2010/07/14 00:13:31 | 000,000,000 | ---D | C] -- C:\Users\Admin\Desktop\Offzip & Packzip UI
[2010/07/14 00:12:35 | 000,000,000 | ---D | C] -- C:\Users\Admin\Desktop\BioshockSaves
[2010/07/10 16:44:57 | 000,000,000 | ---D | C] -- C:\Program Files\SystemRequirementsLab
[2010/07/10 16:44:54 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Roaming\SystemRequirementsLab
[2010/07/10 04:53:14 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Local\Nero
[2010/07/06 19:42:18 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Roaming\Publish Providers
[2010/07/06 19:37:53 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Roaming\Sony
[2010/07/06 19:37:53 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Local\Sony
[2010/07/06 19:29:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Sony
[2010/07/06 19:29:27 | 000,000,000 | ---D | C] -- C:\Program Files\Sony
[2010/07/04 03:54:36 | 000,000,000 | ---D | C] -- C:\Users\Admin\Documents\GameSaving
[2010/06/26 05:55:51 | 000,000,000 | ---D | C] -- C:\0ef1af7c0e49c56e5f233b357d04f3
[2010/06/22 16:31:26 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Roaming\IObit
[2010/06/16 02:10:27 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Roaming\BoneTown
[2010/06/14 01:34:28 | 000,000,000 | ---D | C] -- C:\Users\Admin\Desktop\RDR saves
[2010/06/08 23:59:17 | 000,000,000 | ---D | C] -- C:\Users\Admin\Desktop\5454082B
[2010/05/31 14:20:10 | 000,000,000 | ---D | C] -- C:\Users\Admin\Desktop\USB Folders
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files - Modified Within 90 Days ==========

[2010/08/27 21:02:15 | 008,912,896 | -HS- | M] () -- C:\Users\Admin\ntuser.dat
[2010/08/27 20:57:23 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Users\Admin\Desktop\OTL.exe
[2010/08/27 20:54:42 | 000,000,908 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3156090111-885036254-1565554444-1001UA.job
[2010/08/27 20:54:42 | 000,000,856 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3156090111-885036254-1565554444-1001Core.job
[2010/08/27 20:54:32 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2010/08/27 18:57:39 | 000,991,110 | ---- | M] () -- C:\Windows\System32\drivers\N360\0401000.020\Cat.DB
[2010/08/27 18:56:44 | 000,000,000 | ---- | M] () -- C:\Windows\System32\drivers\SymSMR130.dat
[2010/08/27 18:56:43 | 000,063,536 | ---- | M] (Symantec Corporation) -- C:\Windows\System32\drivers\SymSMR130.SYS
[2010/08/27 18:53:50 | 000,013,216 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2010/08/27 18:53:50 | 000,013,216 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2010/08/27 18:51:19 | 000,142,385 | ---- | M] () -- C:\Windows\System32\drivers\f\1\components\compreg.dat
[2010/08/27 18:51:18 | 000,102,022 | ---- | M] () -- C:\Windows\System32\drivers\f\1\components\xpti.dat
[2010/08/27 18:46:20 | 000,065,536 | ---- | M] () -- C:\Windows\System32\Ikeext.etl
[2010/08/27 18:46:19 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2010/08/27 18:46:12 | 299,547,134 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2010/08/27 18:46:07 | 1408,045,056 | -HS- | M] () -- C:\hiberfil.sys
[2010/08/27 18:24:39 | 001,758,474 | -H-- | M] () -- C:\Users\Admin\AppData\Local\IconCache.db
[2010/08/27 17:14:34 | 005,716,848 | ---- | M] (Symantec Corporation) -- C:\Users\Admin\Desktop\NPE.exe
[2010/08/27 16:10:30 | 000,002,322 | ---- | M] () -- C:\Users\Public\Desktop\Norton 360.lnk
[2010/08/27 16:08:14 | 000,124,976 | ---- | M] (Symantec Corporation) -- C:\Windows\System32\drivers\SYMEVENT.SYS
[2010/08/27 16:08:14 | 000,007,443 | ---- | M] () -- C:\Windows\System32\drivers\SYMEVENT.CAT
[2010/08/27 16:08:14 | 000,000,805 | ---- | M] () -- C:\Windows\System32\drivers\SYMEVENT.INF
[2010/08/27 16:06:16 | 044,507,416 | ---- | M] (Symantec Corporation) -- C:\Users\Admin\Desktop\N360-UPGRADE-ESD-NoDefs-17-6-0-32-EN.exe
[2010/08/27 06:44:19 | 000,732,510 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI
[2010/08/27 06:44:19 | 000,628,320 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2010/08/27 06:44:19 | 000,108,466 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2010/08/27 06:38:26 | 000,000,436 | ---- | M] () -- C:\Windows\System32\drivers\etc\hosts.ics
[2010/08/27 06:18:20 | 001,042,891 | ---- | M] () -- C:\Users\Admin\Desktop\CIMG0150.jpg
[2010/08/27 06:15:17 | 000,255,497 | ---- | M] () -- C:\Users\Admin\Desktop\Untitled.jpg
[2010/08/27 06:05:06 | 003,828,997 | R--- | M] () -- C:\Users\Admin\Desktop\ComboFix.exe
[2010/08/27 06:03:58 | 000,000,119 | ---- | M] () -- C:\Users\Admin\Desktop\[Active] Infected with SafeSurf and SurfGuard.url
[2010/08/27 04:23:20 | 007,966,432 | ---- | M] (Safer Networking Limited ) -- C:\Users\Admin\Desktop\runalyz-1.6.1.24.exe
[2010/08/27 03:31:44 | 000,016,896 | ---- | M] (JetSwap) -- C:\Windows\System32\drivers\up.exe
[2010/08/27 03:09:45 | 000,000,096 | ---- | M] () -- C:\Users\Admin\Desktop\YouTube - drmongs's Channel.url
[2010/08/27 02:08:11 | 000,000,085 | ---- | M] () -- C:\Users\Admin\Desktop\Bioshock 2 Guide, by DrMong - Maps and Audio Diary Locations.url
[2010/08/25 22:29:22 | 000,211,968 | ---- | M] (JetSwap) -- C:\Windows\System32\drivers\safesurf.exe
[2010/08/25 22:29:22 | 000,019,456 | ---- | M] (JetSwap) -- C:\Windows\System32\drivers\surfguard.exe
[2010/08/24 20:51:46 | 010,030,424 | ---- | M] (IObit ) -- C:\Users\Admin\Desktop\is360setup.exe
[2010/08/24 00:08:17 | 000,032,256 | ---- | M] () -- C:\Users\Admin\Desktop\Scanning Report.doc
[2010/08/23 19:35:11 | 000,000,074 | ---- | M] () -- C:\Users\Admin\Desktop\Infected with SafeSurf and SurfGuard - Safer-Networking Forums.URL
[2010/08/23 19:26:12 | 000,254,074 | ---- | M] () -- C:\Users\Admin\Desktop\vrs3.jpg
[2010/08/23 19:07:16 | 000,003,703 | ---- | M] () -- C:\Users\Admin\Desktop\Attach.zip
[2010/08/23 18:08:25 | 000,000,899 | ---- | M] () -- C:\Users\Admin\Application Data\Microsoft\Internet Explorer\Quick Launch\ERUNT.lnk
[2010/08/23 18:08:25 | 000,000,875 | ---- | M] () -- C:\Users\Admin\Desktop\ERUNT.lnk
[2010/08/23 17:59:01 | 000,525,824 | ---- | M] () -- C:\Users\Admin\Desktop\dds.scr
[2010/08/23 04:48:20 | 000,581,854 | ---- | M] () -- C:\Users\Admin\Desktop\vrs2.jpg
[2010/08/23 04:47:46 | 000,384,354 | ---- | M] () -- C:\Users\Admin\Desktop\vrs.jpg
[2010/08/23 04:42:57 | 000,000,258 | RHS- | M] () -- C:\ProgramData\ntuser.pol
[2010/08/23 01:07:24 | 000,000,071 | ---- | M] () -- C:\Users\Admin\Desktop\safesurf.exe.URL
[2010/08/23 00:46:13 | 000,007,643 | ---- | M] () -- C:\Users\Admin\AppData\Local\Resmon.ResmonCfg
[2010/08/23 00:01:22 | 000,416,916 | ---- | M] () -- C:\Windows\System32\drivers\etc\hosts
[2010/08/22 17:22:20 | 009,655,685 | ---- | M] () -- C:\Windows\System32\drivers\f\jet.exe
[2010/08/22 14:15:31 | 000,009,399 | ---- | M] () -- C:\Windows\System32\drivers\f\1\components\nsRequestService.js
[2010/08/22 00:51:26 | 000,002,398 | ---- | M] () -- C:\Users\Admin\Desktop\Google Chrome.lnk
[2010/08/21 00:41:59 | 000,422,912 | ---- | M] () -- C:\Users\Admin\Desktop\Doc1.doc
[2010/08/20 22:48:30 | 000,001,240 | ---- | M] () -- C:\Users\Admin\Application Data\Microsoft\Internet Explorer\Quick Launch\Spybot - Search & Destroy.lnk
[2010/08/20 22:48:30 | 000,001,216 | ---- | M] () -- C:\Users\Admin\Desktop\Spybot - Search & Destroy.lnk
[2010/08/20 22:46:47 | 016,409,960 | ---- | M] (Safer Networking Limited ) -- C:\Users\Admin\Desktop\spybotsd162.exe
[2010/08/20 19:07:58 | 000,095,024 | ---- | M] (Sunbelt Software) -- C:\Windows\System32\drivers\SBREDrv.sys
[2010/08/17 15:17:45 | 000,092,672 | ---- | M] (Option^Explicit Software vbtechcd@gmail.com) -- C:\Users\Admin\Documents\KillBox.exe
[2010/08/17 01:09:31 | 000,002,153 | ---- | M] () -- C:\Users\Admin\Application Data\Microsoft\Internet Explorer\Quick Launch\Camfrog Video Chat 5.5.lnk
[2010/08/15 17:35:26 | 000,004,286 | ---- | M] () -- C:\Windows\System32\ico.ico
[2010/08/12 20:19:10 | 001,697,608 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2010/08/12 13:49:18 | 000,830,976 | ---- | M] () -- C:\Windows\System32\Help64.exe
[2010/07/25 02:37:26 | 000,000,056 | -H-- | M] () -- C:\Windows\System32\ezsidmv.dat
[2010/07/16 00:38:54 | 000,392,704 | ---- | M] () -- C:\Windows\System32\ICH.exe
[2010/07/15 17:41:10 | 000,000,083 | ---- | M] () -- C:\Users\Admin\Desktop\MyXboxMods - View topic - [TUT]How to mod Bioshock 2 (Without modio).URL
[2010/07/14 02:00:59 | 158,069,940 | ---- | M] () -- C:\Users\Admin\Desktop\How to Hex Edit Bioshock 2 Xbox 360 (Remade) [www.keepvid.com].mp4
[2010/07/14 00:49:41 | 000,001,178 | ---- | M] () -- C:\Users\Public\Desktop\Hex Workshop Hex Editor.lnk
[2010/07/10 04:53:19 | 000,000,275 | ---- | M] () -- C:\Users\Admin\AppData\Roaming\default.rss
[2010/07/09 20:22:00 | 000,001,656 | ---- | M] () -- C:\Users\Admin\Documents\584109eb_xIl ToXiC lIx.sav
[2010/07/08 15:57:01 | 000,000,349 | ---- | M] () -- C:\Users\Public\Documents\PCLECHAL.INI
[2010/07/05 20:26:36 | 000,005,120 | ---- | M] () -- C:\Users\Admin\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/06/27 23:36:51 | 001,095,576 | ---- | M] () -- C:\Users\Admin\Desktop\Guitar-Hero-Smash-Hits-Xbox-360-Front-of-Box.jpg
[2010/06/12 01:50:39 | 004,946,643 | ---- | M] () -- C:\Users\Admin\Desktop\i gotta feeling.mp3
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

 

========== Files Created - No Company Name ==========

[2010/08/27 20:58:18 | 000,039,093 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\E3B1DBE6d01
[2010/08/27 20:58:03 | 000,059,299 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\2EB7EB67d01
[2010/08/27 20:58:02 | 000,025,960 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\C0B3970Cd01
[2010/08/27 20:58:02 | 000,023,860 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\03A444D9d01
[2010/08/27 20:58:02 | 000,023,361 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\593C5D24d01
[2010/08/27 20:58:02 | 000,019,974 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\59C6E470d01
[2010/08/27 20:57:58 | 000,031,036 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\489CC9FBd01
[2010/08/27 20:57:58 | 000,025,277 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\4888C950d01
[2010/08/27 20:57:57 | 000,040,644 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\5E634E4Fd01
[2010/08/27 20:57:55 | 000,017,542 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\C11C3B29d01
[2010/08/27 20:57:53 | 000,046,142 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\EDC54DECd01
[2010/08/27 20:57:53 | 000,019,763 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\301E0BD0d01
[2010/08/27 20:57:35 | 000,185,715 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\3CFB7F0Bd01
[2010/08/27 20:57:29 | 000,091,266 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\585A19D5d01
[2010/08/27 20:57:29 | 000,050,325 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\583AA88Ad01
[2010/08/27 20:57:29 | 000,019,980 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\02DD0B44d01
[2010/08/27 20:57:16 | 000,079,148 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\4B737A78d01
[2010/08/27 20:57:14 | 000,040,073 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\A5674B52d01
[2010/08/27 20:57:13 | 000,033,695 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\A2E3530Ad01
[2010/08/27 19:03:28 | 000,059,428 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\B50621E0d01
[2010/08/27 19:03:27 | 000,041,519 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\62156CACd01
[2010/08/27 19:03:27 | 000,019,817 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\88CC190Bd01
[2010/08/27 19:03:26 | 000,020,690 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\04CF0FF7d01
[2010/08/27 19:03:25 | 000,074,404 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\17810075d01
[2010/08/27 19:03:20 | 000,017,297 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\B83AE217d01
[2010/08/27 19:03:20 | 000,017,229 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\43987B1Ad01
[2010/08/27 19:03:19 | 000,145,666 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\34B2960Dd01
[2010/08/27 19:03:18 | 000,066,277 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\CC857951d01
[2010/08/27 19:03:18 | 000,049,703 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\BF340324d01
[2010/08/27 19:03:18 | 000,017,074 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\43867B1Ad01
[2010/08/27 19:03:17 | 000,045,456 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\7037BBDCd01
[2010/08/27 19:03:16 | 000,036,421 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\A41EBC3Ad01
[2010/08/27 19:03:16 | 000,024,302 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\CB52C1A1d01
[2010/08/27 19:03:16 | 000,023,332 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\FF14A108d01
[2010/08/27 19:03:16 | 000,021,549 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\A62B0750d01
[2010/08/27 19:03:15 | 000,016,626 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\97AB8031d01
[2010/08/27 19:02:56 | 000,158,802 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\3511960Cd01
[2010/08/27 19:02:56 | 000,051,937 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\E5859619d01
[2010/08/27 19:02:55 | 000,064,680 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\DDD8AE71d01
[2010/08/27 19:02:55 | 000,054,227 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\9349DEC9d01
[2010/08/27 19:02:55 | 000,039,991 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\1011F48Ed01
[2010/08/27 19:02:55 | 000,037,212 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\54A4D2A3d01
[2010/08/27 19:02:55 | 000,030,503 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\290EF48Ed01
[2010/08/27 19:02:55 | 000,028,978 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\18480130d01
[2010/08/27 19:02:55 | 000,028,917 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\18560130d01
[2010/08/27 19:02:55 | 000,016,536 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\B82FE217d01
[2010/08/27 19:02:39 | 000,042,943 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\C4256486d01
[2010/08/27 19:02:39 | 000,023,727 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\1EAD9F81d01
[2010/08/27 19:02:38 | 000,047,189 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\55CB164Ed01
[2010/08/27 19:02:38 | 000,039,261 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\978CA49Ed01
[2010/08/27 19:02:17 | 000,070,024 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\10CFCA14d01
[2010/08/27 19:02:16 | 000,084,140 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\A1B19F14d01
[2010/08/27 19:02:16 | 000,068,451 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\ABCD5297d01
[2010/08/27 19:02:16 | 000,063,959 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\40410C5Dd01
[2010/08/27 19:02:16 | 000,054,125 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\3FC0283Bd01
[2010/08/27 19:02:16 | 000,047,690 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\9CA0C2B6d01
[2010/08/27 19:02:12 | 000,028,573 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\28430135d01
[2010/08/27 19:02:11 | 000,045,558 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\19B9E936d01
[2010/08/27 19:02:09 | 000,033,026 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\ED6B4C55d01
[2010/08/27 19:02:09 | 000,019,889 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\31B2430Fd01
[2010/08/27 19:00:23 | 000,067,112 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\802C7F56d01
[2010/08/27 18:59:54 | 000,021,563 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\486BBFAFd01
[2010/08/27 18:59:53 | 000,002,354 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\pluginreg.dat
[2010/08/27 18:59:52 | 000,021,563 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\27A9D5FDd01
[2010/08/27 18:56:44 | 000,000,000 | ---- | C] () -- C:\Windows\System32\drivers\SymSMR130.dat
[2010/08/27 18:51:50 | 000,065,536 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\cert8.db
[2010/08/27 18:51:50 | 000,032,768 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\urlclassifier3.sqlite
[2010/08/27 18:51:50 | 000,016,384 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\secmod.db
[2010/08/27 18:51:50 | 000,016,384 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\key3.db
[2010/08/27 18:51:49 | 001,652,529 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\_CACHE_003_
[2010/08/27 18:51:49 | 000,632,834 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\_CACHE_002_
[2010/08/27 18:51:49 | 000,450,314 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\_CACHE_001_
[2010/08/27 18:51:49 | 000,000,276 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\_CACHE_MAP_
[2010/08/27 18:51:24 | 000,002,048 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\webappsstore.sqlite
[2010/08/27 18:51:23 | 000,006,144 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\cookies.sqlite
[2010/08/27 18:51:23 | 000,002,048 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\permissions.sqlite
[2010/08/27 18:51:20 | 000,241,664 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\places.sqlite
[2010/08/27 18:51:20 | 000,066,176 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\places.sqlite-journal
[2010/08/27 18:51:19 | 000,142,385 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\compreg.dat
[2010/08/27 18:51:18 | 000,102,022 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\xpti.dat
[2010/08/27 18:51:05 | 000,017,215 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\necko.xpt
[2010/08/27 18:51:05 | 000,012,938 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\pipnss.xpt
[2010/08/27 18:51:05 | 000,011,652 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\places.xpt
[2010/08/27 18:51:05 | 000,011,151 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\widget.xpt
[2010/08/27 18:51:05 | 000,011,095 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\xpcom_ds.xpt
[2010/08/27 18:51:05 | 000,008,438 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\xpconnect.xpt
[2010/08/27 18:51:05 | 000,007,420 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\xpcom_io.xpt
[2010/08/27 18:51:05 | 000,005,510 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\webBrowser_core.xpt
[2010/08/27 18:51:05 | 000,005,145 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\plugin.xpt
[2010/08/27 18:51:05 | 000,004,908 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\rdf.xpt
[2010/08/27 18:51:05 | 000,003,290 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\pref.xpt
[2010/08/27 18:51:05 | 000,003,185 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\xpcom_base.xpt
[2010/08/27 18:51:05 | 000,003,155 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\storage.xpt
[2010/08/27 18:51:05 | 000,003,040 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\xpcom_components.xpt
[2010/08/27 18:51:05 | 000,002,958 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\shistory.xpt
[2010/08/27 18:51:05 | 000,002,793 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\windowwatcher.xpt
[2010/08/27 18:51:05 | 000,002,713 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\uriloader.xpt
[2010/08/27 18:51:05 | 000,002,646 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\update.xpt
[2010/08/27 18:51:05 | 000,002,602 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\necko_http.xpt
[2010/08/27 18:51:05 | 000,002,595 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\necko_cache.xpt
[2010/08/27 18:51:05 | 000,002,425 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\xultmpl.xpt
[2010/08/27 18:51:05 | 000,002,369 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\saxparser.xpt
[2010/08/27 18:51:05 | 000,002,240 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\xpcom_thread.xpt
[2010/08/27 18:51:05 | 000,002,074 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\webbrowserpersist.xpt
[2010/08/27 18:51:05 | 000,002,008 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\mimetype.xpt
[2010/08/27 18:51:05 | 000,001,896 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\xpcom_system.xpt
[2010/08/27 18:51:05 | 000,001,784 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\loginmgr.xpt
[2010/08/27 18:51:05 | 000,001,648 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\necko_cookie.xpt
[2010/08/27 18:51:05 | 000,001,560 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\xpcom_xpti.xpt
[2010/08/27 18:51:05 | 000,001,491 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\uconv.xpt
[2010/08/27 18:51:05 | 000,001,475 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\necko_strconv.xpt
[2010/08/27 18:51:05 | 000,001,293 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\webshell_idls.xpt
[2010/08/27 18:51:05 | 000,001,258 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\txmgr.xpt
[2010/08/27 18:51:05 | 000,001,209 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\xuldoc.xpt
[2010/08/27 18:51:05 | 000,001,181 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\unicharutil.xpt
[2010/08/27 18:51:05 | 000,001,179 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\prefetch.xpt
[2010/08/27 18:51:05 | 000,001,120 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\oji.xpt
[2010/08/27 18:51:05 | 000,001,111 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\xpinstall.xpt
[2010/08/27 18:51:05 | 000,001,088 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\toolkitprofile.xpt
[2010/08/27 18:51:05 | 000,001,081 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\necko_dns.xpt
[2010/08/27 18:51:05 | 000,001,060 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\spellchecker.xpt
[2010/08/27 18:51:05 | 000,001,011 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\xml-rpc.xpt
[2010/08/27 18:51:05 | 000,000,893 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\necko_socket.xpt
[2010/08/27 18:51:05 | 000,000,858 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\grabber.gif
[2010/08/27 18:51:05 | 000,000,845 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\mozfind.xpt
[2010/08/27 18:51:05 | 000,000,841 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\table-remove-row-hover.gif
[2010/08/27 18:51:05 | 000,000,841 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\table-remove-row.gif
[2010/08/27 18:51:05 | 000,000,841 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\table-remove-column-hover.gif
[2010/08/27 18:51:05 | 000,000,841 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\table-remove-column.gif
[2010/08/27 18:51:05 | 000,000,835 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\table-remove-row-active.gif
[2010/08/27 18:51:05 | 000,000,835 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\table-remove-column-active.gif
[2010/08/27 18:51:05 | 000,000,826 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\table-add-row-after-hover.gif
[2010/08/27 18:51:05 | 000,000,826 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\table-add-row-after.gif
[2010/08/27 18:51:05 | 000,000,826 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\table-add-column-after-hover.gif
[2010/08/27 18:51:05 | 000,000,826 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\table-add-column-after.gif
[2010/08/27 18:51:05 | 000,000,825 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\table-add-row-before-hover.gif
[2010/08/27 18:51:05 | 000,000,825 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\table-add-row-before.gif
[2010/08/27 18:51:05 | 000,000,825 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\table-add-column-before-hover.gif
[2010/08/27 18:51:05 | 000,000,825 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\table-add-column-before.gif
[2010/08/27 18:51:05 | 000,000,771 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\zipwriter.xpt
[2010/08/27 18:51:05 | 000,000,759 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\txtsvc.xpt
[2010/08/27 18:51:05 | 000,000,718 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\satchel.xpt
[2010/08/27 18:51:05 | 000,000,652 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\profile.xpt
[2010/08/27 18:51:05 | 000,000,628 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\pipboot.xpt
[2010/08/27 18:51:05 | 000,000,619 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\html\folder.png
[2010/08/27 18:51:05 | 000,000,613 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\xulapp.xpt
[2010/08/27 18:51:05 | 000,000,537 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\parentalcontrols.xpt
[2010/08/27 18:51:05 | 000,000,437 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\necko_file.xpt
[2010/08/27 18:51:05 | 000,000,377 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\pippki.xpt
[2010/08/27 18:51:05 | 000,000,312 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\necko_about.xpt
[2010/08/27 18:51:05 | 000,000,296 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\mozbrwsr.xpt
[2010/08/27 18:51:05 | 000,000,287 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\proxyObject.xpt
[2010/08/27 18:51:05 | 000,000,285 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\necko_res.xpt
[2010/08/27 18:51:05 | 000,000,212 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\windowds.xpt
[2010/08/27 18:51:05 | 000,000,201 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\necko_ftp.xpt
[2010/08/27 18:51:05 | 000,000,198 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\xulapp_setup.xpt
[2010/08/27 18:51:05 | 000,000,188 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\necko_viewsource.xpt
[2010/08/27 18:51:05 | 000,000,174 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\lwbrk.xpt
[2010/08/27 18:51:05 | 000,000,172 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\urlformatter.xpt
[2010/08/27 18:51:05 | 000,000,122 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\loading-image.gif
[2010/08/27 18:51:05 | 000,000,106 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\broken-image.gif
[2010/08/27 18:51:05 | 000,000,059 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\arrowd.gif
[2010/08/27 18:51:05 | 000,000,058 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\table-add-column-after-active.gif
[2010/08/27 18:51:05 | 000,000,057 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\table-add-row-before-active.gif
[2010/08/27 18:51:05 | 000,000,057 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\table-add-row-after-active.gif
[2010/08/27 18:51:05 | 000,000,057 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\table-add-column-before-active.gif
[2010/08/27 18:51:05 | 000,000,056 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\arrow.gif
[2010/08/27 18:51:04 | 000,348,994 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\browser.xpt
[2010/08/27 18:51:04 | 000,056,411 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\fonts\mathfont.properties
[2010/08/27 18:51:04 | 000,038,499 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\entityTables\transliterate.properties
[2010/08/27 18:51:04 | 000,030,004 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\entityTables\mathml20.properties
[2010/08/27 18:51:04 | 000,023,460 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\dom_svg.xpt
[2010/08/27 18:51:04 | 000,019,182 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\accessibility.xpt
[2010/08/27 18:51:04 | 000,018,049 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\dom_html.xpt
[2010/08/27 18:51:04 | 000,011,997 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\dom_css.xpt
[2010/08/27 18:51:04 | 000,011,557 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\editor.xpt
[2010/08/27 18:51:04 | 000,011,392 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\charsetalias.properties
[2010/08/27 18:51:04 | 000,010,561 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\docshell_base.xpt
[2010/08/27 18:51:04 | 000,009,998 | ---- | C] () -- C:\Windows\System32\drivers\f\1\modules\XPCOMUtils.jsm
[2010/08/27 18:51:04 | 000,009,551 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\charsetData.properties
[2010/08/27 18:51:04 | 000,009,477 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\dom_base.xpt
[2010/08/27 18:51:04 | 000,009,066 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\content_base.xpt
[2010/08/27 18:51:04 | 000,007,585 | ---- | C] () -- C:\Windows\System32\drivers\f\1\modules\PluralForm.jsm
[2010/08/27 18:51:04 | 000,007,408 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\dom_xul.xpt
[2010/08/27 18:51:04 | 000,007,301 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\dom_core.xpt
[2010/08/27 18:51:04 | 000,006,869 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\dom_events.xpt
[2010/08/27 18:51:04 | 000,006,719 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\fonts\mathfontUnicode.properties
[2010/08/27 18:51:04 | 000,006,029 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\jsdservice.xpt
[2010/08/27 18:51:04 | 000,005,649 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\langGroups.properties
[2010/08/27 18:51:04 | 000,005,493 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\fonts\mathfontSTIXNonUnicode.properties
[2010/08/27 18:51:04 | 000,005,490 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\language.properties
[2010/08/27 18:51:04 | 000,004,090 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\entityTables\html40Symbols.properties
[2010/08/27 18:51:04 | 000,003,954 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\fonts\mathfontSymbol.properties
[2010/08/27 18:51:04 | 000,003,902 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\fonts\mathfontStandardSymbolsL.properties
[2010/08/27 18:51:04 | 000,003,831 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\extensions.xpt
[2010/08/27 18:51:04 | 000,003,731 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\layout_xul_tree.xpt
[2010/08/27 18:51:04 | 000,003,690 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\entityTables\html40Latin1.properties
[2010/08/27 18:51:04 | 000,003,603 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\autocomplete.xpt
[2010/08/27 18:51:04 | 000,003,274 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\feeds.xpt
[2010/08/27 18:51:04 | 000,003,033 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\fonts\mathfontSTIXSize1.properties
[2010/08/27 18:51:04 | 000,003,021 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\imglib2.xpt
[2010/08/27 18:51:04 | 000,002,719 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\caps.xpt
[2010/08/27 18:51:04 | 000,002,621 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\dom_loadsave.xpt
[2010/08/27 18:51:04 | 000,002,547 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\appshell.xpt
[2010/08/27 18:51:04 | 000,002,512 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\content_xtf.xpt
[2010/08/27 18:51:04 | 000,002,502 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\inspector.xpt
[2010/08/27 18:51:04 | 000,002,396 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\entityTables\html40Special.properties
[2010/08/27 18:51:04 | 000,002,232 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\downloads.xpt
[2010/08/27 18:51:04 | 000,002,122 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\layout_xul.xpt
[2010/08/27 18:51:04 | 000,002,080 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\wincharset.properties
[2010/08/27 18:51:04 | 000,001,981 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\exthandler.xpt
[2010/08/27 18:51:04 | 000,001,967 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\entityTables\htmlEntityVersions.properties
[2010/08/27 18:51:04 | 000,001,930 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\dom_canvas.xpt
[2010/08/27 18:51:04 | 000,001,789 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\commandhandler.xpt
[2010/08/27 18:51:04 | 000,001,508 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\exthelper.xpt
[2010/08/27 18:51:04 | 000,001,451 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\gfx.xpt
[2010/08/27 18:51:04 | 000,001,417 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\dom_xpath.xpt
[2010/08/27 18:51:04 | 000,001,346 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\jar.xpt
[2010/08/27 18:51:04 | 000,001,326 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\content_xslt.xpt
[2010/08/27 18:51:04 | 000,001,282 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\dom_traversal.xpt
[2010/08/27 18:51:04 | 000,001,263 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\dom_offline.xpt
[2010/08/27 18:51:04 | 000,001,260 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\locale.xpt
[2010/08/27 18:51:04 | 000,001,240 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\dom_range.xpt
[2010/08/27 18:51:04 | 000,001,036 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\find.xpt
[2010/08/27 18:51:04 | 000,001,019 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\dom_stylesheets.xpt
[2010/08/27 18:51:04 | 000,000,960 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\commandlines.xpt
[2010/08/27 18:51:04 | 000,000,911 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\layout_printing.xpt
[2010/08/27 18:51:04 | 000,000,874 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\dom_storage.xpt
[2010/08/27 18:51:04 | 000,000,856 | ---- | C] () -- C:\Windows\System32\drivers\f\1\plugins\flashplayer.xpt
[2010/08/27 18:51:04 | 000,000,774 | ---- | C] () -- C:\Windows\System32\drivers\f\1\chrome\en-US.manifest
[2010/08/27 18:51:04 | 000,000,755 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\composer.xpt
[2010/08/27 18:51:04 | 000,000,724 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\contentprefs.xpt
[2010/08/27 18:51:04 | 000,000,700 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\content_html.xpt
[2010/08/27 18:51:04 | 000,000,694 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\htmlparser.xpt
[2010/08/27 18:51:04 | 000,000,693 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\content_xmldoc.xpt
[2010/08/27 18:51:04 | 000,000,679 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\chardet.xpt
[2010/08/27 18:51:04 | 000,000,645 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\intl.xpt
[2010/08/27 18:51:04 | 000,000,605 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\content_htmldoc.xpt
[2010/08/27 18:51:04 | 000,000,599 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\fastfind.xpt
[2010/08/27 18:51:04 | 000,000,552 | ---- | C] () -- C:\Windows\System32\drivers\f\1\chrome\classic.manifest
[2010/08/27 18:51:04 | 000,000,551 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\dom_sidebar.xpt
[2010/08/27 18:51:04 | 000,000,543 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\appstartup.xpt
[2010/08/27 18:51:04 | 000,000,530 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\embed_base.xpt
[2010/08/27 18:51:04 | 000,000,517 | ---- | C] () -- C:\Windows\System32\drivers\f\1\chrome\toolkit.manifest
[2010/08/27 18:51:04 | 000,000,488 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\cookie.xpt
[2010/08/27 18:51:04 | 000,000,451 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\dom_xbl.xpt
[2010/08/27 18:51:04 | 000,000,377 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\dom.xpt
[2010/08/27 18:51:04 | 000,000,373 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\directory.xpt
[2010/08/27 18:51:04 | 000,000,356 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\mimeTypes.rdf
[2010/08/27 18:51:04 | 000,000,349 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\dom_json.xpt
[2010/08/27 18:51:04 | 000,000,344 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\chrome.xpt
[2010/08/27 18:51:04 | 000,000,326 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\imgicon.xpt
[2010/08/27 18:51:04 | 000,000,302 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\layout_base.xpt
[2010/08/27 18:51:04 | 000,000,233 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\accessibility-msaa.xpt
[2010/08/27 18:51:04 | 000,000,226 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\dom_views.xpt
[2010/08/27 18:51:04 | 000,000,211 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\autoconfig.xpt
[2010/08/27 18:51:04 | 000,000,211 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\alerts.xpt
[2010/08/27 18:51:04 | 000,000,172 | ---- | C] () -- C:\Windows\System32\drivers\f\1\chrome\geckofx.manifest
[2010/08/27 18:51:04 | 000,000,153 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\US\localstore.rdf
[2010/08/27 18:51:04 | 000,000,153 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\localstore.rdf
[2010/08/27 18:51:04 | 000,000,144 | ---- | C] () -- C:\Windows\System32\drivers\f\1\chrome\comm.manifest
[2010/08/27 18:51:04 | 000,000,069 | ---- | C] () -- C:\Windows\System32\drivers\f\1\chrome\pippki.manifest
[2010/08/27 18:51:03 | 000,115,501 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\nsUpdateService.js
[2010/08/27 18:51:03 | 000,110,913 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\nsSearchService.js
[2010/08/27 18:51:03 | 000,077,051 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\nsMicrosummaryService.js
[2010/08/27 18:51:03 | 000,076,993 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\nsSessionStore.js
[2010/08/27 18:51:03 | 000,061,758 | ---- | C] () -- C:\Windows\System32\drivers\f\1\modules\utils.js
[2010/08/27 18:51:03 | 000,050,600 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\nsUrlClassifierLib.js
[2010/08/27 18:51:03 | 000,049,926 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\storage-Legacy.js
[2010/08/27 18:51:03 | 000,044,106 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\nsLoginManager.js
[2010/08/27 18:51:03 | 000,040,367 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\nsLoginManagerPrompter.js
[2010/08/27 18:51:03 | 000,037,314 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\nsProgressDialog.js
[2010/08/27 18:51:03 | 000,035,256 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\nsXmlRpcClient.js
[2010/08/27 18:51:03 | 000,034,011 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\WebContentConverter.js
[2010/08/27 18:51:03 | 000,033,805 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\nsPlacesTransactionsService.js
[2010/08/27 18:51:03 | 000,025,176 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\nsSafebrowsingApplication.js
[2010/08/27 18:51:03 | 000,024,273 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\nsSearchSuggestions.js
[2010/08/27 18:51:03 | 000,021,420 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\nsPostUpdateWin.js
[2010/08/27 18:51:03 | 000,019,983 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\nsUrlClassifierListManager.js
[2010/08/27 18:51:03 | 000,017,380 | ---- | C] () -- C:\Windows\System32\drivers\f\1\modules\DownloadUtils.jsm
[2010/08/27 18:51:03 | 000,013,682 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\nsProxyAutoConfig.js
[2010/08/27 18:51:03 | 000,012,513 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\nsSidebar.js
[2010/08/27 18:51:03 | 000,011,428 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\nsSessionStartup.js
[2010/08/27 18:51:03 | 000,009,967 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\nsTaggingService.js
[2010/08/27 18:51:03 | 000,009,399 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\nsRequestService.js
[2010/08/27 18:51:03 | 000,008,278 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\nsXULAppInstall.js
[2010/08/27 18:51:03 | 000,007,296 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\autoconfig\prefcalls.js
[2010/08/27 18:51:03 | 000,007,049 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\nsResetPref.js
[2010/08/27 18:51:03 | 000,007,039 | ---- | C] () -- C:\Windows\System32\drivers\f\1\modules\ISO8601DateUtils.jsm
[2010/08/27 18:51:03 | 000,006,920 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\nsWebHandlerApp.js
[2010/08/27 18:51:03 | 000,006,721 | ---- | C] () -- C:\Windows\System32\drivers\f\1\modules\JSON.jsm
[2010/08/27 18:51:03 | 000,006,667 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\txEXSLTRegExFunctions.js
[2010/08/27 18:51:03 | 000,004,302 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\nsLoginInfo.js
[2010/08/27 18:51:03 | 000,003,930 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\pref\xulrunner.js
[2010/08/27 18:51:03 | 000,003,378 | ---- | C] () -- C:\Windows\System32\drivers\f\1\greprefs\security-prefs.js
[2010/08/27 18:51:03 | 000,003,268 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\nsTryToClose.js
[2010/08/27 18:51:03 | 000,003,142 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\pluginGlue.js
[2010/08/27 18:51:03 | 000,003,115 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\nsURLFormatter.js
[2010/08/27 18:51:03 | 000,002,854 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\nsSetDefaultBrowser.js
[2010/08/27 18:51:03 | 000,000,347 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\prefs.js
[2010/08/27 18:51:03 | 000,000,208 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\pref\reporter.js
[2010/08/27 18:51:03 | 000,000,087 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\autoconfig\platform.js
[2010/08/27 18:51:03 | 000,000,085 | ---- | C] () -- C:\Windows\System32\drivers\f\1\greprefs\xpinstall.js
[2010/08/27 18:51:02 | 000,333,726 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\nsExtensionManager.js
[2010/08/27 18:51:02 | 000,072,928 | ---- | C] () -- C:\Windows\System32\drivers\f\1\greprefs\all.js
[2010/08/27 18:51:02 | 000,066,215 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\FeedProcessor.js
[2010/08/27 18:51:02 | 000,064,412 | ---- | C] () -- C:\Windows\System32\drivers\f\1\modules\Microformats.js
[2010/08/27 18:51:02 | 000,051,214 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\nsHandlerService.js
[2010/08/27 18:51:02 | 000,049,780 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\FeedWriter.js
[2010/08/27 18:51:02 | 000,041,950 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\nsHelperAppDlg.js
[2010/08/27 18:51:02 | 000,038,238 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\fuelApplication.js
[2010/08/27 18:51:02 | 000,036,111 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\nsLivemarkService.js
[2010/08/27 18:51:02 | 000,035,102 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\pref\firefox.js
[2010/08/27 18:51:02 | 000,033,087 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\nsBrowserContentHandler.js
[2010/08/27 18:51:02 | 000,032,409 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\nsBrowserGlue.js
[2010/08/27 18:51:02 | 000,030,074 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\nsBlocklistService.js
[2010/08/27 18:51:02 | 000,029,973 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\nsContentPrefService.js
[2010/08/27 18:51:02 | 000,025,339 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\FeedConverter.js
[2010/08/27 18:51:02 | 000,012,091 | ---- | C] () -- C:\Windows\System32\drivers\f\1\modules\distribution.js
[2010/08/27 18:51:02 | 000,011,677 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\nsAddonRepository.js
[2010/08/27 18:51:02 | 000,006,265 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\nsDefaultCLH.js
[2010/08/27 18:51:02 | 000,005,737 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\nsDownloadManagerUI.js
[2010/08/27 18:51:02 | 000,005,005 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\nsContentDispatchChooser.js
[2010/08/27 18:51:02 | 000,004,805 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\nsDictionary.js
[2010/08/27 18:51:02 | 000,003,104 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\nsBadCertHandler.js
[2010/08/27 18:51:02 | 000,002,927 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\aboutRobots.js
[2010/08/27 18:51:02 | 000,002,925 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\aboutRights.js
[2010/08/27 18:51:02 | 000,002,738 | ---- | C] () -- C:\Windows\System32\drivers\f\1\modules\debug.js
[2010/08/27 18:51:02 | 000,001,512 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\jsconsole-clhandler.js
[2010/08/27 18:51:02 | 000,000,915 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\pref\firefox-branding.js
[2010/08/27 18:51:02 | 000,000,224 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\pref\firefox-l10n.js
[2010/08/27 18:51:02 | 000,000,126 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\pref\channel-prefs.js
[2010/08/27 18:51:01 | 001,915,137 | ---- | C] () -- C:\Windows\System32\drivers\f\1\chrome\toolkit.jar
[2010/08/27 18:51:01 | 000,777,705 | ---- | C] () -- C:\Windows\System32\drivers\f\1\chrome\classic.jar
[2010/08/27 18:51:01 | 000,332,438 | ---- | C] () -- C:\Windows\System32\drivers\f\1\chrome\en-US.jar
[2010/08/27 18:51:01 | 000,317,480 | ---- | C] () -- C:\Windows\System32\drivers\f\1\chrome\pippki.jar
[2010/08/27 18:51:01 | 000,063,788 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\dtd\mathml.dtd
[2010/08/27 18:51:01 | 000,039,680 | ---- | C] () -- C:\Windows\System32\drivers\f\1\chrome\comm.jar
[2010/08/27 18:51:01 | 000,013,443 | ---- | C] () -- C:\Windows\System32\drivers\f\1\chrome\geckofx.jar
[2010/08/27 18:51:01 | 000,008,427 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\dtd\xhtml11.dtd
[2010/08/27 18:51:00 | 000,015,416 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\forms.css
[2010/08/27 18:51:00 | 000,014,664 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\mathml.css
[2010/08/27 18:51:00 | 000,011,637 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\contenteditable.css
[2010/08/27 18:51:00 | 000,011,608 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\quirk.css
[2010/08/27 18:51:00 | 000,011,096 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\html.css
[2010/08/27 18:51:00 | 000,010,740 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\EditorOverride.css
[2010/08/27 18:51:00 | 000,006,469 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\ua.css
[2010/08/27 18:51:00 | 000,003,037 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\viewsource.css
[2010/08/27 18:51:00 | 000,002,295 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\svg.css
[2010/08/27 18:51:00 | 000,001,861 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\designmode.css
[2010/08/27 18:51:00 | 000,001,078 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\US\chrome\userChrome-example.css
[2010/08/27 18:51:00 | 000,001,078 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\chrome\userChrome-example.css
[2010/08/27 18:51:00 | 000,000,663 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\US\chrome\userContent-example.css
[2010/08/27 18:51:00 | 000,000,663 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\chrome\userContent-example.css
[2010/08/27 18:51:00 | 000,000,478 | ---- | C] () -- C:\Windows\System32\drivers\f\1\softokn3.chk
[2010/08/27 18:51:00 | 000,000,478 | ---- | C] () -- C:\Windows\System32\drivers\f\1\freebl3.chk
[2010/08/27 18:50:59 | 005,969,360 | ---- | C] () -- C:\Windows\System32\drivers\f\1\plugins\NPSWF32.dll
[2010/08/27 18:50:59 | 000,007,139 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\bookmarks.html
[2010/08/27 18:50:59 | 000,000,117 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\hiddenWindow.html
[2010/08/27 18:30:12 | 000,256,512 | ---- | C] () -- C:\Windows\PEV.exe
[2010/08/27 18:30:12 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2010/08/27 18:30:12 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2010/08/27 18:30:12 | 000,077,312 | ---- | C] () -- C:\Windows\MBR.exe
[2010/08/27 18:30:12 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2010/08/27 06:40:47 | 001,042,891 | ---- | C] () -- C:\Users\Admin\Desktop\CIMG0150.jpg
[2010/08/27 06:15:17 | 000,255,497 | ---- | C] () -- C:\Users\Admin\Desktop\Untitled.jpg
[2010/08/27 06:05:06 | 003,828,997 | R--- | C] () -- C:\Users\Admin\Desktop\ComboFix.exe
[2010/08/27 06:03:58 | 000,000,119 | ---- | C] () -- C:\Users\Admin\Desktop\[Active] Infected with SafeSurf and SurfGuard.url
[2010/08/27 03:09:45 | 000,000,096 | ---- | C] () -- C:\Users\Admin\Desktop\YouTube - drmongs's Channel.url
[2010/08/27 02:08:11 | 000,000,085 | ---- | C] () -- C:\Users\Admin\Desktop\Bioshock 2 Guide, by DrMong - Maps and Audio Diary Locations.url
[2010/08/24 00:08:15 | 000,032,256 | ---- | C] () -- C:\Users\Admin\Desktop\Scanning Report.doc
[2010/08/23 19:35:11 | 000,000,074 | ---- | C] () -- C:\Users\Admin\Desktop\Infected with SafeSurf and SurfGuard - Safer-Networking Forums.URL
[2010/08/23 19:26:09 | 000,254,074 | ---- | C] () -- C:\Users\Admin\Desktop\vrs3.jpg
[2010/08/23 19:07:15 | 000,003,703 | ---- | C] () -- C:\Users\Admin\Desktop\Attach.zip
[2010/08/23 18:08:25 | 000,000,899 | ---- | C] () -- C:\Users\Admin\Application Data\Microsoft\Internet Explorer\Quick Launch\ERUNT.lnk
[2010/08/23 18:08:25 | 000,000,875 | ---- | C] () -- C:\Users\Admin\Desktop\ERUNT.lnk
[2010/08/23 17:58:56 | 000,525,824 | ---- | C] () -- C:\Users\Admin\Desktop\dds.scr
[2010/08/23 04:48:18 | 000,581,854 | ---- | C] () -- C:\Users\Admin\Desktop\vrs2.jpg
[2010/08/23 04:47:42 | 000,384,354 | ---- | C] () -- C:\Users\Admin\Desktop\vrs.jpg
[2010/08/23 01:07:24 | 000,000,071 | ---- | C] () -- C:\Users\Admin\Desktop\safesurf.exe.URL
[2010/08/23 00:46:13 | 000,007,643 | ---- | C] () -- C:\Users\Admin\AppData\Local\Resmon.ResmonCfg
[2010/08/21 00:41:58 | 000,422,912 | ---- | C] () -- C:\Users\Admin\Desktop\Doc1.doc
[2010/08/20 22:48:30 | 000,001,240 | ---- | C] () -- C:\Users\Admin\Application Data\Microsoft\Internet Explorer\Quick Launch\Spybot - Search & Destroy.lnk
[2010/08/20 22:48:30 | 000,001,216 | ---- | C] () -- C:\Users\Admin\Desktop\Spybot - Search & Destroy.lnk
[2010/08/15 17:35:26 | 000,004,286 | ---- | C] () -- C:\Windows\System32\ico.ico
[2010/08/15 17:34:51 | 009,655,685 | ---- | C] () -- C:\Windows\System32\drivers\f\jet.exe
[2010/08/12 19:46:44 | 000,002,398 | ---- | C] () -- C:\Users\Admin\Desktop\Google Chrome.lnk
[2010/08/12 19:45:53 | 000,000,908 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3156090111-885036254-1565554444-1001UA.job
[2010/08/12 19:45:52 | 000,000,856 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3156090111-885036254-1565554444-1001Core.job
[2010/08/12 13:49:18 | 000,830,976 | ---- | C] () -- C:\Windows\System32\Help64.exe
[2010/07/25 02:37:26 | 000,000,056 | -H-- | C] () -- C:\Windows\System32\ezsidmv.dat
[2010/07/16 00:38:54 | 000,392,704 | ---- | C] () -- C:\Windows\System32\ICH.exe
[2010/07/15 17:41:10 | 000,000,083 | ---- | C] () -- C:\Users\Admin\Desktop\MyXboxMods - View topic - [TUT]How to mod Bioshock 2 (Without modio).URL
[2010/07/14 01:53:25 | 158,069,940 | ---- | C] () -- C:\Users\Admin\Desktop\How to Hex Edit Bioshock 2 Xbox 360 (Remade) [www.keepvid.com].mp4
[2010/07/14 00:49:41 | 000,001,178 | ---- | C] () -- C:\Users\Public\Desktop\Hex Workshop Hex Editor.lnk
[2010/07/09 20:22:00 | 000,001,656 | ---- | C] () -- C:\Users\Admin\Documents\584109eb_xIl ToXiC lIx.sav
[2010/06/27 23:36:42 | 001,095,576 | ---- | C] () -- C:\Users\Admin\Desktop\Guitar-Hero-Smash-Hits-Xbox-360-Front-of-Box.jpg
[2010/06/12 01:50:35 | 004,946,643 | ---- | C] () -- C:\Users\Admin\Desktop\i gotta feeling.mp3
[2010/04/30 23:15:28 | 000,000,759 | ---- | C] () -- C:\ProgramData\hpzinstall.log
[2010/04/02 17:17:34 | 000,179,091 | ---- | C] () -- C:\Windows\System32\xlive.dll.cat
[2010/04/01 22:35:15 | 000,000,069 | ---- | C] () -- C:\Windows\NeroDigital.ini
[2010/01/27 19:45:58 | 000,000,275 | ---- | C] () -- C:\Users\Admin\AppData\Roaming\default.rss
[2009/12/23 21:48:26 | 000,005,120 | ---- | C] () -- C:\Users\Admin\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009/10/28 16:32:42 | 000,237,568 | R--- | C] () -- C:\Windows\System32\qtmlClient.dll
[2009/10/28 16:32:42 | 000,000,000 | ---- | C] () -- C:\Windows\Graffiti5.2Pin.ini
[2009/10/28 15:38:17 | 000,000,376 | ---- | C] () -- C:\Windows\ODBC.INI
[2009/10/27 22:05:04 | 000,000,258 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2009/07/13 19:51:43 | 000,073,728 | ---- | C] () -- C:\Windows\System32\BthpanContextHandler.dll
[2009/07/13 19:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\System32\BWContextHandler.dll
[2009/05/26 18:38:12 | 000,026,888 | ---- | C] () -- C:\Windows\System32\drivers\swmsflt.sys
[2008/02/08 17:13:44 | 000,319,488 | ---- | C] () -- C:\Windows\System32\LS3Renderer.dll
[2007/01/26 02:04:12 | 000,138,752 | ---- | C] () -- C:\Windows\System32\mase32.dll
[2007/01/26 02:04:12 | 000,027,648 | ---- | C] () -- C:\Windows\System32\ma32.dll

========== LOP Check ==========

[2010/06/16 02:35:50 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\BoneTown
[2010/01/19 14:57:39 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\Bytemobile
[2010/07/15 05:03:28 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\Camfrog
[2009/12/29 00:43:37 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\CanuckSoftware
[2010/08/15 17:34:55 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\Emergency Soft
[2010/05/28 22:45:58 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\GameTuts
[2010/08/27 06:16:58 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\IObit
[2010/04/12 15:27:20 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\Mael
[2009/10/28 16:33:52 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\proDAD
[2010/07/06 19:42:18 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\Publish Providers
[2010/07/06 20:38:59 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\Sony
[2010/01/19 15:04:05 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\Sprint
[2010/07/10 16:44:54 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\SystemRequirementsLab
[2010/08/27 16:23:46 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\Tific
[2010/04/24 01:29:49 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\TuneUpMedia
[2010/08/27 15:03:33 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\uTorrent
[2010/02/13 23:07:08 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\WildPackets
[2010/08/20 22:40:57 | 000,032,602 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========



========== Custom Scans ==========


< %SYSTEMDRIVE%\*.exe >


< MD5 for: AGP440.SYS >
[2009/07/13 21:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- C:\Windows\System32\drivers\AGP440.sys
[2009/07/13 21:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_x86_neutral_65848c2d7375a720\AGP440.sys
[2009/07/13 21:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.1.7600.16385_none_b9e9435f20046eeb\AGP440.sys

< MD5 for: ATAPI.SYS >
[2009/07/13 21:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\System32\drivers\atapi.sys
[2009/07/13 21:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_x86_neutral_f64b9c35a3a5be81\atapi.sys
[2009/07/13 21:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.1.7600.16385_none_dd0e7e3d82dd640d\atapi.sys

< MD5 for: CNGAUDIT.DLL >
[2009/07/13 21:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\System32\cngaudit.dll
[2009/07/13 21:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_e83a414890e8132b\cngaudit.dll

< MD5 for: IASTORV.SYS >
[2009/07/13 21:20:36 | 000,332,352 | ---- | M] (Intel Corporation) MD5=934AF4D7C5F457B9F0743F4299B77B67 -- C:\Windows\System32\drivers\iaStorV.sys
[2009/07/13 21:20:36 | 000,332,352 | ---- | M] (Intel Corporation) MD5=934AF4D7C5F457B9F0743F4299B77B67 -- C:\Windows\System32\DriverStore\FileRepository\iastorv.inf_x86_neutral_18cccb83b34e1453\iaStorV.sys
[2009/07/13 21:20:36 | 000,332,352 | ---- | M] (Intel Corporation) MD5=934AF4D7C5F457B9F0743F4299B77B67 -- C:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.1.7600.16385_none_aee7a89be91b9000\iaStorV.sys

< MD5 for: NETLOGON.DLL >
[2009/07/13 21:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\System32\netlogon.dll
[2009/07/13 21:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7600.16385_none_fd8e0d66994d7dc8\netlogon.dll

< MD5 for: NVSTOR.SYS >
[2009/07/13 21:20:44 | 000,142,416 | ---- | M] (NVIDIA Corporation) MD5=C99F251A5DE63C6F129CF71933ACED0F -- C:\Windows\System32\drivers\nvstor.sys
[2009/07/13 21:20:44 | 000,142,416 | ---- | M] (NVIDIA Corporation) MD5=C99F251A5DE63C6F129CF71933ACED0F -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_x86_neutral_5bde3fe2945bce9e\nvstor.sys
[2009/07/13 21:20:44 | 000,142,416 | ---- | M] (NVIDIA Corporation) MD5=C99F251A5DE63C6F129CF71933ACED0F -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7600.16385_none_39b1194b205239d8\nvstor.sys

< MD5 for: NVSTOR32.SYS >
[2009/06/30 17:32:54 | 000,212,000 | ---- | M] (NVIDIA Corporation) MD5=032EF66DD96692AD3A9D36160F467F67 -- C:\SWSETUP\SP45168\IDE\Win7\sata_ide\nvstor32.sys
[2009/06/30 17:32:54 | 000,212,000 | ---- | M] (NVIDIA Corporation) MD5=032EF66DD96692AD3A9D36160F467F67 -- C:\SWSETUP\SP45168\IDE\WinVista\sata_ide\nvstor32.sys
[2009/06/30 17:33:08 | 000,212,000 | ---- | M] (NVIDIA Corporation) MD5=3A1A03FF72DF7114B35AE0FD6781464D -- C:\SWSETUP\SP45168\IDE\Win7\sataraid\nvstor32.sys
[2009/06/30 17:33:08 | 000,212,000 | ---- | M] (NVIDIA Corporation) MD5=3A1A03FF72DF7114B35AE0FD6781464D -- C:\SWSETUP\SP45168\IDE\WinVista\sataraid\nvstor32.sys

< MD5 for: SCECLI.DLL >
[2009/07/13 21:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\System32\scecli.dll
[2009/07/13 21:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_37e4387f3a6f0483\scecli.dll

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >
[2009/07/13 21:15:36 | 000,226,816 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\System32\LocationApi.dll
[2009/07/13 21:16:18 | 000,489,472 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\System32\win32spl.dll

< %systemroot%\System32\config\*.sav >

========== Alternate Data Streams ==========

@Alternate Data Stream - 164 bytes -> C:\ProgramData\TEMP:CB0AACC9
@Alternate Data Stream - 121 bytes -> C:\ProgramData\TEMPFC5A2B2
@Alternate Data Stream - 109 bytes -> C:\ProgramData\TEMP:A8ADE5D8

< End of report >

 

OTL Extras logfile created on: 8/27/2010 9:00:15 PM - Run 1
OTL by OldTimer - Version 3.2.10.0 Folder = C:\Users\Admin\Desktop
Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

2.00 Gb Total Physical Memory | 1.00 Gb Available Physical Memory | 56.00% Memory free
3.00 Gb Paging File | 3.00 Gb Available in Paging File | 72.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 139.07 Gb Total Space | 40.45 Gb Free Space | 29.09% Space Free | Partition Type: NTFS
Drive D: | 9.88 Gb Total Space | 1.70 Gb Free Space | 17.21% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: LAPTOP-PC
Current User Name: Admin
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: On
Skip Microsoft Files: On
File Age = 90 Days
Output = Standard
Quick Scan

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1 ",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htafile [open] -- "%1" %*
htmlfile [edit] -- "C:\Program Files\Microsoft Office\OFFICE11\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files\Microsoft Office\OFFICE11\msohtmed.exe" /p %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1 "
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"Updater Service" = C:\windows\system32\drivers\safesurf.exe -- (JetSwap)
" " = C:\\windows\\system32\\drivers\\safesurf.exe:*:Enabled:Updater Service -- (JetSwap)
"C:\Windows\system32\drivers\safesurf.exe" = C:\Windows\system32\drivers\safesurf.exe:*:Enabled:Updater Service Tools -- (JetSwap)
"C:\Windows\system32\system\svchost.exe" = C:\Windows\system32\system\svchost.exe:*:Enabled:Updater Service -- (Micro Software ©)


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0046FA01-C5B9-4985-BACB-398DC480FC05}" = Adobe Photoshop CS3
"{04AF207D-9A77-465A-8B76-991F6AB66245}" = Adobe Help Viewer CS3
"{08B32819-6EEF-4057-AEDA-5AB681A36A23}" = Adobe Bridge Start Meeting
"{184CE391-7E0E-4C63-9935-D7A10EDFD3C6}" = Adobe WinSoft Linguistics Plugin
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Windows Live Upload Tool
"{21AE04E8-EBF6-40DB-9AA9-B7A80C5D057D}" = mkv2vob
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{262BF2CD-601D-4F43-919C-4B00B1D1F338}" = Boris Graffiti
"{26A24AE4-039D-4CA4-87B4-2F83216021FF}" = Java(TM) 6 Update 21
"{292F0F52-B62D-4E71-921B-89A682402201}" = Toolbox
"{29E5EA97-5F74-4A57-B8B2-D4F169117183}" = Adobe Stock Photos CS3
"{33CF58F5-48D8-4575-83D6-96F574E4D83A}" = Nero DriveSpeed
"{359CFC0A-BEB1-440D-95BA-CF63A86DA34F}" = Nero Recode
"{368BA326-73AD-4351-84ED-3C0A7A52CC53}" = Nero Rescue Agent
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3FC7CBBC4C1E11DCA1A752EA55D89593}" = DivX Version Checker
"{43E39830-1826-415D-8BAE-86845787B54B}" = Nero Vision
"{45338B07-A236-4270-9A77-EBB4115517B5}" = Windows Live Sign-in Assistant
"{48FE73F3-4C3A-4871-BCD0-A7726A08BD64}" = Hex Workshop v6
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{51846830-E7B2-4218-8968-B77F0FF475B8}" = Adobe Color EU Extra Settings
"{54793AA1-5001-42F4-ABB6-C364617C6078}" = Adobe Linguistics CS3
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{584109EB-4A5E-4467-B3C4-5C1000008300}" = Tinker
"{584109EB-CEA0-4954-804B-211000018301}" = Tinker
"{595A3116-40BB-4E0F-A2E8-D7951DA56270}" = NeroExpress
"{5EB90C06-964F-4195-B83E-BD7E55C88415}" = Pinnacle Video Driver
"{62AC81F6-BDD3-4110-9D36-3E9EAAB40999}" = Nero CoverDesigner
"{62d5c468-5797-40fd-b0e8-d3802fcd6322}" = Nero 9
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6ABE0BEE-D572-4FE8-B434-9E72A289431B}" = Adobe Fonts All
"{6FF5DD7A-FE28-4439-B8CF-1E9AF4EA0A61}" = Adobe Asset Services CS3
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{7748AC8C-18E3-43BB-959B-088FAEA16FB2}" = Nero StartSmart
"{7829DB6F-A066-4E40-8912-CB07887C20BB}" = Nero BurnRights
"{7B15D70E-9449-4CFB-B9BC-798465B2BD5C}" = Norton Internet Security
"{7B8E0D63-C8FB-4F04-8B3A-029C4707693A}" = HP Deskjet D2600 Printer Driver 14.0 Rel. 5
"{802771A9-A856-4A41-ACF7-1450E523C923}" = Adobe XMP Panels CS3
"{81128EE8-8EAD-4DB0-85C6-17C2CE50FF71}" = Windows Live Essentials
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{85D4B12C-E234-4915-88BA-A5AEBBE67293}" = DJ_SF_05_D2600_Software_Min
"{869200DB-287A-4DC0-B02B-2B6787FBCD4C}" = Nero DiscSpeed
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8D2BA474-F406-4710-9AE4-D4F22D21F0DD}" = Adobe Device Central CS3
"{8E6808E2-613D-4FCD-81A2-6C8FA8E03312}" = Adobe Type Support
"{8FB1B528-E260-451E-9B55-E9152F94B80B}" = Microsoft Games for Windows - LIVE Redistributable
"{90110409-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
"{90176341-0A8B-4CCC-A78D-F862228A6B95}" = Adobe Anchor Service CS3
"{92127AF5-FDD8-4ADF-BC40-C356C9EE0B7D}" = 32 Bit HP CIO Components Installer
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{95655ED4-7CA5-46DF-907F-7144877A32E5}" = Adobe Color NA Recommended Settings
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9C9824D9-9000-4373-A6A5-D0E5D4831394}" = Adobe Bridge CS3
"{9D318C86-AF4C-409F-A6AC-7183FF4CF424}" = Internet TV for Windows Media Center
"{9E1BAB75-EB78-440D-94C0-A3857BE2E733}" = System Requirements Lab
"{9E82B934-9A25-445B-B8DF-8012808074AC}" = Nero PhotoSnap
"{A209525B-3377-43F4-B886-32F6B6E7356F}" = Nero WaveEditor
"{A2B242BD-FF8D-4840-9DAA-9170EABEC59C}" = Adobe CMaps
"{A2D81E70-2A98-4A08-A628-94388B063C5E}" = Adobe Color - Photoshop Specific
"{A5181519-9F3D-4372-ABC6-C333C2F3A816}_is1" = RunAlyzer
"{A85FD55B-891B-4314-97A5-EA96C0BD80B5}" = Windows Live Messenger
"{A8F2089B-1F79-4BF6-B385-A2C2B0B9A74D}" = ImagXpress
"{AC5B0C19-D851-42F4-BDA0-410ECF7F70A5}" = PDF Settings
"{AC76BA86-7AD7-1033-7B44-A93000000001}" = Adobe Reader 9.3.4
"{B1ADF008-E898-4FE2-8A1F-690D9A06ACAF}" = DolbyFiles
"{B2EC4A38-B545-4A00-8214-13FE0E915E6D}" = Advertising Center
"{B3BF6689-A81D-40D8-9A86-4AC4ACD9FC1C}" = Adobe Camera Raw 4.0
"{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1" = Spybot - Search & Destroy
"{B78120A0-CF84-4366-A393-4D0A59BC546C}" = Menu Templates - Starter Kit
"{B9B35331-B7E4-4E5C-BF4C-7BC87856124D}" = Adobe Default Language CS3
"{BA9A297F-0198-4EE8-90CB-F5036C180E1D}" = Novacomd
"{BD5CA0DA-71AD-43DA-B19E-6EEE0C9ADC9A}" = Nero ControlCenter
"{C2D69781-F392-4118-A5A7-C7E9C38DBFC2}" = Adobe ExtendScript Toolkit 2
"{C5A7CB6C-E76D-408F-BA0E-85605420FE9D}" = SoundTrax
"{D025A639-B9C9-417D-8531-208859000AF8}" = NeroBurningROM
"{D041EB9E-890A-4098-8F94-51DA194AC72A}" = Pinnacle Studio 12
"{D0DFF92A-492E-4C40-B862-A74A173C25C5}" = Adobe Version Cue CS3 Client
"{D1860E6E-520E-4380-8433-E58E8F88B473}" = Pinnacle Studio 12 Ultimate Plugins
"{D1BB4446-AE9C-4256-9A7F-4D46604D2462}" = Adobe Setup
"{D2559B88-CC9D-4B48-81BB-F492BAA9C48C}" = Adobe PDF Library Files
"{D9D1A2FD-56B2-4F21-B959-745FE43CAB8C}" = Vegas Pro 9.0
"{D9DCF92E-72EB-412D-AC71-3B01276E5F8B}" = Nero ShowTime
"{DA703982C580418795BF4001AA9D7061}" = DivX Plus Media Foundation Components
"{DADD7B8A-BCB0-44F5-967A-ECB6B4F2ECD9}" = Adobe Color Common Settings
"{DD7DB3C5-6FA3-4FA3-8A71-C2F2940EB029}" = Adobe Color JA Extra Settings
"{E498385E-1C51-459A-B45F-1721E37AA1A0}" = Movie Templates - Starter Kit
"{E69AE897-9E0B-485C-8552-7841F48D42D8}" = Adobe Update Manager CS3
"{E8A80433-302B-4FF1-815D-FCC8EAC482FF}" = Nero Installer
"{ED00D08A-3C5F-488D-93A0-A04F21F23956}" = Windows Live Communications Platform
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F0E2B312-D7FD-4349-A9B6-E90B36DB1BD0}" = Paint.NET v3.5.5
"{F1861F30-3419-44DB-B2A1-C274825698B3}" = Nero Disc Copy Gadget
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}" = Visual C++ 2008 x86 Runtime - (v9.0.30729)
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01" = Visual C++ 2008 x86 Runtime - v9.0.30729.01
"{F6BD194C-4190-4D73-B1B1-C48C99921BFE}" = Windows Live Call
"{F97E3841-CA9D-4964-9D64-26066241D26F}" = Microsoft Games for Windows - LIVE
"{FBCDFD61-7DCF-4E71-9226-873BA0053139}" = Nero InfoTool
"84713BEB4A2EB4B0E2F1346FDEBFFE94DAB5225D" = Windows Driver Package - Palm (WinUSB) Palm Devices (11/30/2008 1.0.0)
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe_2ac78060bc5856b0c1cf873bb919b58" = Adobe Photoshop CS3
"Camfrog 5.5" = Camfrog Video Chat 5.5
"CNXT_AUDIO_HDA" = Conexant HD Audio
"CNXT_MODEM_HDA_HSF" = HDAUDIO Soft Data Fax Modem with SmartCP
"ERUNT_is1" = ERUNT 1.1j
"GFWL_{584109EB-4A5E-4467-B3C4-5C1000008300}" = Tinker
"HxD Hex Editor_is1" = HxD Hex Editor version 1.7.7.0
"Magic Bullet Looks Studio" = Magic Bullet Looks Studio
"MagicDisc 2.7.106" = MagicDisc 2.7.106
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Mozilla Firefox (3.6.8)" = Mozilla Firefox (3.6.8)
"N360" = Norton 360
"NVIDIA Drivers" = NVIDIA Drivers
"proDAD-Vitascene-1.0" = proDAD Vitascene 1.0
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"WinAce Archiver" = WinAce Archiver
"WinLiveSuite_Wave3" = Windows Live Essentials

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Google Chrome" = Google Chrome
"Move Media Player" = Move Media Player

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 8/25/2010 4:06:17 PM | Computer Name = Laptop-PC | Source = Microsoft-Windows-CAPI2 | ID = 4107
Description = Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>
with error: The data is invalid. .

Error - 8/25/2010 9:52:44 PM | Computer Name = Laptop-PC | Source = Google Update | ID = 20
Description =

Error - 8/25/2010 10:50:06 PM | Computer Name = Laptop-PC | Source = Google Update | ID = 20
Description =

Error - 8/26/2010 3:25:47 AM | Computer Name = Laptop-PC | Source = Microsoft-Windows-CAPI2 | ID = 4107
Description = Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>
with error: The data is invalid. .

Error - 8/26/2010 4:08:59 AM | Computer Name = Laptop-PC | Source = Application Error | ID = 1000
Description = Faulting application name: svchost.exe, version: 5.1.2600.5512, time
stamp: 0x4c6a55e0 Faulting module name: ntdll.dll, version: 6.1.7600.16559, time
stamp: 0x4ba9b21e Exception code: 0xc0000005 Fault offset: 0x00028c92 Faulting process
id: 0x88c Faulting application start time: 0x01cb44c1f2479ee0 Faulting application
path: C:\Windows\system32\system\svchost.exe Faulting module path: C:\Windows\SYSTEM32\ntdll.dll
Report
Id: 2dc9f150-b0e9-11df-86be-eedceea3bb11

Error - 8/26/2010 12:59:24 PM | Computer Name = Laptop-PC | Source = SideBySide | ID = 16842815
Description = Activation context generation failed for "c:\program files\spybot
- search & destroy\DelZip179.dll ".Error in manifest or policy file "c:\program files\spybot
- search & destroy\DelZip179.dll" on line 8. The value "*" of attribute "language "
in element "assemblyIdentity" is invalid.

Error - 8/26/2010 3:39:09 PM | Computer Name = Laptop-PC | Source = Microsoft-Windows-CAPI2 | ID = 4107
Description = Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>
with error: The data is invalid. .

Error - 8/27/2010 3:54:19 AM | Computer Name = Laptop-PC | Source = Microsoft-Windows-CAPI2 | ID = 4107
Description = Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>
with error: The data is invalid. .

Error - 8/27/2010 4:51:08 PM | Computer Name = Laptop-PC | Source = Microsoft-Windows-CAPI2 | ID = 4107
Description = Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>
with error: The data is invalid. .

Error - 8/27/2010 6:50:05 PM | Computer Name = Laptop-PC | Source = Google Update | ID = 20
Description =

[ Media Center Events ]
Error - 2/19/2010 3:34:52 PM | Computer Name = Laptop-PC | Source = MCUpdate | ID = 0
Description = 2:34:46 PM - Error connecting to the internet. 2:34:46 PM - Unable
to contact server..

Error - 3/13/2010 3:00:54 PM | Computer Name = Laptop-PC | Source = MCUpdate | ID = 0
Description = 2:00:43 PM - Error connecting to the internet. 2:00:44 PM - Unable
to contact server..

Error - 3/13/2010 4:07:18 PM | Computer Name = Laptop-PC | Source = MCUpdate | ID = 0
Description = 3:07:16 PM - Failed to retrieve SportsSchedule (Error: The operation
has timed out)

Error - 3/26/2010 3:56:14 AM | Computer Name = Laptop-PC | Source = MCUpdate | ID = 0
Description = 3:56:14 AM - Error connecting to the internet. 3:56:14 AM - Unable
to contact server..

Error - 3/26/2010 3:59:50 AM | Computer Name = Laptop-PC | Source = MCUpdate | ID = 0
Description = 3:59:50 AM - Failed to retrieve SportsSchedule (Error: The operation
has timed out)

Error - 3/26/2010 5:42:46 AM | Computer Name = Laptop-PC | Source = MCUpdate | ID = 0
Description = 5:42:44 AM - Failed to retrieve SportsSchedule-2.enc (Error: HTTP
status 404: The requested URL does not exist on the server. )

Error - 3/28/2010 11:46:10 PM | Computer Name = Laptop-PC | Source = MCUpdate | ID = 0
Description = 11:46:05 PM - Error connecting to the internet. 11:46:05 PM - Unable
to contact server..

Error - 4/12/2010 1:56:07 PM | Computer Name = Laptop-PC | Source = MCUpdate | ID = 0
Description = 1:56:07 PM - Error connecting to the internet. 1:56:07 PM - Unable
to contact server..

Error - 4/22/2010 4:52:58 PM | Computer Name = Laptop-PC | Source = MCUpdate | ID = 0
Description = 4:52:57 PM - Failed to retrieve Broadband.enc (Error: HTTP status
404: The requested URL does not exist on the server. )

Error - 8/27/2010 3:50:39 PM | Computer Name = Laptop-PC | Source = MCUpdate | ID = 0
Description = 3:50:31 PM - Error connecting to the internet. 3:50:31 PM - Unable
to contact server..

[ System Events ]
Error - 4/17/2010 4:07:40 PM | Computer Name = Laptop-PC | Source = DCOM | ID = 10010
Description =

Error - 4/18/2010 10:27:27 PM | Computer Name = Laptop-PC | Source = bowser | ID = 8003
Description =

Error - 4/20/2010 1:56:38 PM | Computer Name = Laptop-PC | Source = Service Control Manager | ID = 7009
Description = A timeout was reached (30000 milliseconds) while waiting for the Windows
Search service to connect.

Error - 4/20/2010 1:56:41 PM | Computer Name = Laptop-PC | Source = DCOM | ID = 10005
Description =

Error - 4/20/2010 1:56:41 PM | Computer Name = Laptop-PC | Source = Service Control Manager | ID = 7000
Description = The Windows Search service failed to start due to the following error:
%%1053

Error - 4/20/2010 1:56:47 PM | Computer Name = Laptop-PC | Source = DCOM | ID = 10010
Description =

Error - 4/21/2010 5:14:54 PM | Computer Name = Laptop-PC | Source = EventLog | ID = 6008
Description = The previous system shutdown at 4:51:17 PM on ?4/?21/?2010 was unexpected.

Error - 4/25/2010 3:14:16 AM | Computer Name = Laptop-PC | Source = cdrom | ID = 262155
Description = The driver detected a controller error on \Device\CdRom1.

Error - 4/25/2010 6:50:52 PM | Computer Name = Laptop-PC | Source = NetBT | ID = 4321
Description = The name "WORKGROUP :1d" could not be registered on the interface
with IP address 192.168.1.101. The computer with the IP address 192.168.1.2 did
not allow the name to be claimed by this computer.

Error - 4/27/2010 10:28:36 PM | Computer Name = Laptop-PC | Source = EventLog | ID = 6008
Description = The previous system shutdown at 10:19:24 PM on ?4/?27/?2010 was unexpected.


< End of report >

 

Run OTL

• Under the [color= "#0000FF"]Custom Scans/Fixes[/color] box at the bottom, paste in the following
  
  
  Code:

  :Files
  C:\Windows\System32\drivers\safesurf.exe
  C:\Windows\System32\drivers\surfguard.exe
  C:\Windows\System32\system\svchost.exe
  C:\Windows\System32\drivers\up.exe
  :OTL
  SRV - File not found [Auto | Stopped] -- C:\Program Files\IObit\IObit Security 360\IS360srv.exe -- (IS360service)
  SRV - [2010/08/17 17:06:22 | 001,399,296 | ---- | M] (Micro Software ©) [Auto | Running] -- C:\Windows\System32\system\svchost.exe -- (Win_Updater)
  DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\N360\0308000.029\SYMNDISV.SYS -- (SYMNDISV)
  DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\N360\0308000.029\SYMFW.SYS -- (SYMFW)
  DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\System32\PCTINDIS5.SYS -- (PCTINDIS5)
  DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\System32\DRIVERS\pctnullport.sys -- (Nmea)
  DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Users\Admin\AppData\Local\Temp\catchme.sys -- (catchme)
  O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
  O4 - HKLM..\Run: [jsafesurf] C:\Windows\System32\drivers\safesurf.exe (JetSwap)
  O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
  O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
  [2010/08/27 06:03:58 | 000,000,119 | ---- | M] () -- C:\Users\Admin\Desktop\[Active] Infected with SafeSurf and SurfGuard.url
  [2010/08/27 03:31:44 | 000,016,896 | ---- | M] (JetSwap) -- C:\Windows\System32\drivers\up.exe
  :Commands
  [emptytemp]
  [emptyflash]
  [Reboot]

• Then click the [color= "#FF0000"]Run Fix[/color] button at the top.
• Let the program run unhindered, reboot the PC when it is done.
• Post log from this run.
• Open OTL again and click the Quick Scan button. Post the log it produces in your next reply.

============

Let me know how the pc is now.

 

All processes killed
========== FILES ==========
C:\Windows\System32\drivers\safesurf.exe moved successfully.
C:\Windows\System32\drivers\surfguard.exe moved successfully.
C:\Windows\System32\system\svchost.exe moved successfully.
C:\Windows\System32\drivers\up.exe moved successfully.
========== OTL ==========
Service IS360service stopped successfully!
Service IS360service deleted successfully!
File C:\Program Files\IObit\IObit Security 360\IS360srv.exe not found.
Service Win_Updater stopped successfully!
Service Win_Updater deleted successfully!
File C:\Windows\System32\system\svchost.exe not found.
Service SYMNDISV stopped successfully!
Service SYMNDISV deleted successfully!
File C:\Windows\System32\Drivers\N360\0308000.029\SYMNDISV.SYS not found.
Service SYMFW stopped successfully!
Service SYMFW deleted successfully!
File C:\Windows\System32\Drivers\N360\0308000.029\SYMFW.SYS not found.
Service PCTINDIS5 stopped successfully!
Service PCTINDIS5 deleted successfully!
File C:\Windows\System32\PCTINDIS5.SYS not found.
Service Nmea stopped successfully!
Service Nmea deleted successfully!
File C:\Windows\System32\DRIVERS\pctnullport.sys not found.
Service catchme stopped successfully!
Service catchme deleted successfully!
File C:\Users\Admin\AppData\Local\Temp\catchme.sys not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5C255C8A-E604-49b4-9D64-90988571CECB}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\jsafesurf deleted successfully.
File C:\Windows\System32\drivers\safesurf.exe not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\VMApplet:/pagefile deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
C:\Users\Admin\Desktop\[Active] Infected with SafeSurf and SurfGuard.url moved successfully.
File C:\Windows\System32\drivers\up.exe not found.
========== COMMANDS ==========

[EMPTYTEMP]

User: Admin
->Temp folder emptied: 62427 bytes
->Temporary Internet Files folder emptied: 2397176 bytes
->Java cache emptied: 13919 bytes
->FireFox cache emptied: 46227856 bytes
->Google Chrome cache emptied: 85851241 bytes
->Flash cache emptied: 72152 bytes

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Mcx1-LAPTOP-PC
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 3540575 bytes

User: Public

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 951530 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 2480119 bytes
RecycleBin emptied: 9222123 bytes

Total Files Cleaned = 144.00 mb


[EMPTYFLASH]

User: Admin
->Flash cache emptied: 0 bytes

User: All Users

User: Default

User: Default User

User: Mcx1-LAPTOP-PC

User: Public

Total Flash Files Cleaned = 0.00 mb


OTL by OldTimer - Version 3.2.10.0 log created on 08282010_042833

Files\Folders moved on Reboot...
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\M310GQWL\avatar-body[1].png moved successfully.
File\Folder C:\Windows\temp\hsperfdata_LAPTOP-PC$\1276 not found!
File\Folder C:\Windows\temp\etilqs_cTEHZflQDRmuys09HcV1 not found!

Registry entries deleted on Reboot...

 

OTL logfile created on: 8/28/2010 4:45:54 AM - Run 2
OTL by OldTimer - Version 3.2.10.0 Folder = C:\Users\Admin\Desktop
Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

2.00 Gb Total Physical Memory | 1.00 Gb Available Physical Memory | 63.00% Memory free
3.00 Gb Paging File | 3.00 Gb Available in Paging File | 78.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 139.07 Gb Total Space | 40.14 Gb Free Space | 28.86% Space Free | Partition Type: NTFS
Drive D: | 9.88 Gb Total Space | 1.70 Gb Free Space | 17.21% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: LAPTOP-PC
Current User Name: Admin
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: On
Skip Microsoft Files: On
File Age = 90 Days
Output = Standard
Quick Scan

========== Processes (SafeList) ==========

PRC - [2010/08/27 20:57:23 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Users\Admin\Desktop\OTL.exe
PRC - [2010/02/25 20:21:50 | 000,126,392 | R--- | M] (Symantec Corporation) -- C:\Program Files\Norton 360\Engine\4.2.0.12\ccsvchst.exe
PRC - [2009/11/06 13:03:46 | 000,033,280 | ---- | M] (Palm) -- C:\Program Files\Palm, Inc\novacom\x86\novacomd.exe
PRC - [2009/10/31 01:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2009/09/23 14:38:18 | 000,935,208 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
PRC - [2009/07/13 21:14:42 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2009/07/13 21:14:12 | 000,100,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\audiodg.exe


========== Modules (SafeList) ==========

MOD - [2010/08/27 20:57:23 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Users\Admin\Desktop\OTL.exe
MOD - [2009/07/13 21:16:15 | 000,099,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sspicli.dll
MOD - [2009/07/13 21:16:13 | 000,092,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sechost.dll
MOD - [2009/07/13 21:16:12 | 000,031,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\profapi.dll
MOD - [2009/07/13 21:15:35 | 000,288,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KernelBase.dll
MOD - [2009/07/13 21:15:13 | 000,067,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dwmapi.dll
MOD - [2009/07/13 21:15:11 | 000,064,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\devobj.dll
MOD - [2009/07/13 21:15:07 | 000,036,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cryptbase.dll
MOD - [2009/07/13 21:15:02 | 000,145,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cfgmgr32.dll
MOD - [2009/07/13 21:14:10 | 000,095,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msscript.ocx
MOD - [2009/07/13 21:03:50 | 001,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc\comctl32.dll


========== Win32 Services (SafeList) ==========

SRV - [2010/04/25 22:44:24 | 000,654,848 | ---- | M] (Macrovision Europe Ltd.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2010/03/18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010/02/25 20:21:50 | 000,126,392 | R--- | M] (Symantec Corporation) [Unknown | Running] -- C:\Program Files\Norton 360\Engine\4.2.0.12\ccSvcHst.exe -- (N360)
SRV - [2009/11/06 13:03:46 | 000,033,280 | ---- | M] (Palm) [Auto | Running] -- C:\Program Files\Palm, Inc\novacom\x86\novacomd.exe -- (NovacomD)
SRV - [2009/09/23 14:38:18 | 000,935,208 | ---- | M] (Nero AG) [Auto | Running] -- C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe -- (Nero BackItUp Scheduler 4.0)
SRV - [2009/07/13 21:16:21 | 000,185,856 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\wwansvc.dll -- (WwanSvc)
SRV - [2009/07/13 21:16:17 | 000,151,552 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\wbiosrvc.dll -- (WbioSrvc)
SRV - [2009/07/13 21:16:17 | 000,119,808 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\umpo.dll -- (Power)
SRV - [2009/07/13 21:16:16 | 000,037,376 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\themeservice.dll -- (Themes)
SRV - [2009/07/13 21:16:15 | 000,053,760 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sppuinotify.dll -- (sppuinotify)
SRV - [2009/07/13 21:16:13 | 000,043,520 | ---- | M] (Microsoft Corporation) [Unknown | Running] -- C:\Windows\System32\RpcEpMap.dll -- (RpcEptMapper)
SRV - [2009/07/13 21:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009/07/13 21:16:12 | 000,269,824 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\pnrpsvc.dll -- (PNRPsvc)
SRV - [2009/07/13 21:16:12 | 000,269,824 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\pnrpsvc.dll -- (p2pimsvc)
SRV - [2009/07/13 21:16:12 | 000,165,376 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\provsvc.dll -- (HomeGroupProvider)
SRV - [2009/07/13 21:16:12 | 000,020,480 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\pnrpauto.dll -- (PNRPAutoReg)
SRV - [2009/07/13 21:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2009/07/13 21:15:36 | 000,194,560 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\ListSvc.dll -- (HomeGroupListener)
SRV - [2009/07/13 21:15:21 | 000,797,696 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\FntCache.dll -- (FontCache)
SRV - [2009/07/13 21:15:11 | 000,253,440 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\dhcpcore.dll -- (Dhcp)
SRV - [2009/07/13 21:15:10 | 000,218,624 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\defragsvc.dll -- (defragsvc)
SRV - [2009/07/13 21:14:59 | 000,076,800 | ---- | M] (Microsoft Corporation) [Unknown | Stopped] -- C:\Windows\System32\bdesvc.dll -- (BDESVC)
SRV - [2009/07/13 21:14:58 | 000,088,064 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\AxInstSv.dll -- (AxInstSV) ActiveX Installer (AxInstSV)
SRV - [2009/07/13 21:14:53 | 000,027,648 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\appidsvc.dll -- (AppIDSvc)
SRV - [2009/07/13 21:14:29 | 003,179,520 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\sppsvc.exe -- (sppsvc)
SRV - [2009/04/29 03:21:04 | 000,410,624 | ---- | M] (Conexant Systems, Inc.) [Auto | Running] -- C:\Windows\System32\XAudio32.dll -- (HsfXAudioService)


========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Users\Admin\AppData\Local\Temp\ALSysIO.sys -- (ALSysIO)
DRV - [2010/08/27 16:08:14 | 000,124,976 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\SYMEVENT.SYS -- (SymEvent)
DRV - [2010/08/27 01:00:00 | 001,362,608 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_4.1.0.32\Definitions\VirusDefs\20100827.051\NAVEX15.SYS -- (NAVEX15)
DRV - [2010/08/27 01:00:00 | 000,085,424 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_4.1.0.32\Definitions\VirusDefs\20100827.051\NAVENG.SYS -- (NAVENG)
DRV - [2010/08/10 01:16:24 | 000,692,272 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_4.1.0.32\Definitions\BASHDefs\20100810.004\BHDrvx86.sys -- (BHDrvx86)
DRV - [2010/06/16 21:54:13 | 000,344,112 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_4.1.0.32\Definitions\IPSDefs\20100827.001\IDSvix86.sys -- (IDSVix86)
DRV - [2010/05/26 04:00:00 | 000,371,248 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys -- (eeCtrl)
DRV - [2010/05/26 04:00:00 | 000,102,448 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys -- (EraserUtilRebootDrv)
DRV - [2010/05/06 00:01:59 | 000,339,504 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\System32\Drivers\N360\0402000.00C\SYMTDIV.SYS -- (SYMTDIv)
DRV - [2010/05/06 00:01:44 | 000,044,080 | R--- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\SymIMV.sys -- (SymIM)
DRV - [2010/04/29 01:03:51 | 000,116,784 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\system32\drivers\N360\0402000.00C\Ironx86.SYS -- (SymIRON)
DRV - [2010/04/21 23:02:20 | 000,173,104 | ---- | M] (Symantec Corporation) [File_System | Boot | Running] -- C:\Windows\system32\drivers\N360\0402000.00C\SYMEFA.SYS -- (SymEFA)
DRV - [2010/04/21 22:29:50 | 000,325,680 | ---- | M] (Symantec Corporation) [File_System | On_Demand | Running] -- C:\Windows\System32\Drivers\N360\0402000.00C\SRTSP.SYS -- (SRTSP)
DRV - [2010/04/21 22:29:50 | 000,043,696 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\system32\drivers\N360\0402000.00C\SRTSPX.SYS -- (SRTSPX) Symantec Real Time Storage Protection (PEL)
DRV - [2010/02/25 20:22:57 | 000,501,888 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\system32\drivers\N360\0402000.00C\ccHPx86.sys -- (ccHP)
DRV - [2010/02/03 21:40:47 | 000,328,752 | R--- | M] (Symantec Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\drivers\N360\0402000.00C\SYMDS.SYS -- (SymDS)
DRV - [2009/12/11 03:44:02 | 000,133,720 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\ksecpkg.sys -- (KSecPkg)
DRV - [2009/10/09 02:37:44 | 001,096,704 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\athr.sys -- (athr)
DRV - [2009/08/21 20:24:04 | 000,066,592 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvhda32v.sys -- (NVHDA)
DRV - [2009/07/24 05:01:00 | 009,791,072 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2009/07/13 21:26:21 | 000,015,952 | ---- | M] (CMD Technology, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\cmdide.sys -- (cmdide)
DRV - [2009/07/13 21:26:17 | 000,297,552 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\adpahci.sys -- (adpahci)
DRV - [2009/07/13 21:26:15 | 000,422,976 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\adp94xx.sys -- (adp94xx)
DRV - [2009/07/13 21:26:15 | 000,159,312 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\amdsbs.sys -- (amdsbs)
DRV - [2009/07/13 21:26:15 | 000,146,512 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\adpu320.sys -- (adpu320)
DRV - [2009/07/13 21:26:15 | 000,086,608 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\arcsas.sys -- (arcsas)
DRV - [2009/07/13 21:26:15 | 000,079,952 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\amdsata.sys -- (amdsata)
DRV - [2009/07/13 21:26:15 | 000,076,368 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\arc.sys -- (arc)
DRV - [2009/07/13 21:26:15 | 000,023,616 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\amdxata.sys -- (amdxata)
DRV - [2009/07/13 21:26:15 | 000,014,400 | ---- | M] (Acer Laboratories Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\aliide.sys -- (aliide)
DRV - [2009/07/13 21:20:44 | 000,142,416 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\nvstor.sys -- (nvstor)
DRV - [2009/07/13 21:20:44 | 000,117,312 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\nvraid.sys -- (nvraid)
DRV - [2009/07/13 21:20:44 | 000,044,624 | ---- | M] (IBM Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\nfrd960.sys -- (nfrd960)
DRV - [2009/07/13 21:20:37 | 000,089,168 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\lsi_sas.sys -- (LSI_SAS)
DRV - [2009/07/13 21:20:36 | 000,332,352 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\iaStorV.sys -- (iaStorV)
DRV - [2009/07/13 21:20:36 | 000,235,584 | ---- | M] (LSI Corporation, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\MegaSR.sys -- (MegaSR)
DRV - [2009/07/13 21:20:36 | 000,096,848 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\lsi_scsi.sys -- (LSI_SCSI)
DRV - [2009/07/13 21:20:36 | 000,095,824 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\lsi_fc.sys -- (LSI_FC)
DRV - [2009/07/13 21:20:36 | 000,054,864 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\lsi_sas2.sys -- (LSI_SAS2)
DRV - [2009/07/13 21:20:36 | 000,041,040 | ---- | M] (Intel Corp./ICP vortex GmbH) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\iirsp.sys -- (iirsp)
DRV - [2009/07/13 21:20:36 | 000,030,800 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\megasas.sys -- (megasas)
DRV - [2009/07/13 21:20:36 | 000,013,904 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\hwpolicy.sys -- (hwpolicy)
DRV - [2009/07/13 21:20:28 | 000,453,712 | ---- | M] (Emulex) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\elxstor.sys -- (elxstor)
DRV - [2009/07/13 21:20:28 | 000,070,720 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\djsvs.sys -- (aic78xx)
DRV - [2009/07/13 21:20:28 | 000,067,152 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\HpSAMD.sys -- (HpSAMD)
DRV - [2009/07/13 21:20:28 | 000,046,160 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\fsdepends.sys -- (FsDepends)
DRV - [2009/07/13 21:19:11 | 000,141,904 | ---- | M] (VIA Technologies Inc.,Ltd) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\vsmraid.sys -- (vsmraid)
DRV - [2009/07/13 21:19:10 | 000,159,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\vhdmp.sys -- (vhdmp)
DRV - [2009/07/13 21:19:10 | 000,032,832 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\vdrvroot.sys -- (vdrvroot)
DRV - [2009/07/13 21:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\wimmount.sys -- (WIMMount)
DRV - [2009/07/13 21:19:10 | 000,016,976 | ---- | M] (VIA Technologies, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\viaide.sys -- (viaide)
DRV - [2009/07/13 21:19:04 | 001,383,488 | ---- | M] (QLogic Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\ql2300.sys -- (ql2300)
DRV - [2009/07/13 21:19:04 | 000,173,648 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\rdyboost.sys -- (rdyboost)
DRV - [2009/07/13 21:19:04 | 000,106,064 | ---- | M] (QLogic Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\ql40xx.sys -- (ql40xx)
DRV - [2009/07/13 21:19:04 | 000,077,888 | ---- | M] (Silicon Integrated Systems) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\sisraid4.sys -- (SiSRaid4)
DRV - [2009/07/13 21:19:04 | 000,043,088 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\pcw.sys -- (pcw)
DRV - [2009/07/13 21:19:04 | 000,040,016 | ---- | M] (Silicon Integrated Systems Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\SiSRaid2.sys -- (SiSRaid2)
DRV - [2009/07/13 21:19:04 | 000,021,072 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\stexstor.sys -- (stexstor)
DRV - [2009/07/13 21:17:54 | 000,369,568 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\cng.sys -- (CNG)
DRV - [2009/07/13 20:57:25 | 000,272,128 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\Brserid.sys -- (Brserid) Brother MFC Serial Port Interface Driver (WDM)
DRV - [2009/07/13 20:02:41 | 000,018,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\rdpbus.sys -- (rdpbus)
DRV - [2009/07/13 20:01:41 | 000,007,168 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\RDPREFMP.sys -- (RDPREFMP)
DRV - [2009/07/13 19:55:00 | 000,049,152 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\agilevpn.sys -- (RasAgileVpn) WAN Miniport (IKEv2)
DRV - [2009/07/13 19:53:51 | 000,009,728 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\wfplwf.sys -- (WfpLwf)
DRV - [2009/07/13 19:52:44 | 000,027,136 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ndiscap.sys -- (NdisCap)
DRV - [2009/07/13 19:52:10 | 000,014,336 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vwifimp.sys -- (vwifimp)
DRV - [2009/07/13 19:52:04 | 000,048,128 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\vwififlt.sys -- (vwififlt)
DRV - [2009/07/13 19:52:02 | 000,019,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\vwifibus.sys -- (vwifibus)
DRV - [2009/07/13 19:52:00 | 000,163,328 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\1394ohci.sys -- (1394ohci)
DRV - [2009/07/13 19:51:35 | 000,008,192 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\umpass.sys -- (UmPass)
DRV - [2009/07/13 19:51:11 | 000,034,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (WinUSB)
DRV - [2009/07/13 19:51:08 | 000,004,096 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\mshidkmdf.sys -- (mshidkmdf)
DRV - [2009/07/13 19:46:55 | 000,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\MTConfig.sys -- (MTConfig)
DRV - [2009/07/13 19:45:26 | 000,031,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\CompositeBus.sys -- (CompositeBus)
DRV - [2009/07/13 19:36:52 | 000,050,176 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\appid.sys -- (AppID)
DRV - [2009/07/13 19:33:50 | 000,026,624 | ---- | M] (Microsoft Corporation) [Kernel | Unknown | Stopped] -- C:\Windows\System32\drivers\scfilter.sys -- (scfilter)
DRV - [2009/07/13 19:24:05 | 000,032,256 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\discache.sys -- (discache)
DRV - [2009/07/13 19:19:21 | 000,021,504 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\HidBatt.sys -- (HidBatt)
DRV - [2009/07/13 19:16:36 | 000,009,728 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\acpipmi.sys -- (AcpiPmi)
DRV - [2009/07/13 19:11:04 | 000,052,736 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\amdppm.sys -- (AmdPPM)
DRV - [2009/07/13 18:54:14 | 000,026,624 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\hcw85cir.sys -- (hcw85cir)
DRV - [2009/07/13 18:53:33 | 000,012,160 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\BrUsbMdm.sys -- (BrUsbMdm)
DRV - [2009/07/13 18:53:33 | 000,011,904 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\BrUsbSer.sys -- (BrUsbSer)
DRV - [2009/07/13 18:53:32 | 000,062,336 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\BrSerWdm.sys -- (BrSerWdm)
DRV - [2009/07/13 18:53:28 | 000,013,568 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\BrFiltLo.sys -- (BrFiltLo)
DRV - [2009/07/13 18:53:28 | 000,005,248 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\BrFiltUp.sys -- (BrFiltUp)
DRV - [2009/07/13 18:13:46 | 000,980,992 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VSTDPV3.SYS -- (SrvHsfV92)
DRV - [2009/07/13 18:13:45 | 000,661,504 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VSTCNXT3.SYS -- (SrvHsfWinac)
DRV - [2009/07/13 18:13:45 | 000,207,360 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VSTAZL3.SYS -- (SrvHsfHDA)
DRV - [2009/07/13 18:02:52 | 000,347,264 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\nvm62x32.sys -- (NVENETFD)
DRV - [2009/07/13 18:02:49 | 000,229,888 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\b57nd60x.sys -- (b57nd60x)
DRV - [2009/07/13 18:02:48 | 003,100,160 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\evbdx.sys -- (ebdrv)
DRV - [2009/07/13 18:02:48 | 000,430,080 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\bxvbdx.sys -- (b06bdrv)
DRV - [2009/07/01 12:20:54 | 000,287,392 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvmf6232.sys -- (NVNET)
DRV - [2009/06/29 00:36:36 | 000,017,920 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvsmu.sys -- (nvsmu)
DRV - [2009/06/18 20:12:34 | 000,212,400 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\SynTP.sys -- (SynTP)
DRV - [2009/06/14 19:46:22 | 000,475,648 | ---- | M] (Conexant Systems Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\CHDRT32.sys -- (CnxtHdAudService)
DRV - [2009/05/26 18:38:12 | 000,026,888 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\swmsflt.sys -- (swmsflt)
DRV - [2009/04/29 03:20:56 | 000,008,704 | ---- | M] (Conexant Systems, Inc.) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\XAudio32.sys -- (XAudio)
DRV - [2009/02/24 18:42:14 | 000,116,736 | ---- | M] (MagicISO, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\mcdbus.sys -- (mcdbus)
DRV - [2009/02/12 14:00:22 | 000,980,992 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\HSX_DPV.sys -- (HSF_DPV)
DRV - [2009/02/12 13:58:16 | 000,207,360 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\HSXHWAZL.sys -- (HSXHWAZL)
DRV - [2009/02/12 13:57:28 | 000,661,504 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\HSX_CNXT.sys -- (winachsf)
DRV - [2007/10/10 18:41:50 | 000,042,112 | ---- | M] (Motorola Inc) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\motodrv.sys -- (MotDev)
DRV - [2006/12/12 11:16:06 | 000,022,528 | ---- | M] (Pinnacle Systems GmbH) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\emAudio.sys -- (emAudio)
DRV - [2005/12/21 09:14:52 | 000,100,957 | ---- | M] (eMPIA Technology, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\emDevice.sys -- (DCamUSBEMPIA)
DRV - [2005/12/21 09:14:52 | 000,005,245 | ---- | M] (eMPIA Technology, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\emFilter.sys -- (FiltUSBEMPIA)
DRV - [2005/12/21 09:14:52 | 000,004,493 | ---- | M] (eMPIA Technology, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\emScan.sys -- (ScanUSBEMPIA)
DRV - [2005/09/23 23:18:32 | 000,171,520 | ---- | M] (Pinnacle Systems GmbH) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\MarvinBus.sys -- (MarvinBus)
DRV - [2005/08/17 07:47:48 | 000,073,696 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\sscdserd.sys -- (sscdserd) SAMSUNG CDMA Modem Diagnostic Serial Port (WDM)
DRV - [2005/08/17 07:46:26 | 000,093,872 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\sscdmdm.sys -- (sscdmdm)
DRV - [2005/08/17 07:46:20 | 000,008,272 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\sscdmdfl.sys -- (sscdmdfl)
DRV - [2005/08/17 07:45:00 | 000,058,352 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\sscdbus.sys -- (sscdbus) SAMSUNG USB Composite Device driver (WDM)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========


IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-us
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 10 9D 0F B8 4D 3E CB 01 [binary data]
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - prefs.js..browser.startup.homepage: "www.aol.com "
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21
FF - prefs.js..extensions.enabledItems: personas@christopher.beard:1.5.3
FF - prefs.js..extensions.enabledItems: splashupdate@aldreneo.com:2.0.2b
FF - prefs.js..extensions.enabledItems: {BBDA0591-3099-440a-AA10-41764D9DB4DB}:2.0
FF - prefs.js..extensions.enabledItems: {2D3F3651-74B9-4795-BDEC-6DA2F431CB62}:4.6
FF - prefs.js..extensions.enabledItems: moveplayer@movenetworks.com:7
FF - prefs.js..keyword.URL: "http://www.google.com/search?ie=UTF-8&oe=UTF-8&sourceid=navclient&gfns=1&q= "

FF - HKLM\software\mozilla\Firefox\Extensions\\{BBDA0591-3099-440a-AA10-41764D9DB4DB}: C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_4.1.0.32\IPSFFPlgn\ [2010/08/27 23:30:18 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}: C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_4.1.0.32\coFFPlgn\ [2010/08/27 16:12:11 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.8\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010/07/24 16:32:03 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.8\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010/08/22 23:24:46 | 000,000,000 | ---D | M]

[2009/10/27 20:55:21 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\mozilla\Extensions
[2010/08/28 01:50:33 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\mozilla\Firefox\Profiles\1wf29ulr.default\extensions
[2010/04/12 23:08:55 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\mozilla\Firefox\Profiles\1wf29ulr.default\extensions\personas@christopher.beard
[2009/10/28 13:25:07 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\mozilla\Firefox\Profiles\1wf29ulr.default\extensions\splash@aldreneo.com
[2010/04/17 16:47:00 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\mozilla\Firefox\Profiles\1wf29ulr.default\extensions\splashupdate@aldreneo.com
[2010/08/27 16:08:44 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2010/08/16 20:06:16 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
[2010/08/16 20:05:39 | 000,423,656 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll

O1 HOSTS File: ([2010/08/23 00:01:22 | 000,416,916 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 www.007guard.com
O1 - Hosts: 127.0.0.1 007guard.com
O1 - Hosts: 127.0.0.1 008i.com
O1 - Hosts: 127.0.0.1 www.008k.com
O1 - Hosts: 127.0.0.1 008k.com
O1 - Hosts: 127.0.0.1 www.00hq.com
O1 - Hosts: 127.0.0.1 00hq.com
O1 - Hosts: 127.0.0.1 010402.com
O1 - Hosts: 127.0.0.1 www.032439.com
O1 - Hosts: 127.0.0.1 032439.com
O1 - Hosts: 127.0.0.1 www.0scan.com
O1 - Hosts: 127.0.0.1 0scan.com
O1 - Hosts: 127.0.0.1 1000gratisproben.com
O1 - Hosts: 127.0.0.1 www.1000gratisproben.com
O1 - Hosts: 127.0.0.1 1001namen.com
O1 - Hosts: 127.0.0.1 www.1001namen.com
O1 - Hosts: 127.0.0.1 100888290cs.com
O1 - Hosts: 127.0.0.1 www.100888290cs.com
O1 - Hosts: 127.0.0.1 www.100sexlinks.com
O1 - Hosts: 127.0.0.1 100sexlinks.com
O1 - Hosts: 127.0.0.1 10sek.com
O1 - Hosts: 127.0.0.1 www.10sek.com
O1 - Hosts: 127.0.0.1 www.1-2005-search.com
O1 - Hosts: 127.0.0.1 1-2005-search.com
O1 - Hosts: 127.0.0.1 123fporn.info
O1 - Hosts: 14387 more lines...
O2 - BHO: (Symantec NCO BHO) - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Norton 360\Engine\4.2.0.12\coieplg.dll (Symantec Corporation)
O2 - BHO: (Symantec Intrusion Prevention) - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Norton 360\Engine\4.2.0.12\ipsbho.dll (Symantec Corporation)
O3 - HKLM\..\Toolbar: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton 360\Engine\4.2.0.12\coieplg.dll (Symantec Corporation)
O4 - HKLM..\Run: [NvCplDaemon] C:\Windows\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [USB2Check] C:\Windows\System32\PCLECoInst.DLL (Pinnacle Systems)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Computer, Inc.)
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 71.252.0.12
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (systempropertiesperformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O30 - LSA: Security Packages - (pku2u) - C:\Windows\System32\pku2u.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/06/10 17:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

 

========== Files/Folders - Created Within 90 Days ==========

[2010/08/28 04:28:33 | 000,000,000 | ---D | C] -- C:\_OTL
[2010/08/28 02:10:56 | 000,000,000 | ---D | C] -- C:\Program Files\Core Temp
[2010/08/28 00:30:30 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache
[2010/08/28 00:30:24 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\f\1\dictionaries
[2010/08/28 00:30:23 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\f\1\res\fonts
[2010/08/28 00:30:23 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\f\1\res\entityTables
[2010/08/28 00:30:23 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\f\1\defaults\autoconfig
[2010/08/28 00:30:22 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\f\1\defaults\pref
[2010/08/28 00:30:22 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\f\1\modules
[2010/08/28 00:30:22 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\f\1\greprefs
[2010/08/28 00:30:21 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\f\1\defaults\profile\US
[2010/08/28 00:30:21 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\f\1\res\html
[2010/08/28 00:30:21 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\f\1\res\dtd
[2010/08/28 00:30:21 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\f\1\defaults\profile\US\chrome
[2010/08/28 00:30:21 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\f\1\defaults\profile\chrome
[2010/08/28 00:30:21 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\f\1\chrome
[2010/08/28 00:30:20 | 000,443,352 | ---- | C] (sqlite.org) -- C:\Windows\System32\drivers\f\1\sqlite3.dll
[2010/08/28 00:30:20 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\f\1\plugins
[2010/08/28 00:30:19 | 000,701,400 | ---- | C] (Netscape Communications Corporation) -- C:\Windows\System32\drivers\f\1\js3250.dll
[2010/08/28 00:30:19 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\f\1\res
[2010/08/28 00:30:19 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\f\1\defaults\profile
[2010/08/28 00:30:19 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\f\1\defaults
[2010/08/28 00:30:19 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\f\1\components
[2010/08/28 00:30:19 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\f\1
[2010/08/27 23:17:27 | 000,044,080 | R--- | C] (Symantec Corporation) -- C:\Windows\System32\drivers\SymIMV.sys
[2010/08/27 20:57:22 | 000,575,488 | ---- | C] (OldTimer Tools) -- C:\Users\Admin\Desktop\OTL.exe
[2010/08/27 18:44:32 | 000,000,000 | --SD | C] -- C:\ComboFix
[2010/08/27 18:30:12 | 000,161,792 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe
[2010/08/27 18:30:12 | 000,136,704 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe
[2010/08/27 18:30:12 | 000,031,232 | ---- | C] (NirSoft) -- C:\Windows\NIRCMD.exe
[2010/08/27 18:29:47 | 000,212,480 | ---- | C] (SteelWerX) -- C:\Windows\SWXCACLS.exe
[2010/08/27 17:23:04 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Local\NPE
[2010/08/27 17:14:33 | 005,716,848 | ---- | C] (Symantec Corporation) -- C:\Users\Admin\Desktop\NPE.exe
[2010/08/27 06:07:11 | 000,000,000 | ---D | C] -- C:\Qoobox
[2010/08/27 04:23:56 | 000,000,000 | ---D | C] -- C:\Program Files\Safer Networking
[2010/08/27 04:23:19 | 007,966,432 | ---- | C] (Safer Networking Limited ) -- C:\Users\Admin\Desktop\runalyz-1.6.1.24.exe
[2010/08/25 03:21:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Kaspersky Lab Setup Files
[2010/08/25 03:19:01 | 000,000,000 | ---D | C] -- C:\ProgramData\McAfee
[2010/08/24 20:51:23 | 010,030,424 | ---- | C] (IObit ) -- C:\Users\Admin\Desktop\is360setup.exe
[2010/08/24 00:29:54 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Roaming\Tific
[2010/08/24 00:29:54 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Local\Tific
[2010/08/23 23:57:15 | 000,000,000 | ---D | C] -- C:\ProgramData\F-Secure
[2010/08/23 18:11:01 | 000,000,000 | ---D | C] -- C:\Windows\ERDNT
[2010/08/23 18:08:24 | 000,000,000 | ---D | C] -- C:\Program Files\ERUNT
[2010/08/23 17:14:16 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Local\VS Revo Group
[2010/08/23 01:06:12 | 000,000,000 | ---D | C] -- C:\Program Files\Norman
[2010/08/22 23:33:46 | 000,000,000 | ---D | C] -- C:\Program Files\Enigma Software Group
[2010/08/20 22:48:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Spybot - Search & Destroy
[2010/08/20 22:48:21 | 000,000,000 | ---D | C] -- C:\Program Files\Spybot - Search & Destroy
[2010/08/20 22:46:38 | 016,409,960 | ---- | C] (Safer Networking Limited ) -- C:\Users\Admin\Desktop\spybotsd162.exe
[2010/08/20 19:07:58 | 000,095,024 | ---- | C] (Sunbelt Software) -- C:\Windows\System32\drivers\SBREDrv.sys
[2010/08/20 18:27:59 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Local\Sunbelt Software
[2010/08/20 18:26:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Lavasoft
[2010/08/20 18:26:29 | 000,000,000 | ---D | C] -- C:\Program Files\Lavasoft
[2010/08/20 02:00:25 | 000,000,000 | ---D | C] -- C:\ProgramData\TEMP
[2010/08/17 16:02:27 | 000,000,000 | ---D | C] -- C:\!KillBox
[2010/08/17 15:17:45 | 000,092,672 | ---- | C] (Option^Explicit Software vbtechcd@gmail.com) -- C:\Users\Admin\Documents\KillBox.exe
[2010/08/16 20:06:49 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2010/08/16 20:05:28 | 000,000,000 | ---D | C] -- C:\Program Files\Java
[2010/08/15 17:34:58 | 000,158,720 | ---- | C] (Skybound Software (http://www.skybound.ca)) -- C:\Windows\System32\drivers\skybound.gecko.dll
[2010/08/15 17:34:55 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Roaming\Emergency Soft
[2010/08/15 17:34:51 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\f
[2010/08/15 17:34:42 | 000,000,000 | ---D | C] -- C:\Windows\System32\system
[2010/08/12 19:54:36 | 000,000,000 | ---D | C] -- C:\17dab1a11307f3c0a9c94841f972fa0d
[2010/08/09 16:38:30 | 000,000,000 | ---D | C] -- C:\Users\Admin\Desktop\Ringtones
[2010/08/09 16:27:03 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Roaming\Ahead
[2010/08/03 16:38:21 | 000,000,000 | ---D | C] -- C:\Users\Admin\Documents\NeroVision
[2010/07/25 02:37:24 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Roaming\skypePM
[2010/07/25 02:35:12 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Roaming\Skype
[2010/07/25 02:34:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Skype
[2010/07/14 00:49:23 | 000,000,000 | ---D | C] -- C:\Program Files\BreakPoint Software
[2010/07/14 00:15:32 | 000,000,000 | ---D | C] -- C:\Users\Admin\Desktop\DaDAT
[2010/07/14 00:13:31 | 000,000,000 | ---D | C] -- C:\Users\Admin\Desktop\Offzip & Packzip UI
[2010/07/14 00:12:35 | 000,000,000 | ---D | C] -- C:\Users\Admin\Desktop\BioshockSaves
[2010/07/10 16:44:57 | 000,000,000 | ---D | C] -- C:\Program Files\SystemRequirementsLab
[2010/07/10 16:44:54 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Roaming\SystemRequirementsLab
[2010/07/10 04:53:14 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Local\Nero
[2010/07/06 19:42:18 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Roaming\Publish Providers
[2010/07/06 19:37:53 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Roaming\Sony
[2010/07/06 19:37:53 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Local\Sony
[2010/07/06 19:29:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Sony
[2010/07/06 19:29:27 | 000,000,000 | ---D | C] -- C:\Program Files\Sony
[2010/07/04 03:54:36 | 000,000,000 | ---D | C] -- C:\Users\Admin\Documents\GameSaving
[2010/06/26 05:55:51 | 000,000,000 | ---D | C] -- C:\0ef1af7c0e49c56e5f233b357d04f3
[2010/06/22 16:31:26 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Roaming\IObit
[2010/06/16 02:10:27 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Roaming\BoneTown
[2010/06/14 01:34:28 | 000,000,000 | ---D | C] -- C:\Users\Admin\Desktop\RDR saves
[2010/06/08 23:59:17 | 000,000,000 | ---D | C] -- C:\Users\Admin\Desktop\5454082B
[2010/05/31 14:20:10 | 000,000,000 | ---D | C] -- C:\Users\Admin\Desktop\USB Folders

========== Files - Modified Within 90 Days ==========

[2010/08/28 04:50:10 | 008,912,896 | -HS- | M] () -- C:\Users\Admin\ntuser.dat
[2010/08/28 04:50:00 | 000,000,908 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3156090111-885036254-1565554444-1001UA.job
[2010/08/28 04:43:31 | 000,000,119 | ---- | M] () -- C:\Users\Admin\Desktop\[Active] Infected with SafeSurf and SurfGuard.url
[2010/08/28 04:39:15 | 000,013,216 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2010/08/28 04:39:15 | 000,013,216 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2010/08/28 04:31:53 | 000,000,258 | RHS- | M] () -- C:\ProgramData\ntuser.pol
[2010/08/28 04:31:31 | 000,065,536 | ---- | M] () -- C:\Windows\System32\Ikeext.etl
[2010/08/28 04:31:30 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2010/08/28 04:31:26 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2010/08/28 04:31:18 | 1408,045,056 | -HS- | M] () -- C:\hiberfil.sys
[2010/08/28 04:14:34 | 000,991,110 | ---- | M] () -- C:\Windows\System32\drivers\N360\0402000.00C\Cat.DB
[2010/08/28 03:39:36 | 000,732,510 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI
[2010/08/28 03:39:36 | 000,628,320 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2010/08/28 03:39:36 | 000,108,466 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2010/08/28 03:39:26 | 000,000,438 | ---- | M] () -- C:\Windows\System32\drivers\etc\hosts.ics
[2010/08/28 00:30:26 | 000,142,385 | ---- | M] () -- C:\Windows\System32\drivers\f\1\components\compreg.dat
[2010/08/28 00:30:26 | 000,102,022 | ---- | M] () -- C:\Windows\System32\drivers\f\1\components\xpti.dat
[2010/08/27 23:16:47 | 000,002,322 | ---- | M] () -- C:\Users\Public\Desktop\Norton 360.lnk
[2010/08/27 23:14:51 | 001,758,684 | -H-- | M] () -- C:\Users\Admin\AppData\Local\IconCache.db
[2010/08/27 21:04:28 | 000,000,856 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3156090111-885036254-1565554444-1001Core.job
[2010/08/27 20:57:23 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Users\Admin\Desktop\OTL.exe
[2010/08/27 18:46:12 | 299,547,134 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2010/08/27 17:14:34 | 005,716,848 | ---- | M] (Symantec Corporation) -- C:\Users\Admin\Desktop\NPE.exe
[2010/08/27 16:08:14 | 000,124,976 | ---- | M] (Symantec Corporation) -- C:\Windows\System32\drivers\SYMEVENT.SYS
[2010/08/27 16:08:14 | 000,007,443 | ---- | M] () -- C:\Windows\System32\drivers\SYMEVENT.CAT
[2010/08/27 16:08:14 | 000,000,805 | ---- | M] () -- C:\Windows\System32\drivers\SYMEVENT.INF
[2010/08/27 16:06:16 | 044,507,416 | ---- | M] (Symantec Corporation) -- C:\Users\Admin\Desktop\N360-UPGRADE-ESD-NoDefs-17-6-0-32-EN.exe
[2010/08/27 06:18:20 | 001,042,891 | ---- | M] () -- C:\Users\Admin\Desktop\CIMG0150.jpg
[2010/08/27 06:15:17 | 000,255,497 | ---- | M] () -- C:\Users\Admin\Desktop\Untitled.jpg
[2010/08/27 06:05:06 | 003,828,997 | R--- | M] () -- C:\Users\Admin\Desktop\ComboFix.exe
[2010/08/27 04:23:20 | 007,966,432 | ---- | M] (Safer Networking Limited ) -- C:\Users\Admin\Desktop\runalyz-1.6.1.24.exe
[2010/08/27 03:09:45 | 000,000,096 | ---- | M] () -- C:\Users\Admin\Desktop\YouTube - drmongs's Channel.url
[2010/08/27 02:08:11 | 000,000,085 | ---- | M] () -- C:\Users\Admin\Desktop\Bioshock 2 Guide, by DrMong - Maps and Audio Diary Locations.url
[2010/08/24 20:51:46 | 010,030,424 | ---- | M] (IObit ) -- C:\Users\Admin\Desktop\is360setup.exe
[2010/08/24 00:08:17 | 000,032,256 | ---- | M] () -- C:\Users\Admin\Desktop\Scanning Report.doc
[2010/08/23 19:35:11 | 000,000,074 | ---- | M] () -- C:\Users\Admin\Desktop\Infected with SafeSurf and SurfGuard - Safer-Networking Forums.URL
[2010/08/23 19:26:12 | 000,254,074 | ---- | M] () -- C:\Users\Admin\Desktop\vrs3.jpg
[2010/08/23 19:07:16 | 000,003,703 | ---- | M] () -- C:\Users\Admin\Desktop\Attach.zip
[2010/08/23 18:08:25 | 000,000,899 | ---- | M] () -- C:\Users\Admin\Application Data\Microsoft\Internet Explorer\Quick Launch\ERUNT.lnk
[2010/08/23 18:08:25 | 000,000,875 | ---- | M] () -- C:\Users\Admin\Desktop\ERUNT.lnk
[2010/08/23 17:59:01 | 000,525,824 | ---- | M] () -- C:\Users\Admin\Desktop\dds.scr
[2010/08/23 04:48:20 | 000,581,854 | ---- | M] () -- C:\Users\Admin\Desktop\vrs2.jpg
[2010/08/23 04:47:46 | 000,384,354 | ---- | M] () -- C:\Users\Admin\Desktop\vrs.jpg
[2010/08/23 01:07:24 | 000,000,071 | ---- | M] () -- C:\Users\Admin\Desktop\safesurf.exe.URL
[2010/08/23 00:46:13 | 000,007,643 | ---- | M] () -- C:\Users\Admin\AppData\Local\Resmon.ResmonCfg
[2010/08/23 00:01:22 | 000,416,916 | ---- | M] () -- C:\Windows\System32\drivers\etc\hosts
[2010/08/22 17:22:20 | 009,655,685 | ---- | M] () -- C:\Windows\System32\drivers\f\jet.exe
[2010/08/22 14:15:31 | 000,009,399 | ---- | M] () -- C:\Windows\System32\drivers\f\1\components\nsRequestService.js
[2010/08/22 00:51:26 | 000,002,398 | ---- | M] () -- C:\Users\Admin\Desktop\Google Chrome.lnk
[2010/08/21 00:41:59 | 000,422,912 | ---- | M] () -- C:\Users\Admin\Desktop\Doc1.doc
[2010/08/20 22:48:30 | 000,001,240 | ---- | M] () -- C:\Users\Admin\Application Data\Microsoft\Internet Explorer\Quick Launch\Spybot - Search & Destroy.lnk
[2010/08/20 22:48:30 | 000,001,216 | ---- | M] () -- C:\Users\Admin\Desktop\Spybot - Search & Destroy.lnk
[2010/08/20 22:46:47 | 016,409,960 | ---- | M] (Safer Networking Limited ) -- C:\Users\Admin\Desktop\spybotsd162.exe
[2010/08/20 19:07:58 | 000,095,024 | ---- | M] (Sunbelt Software) -- C:\Windows\System32\drivers\SBREDrv.sys
[2010/08/17 15:17:45 | 000,092,672 | ---- | M] (Option^Explicit Software vbtechcd@gmail.com) -- C:\Users\Admin\Documents\KillBox.exe
[2010/08/17 01:09:31 | 000,002,153 | ---- | M] () -- C:\Users\Admin\Application Data\Microsoft\Internet Explorer\Quick Launch\Camfrog Video Chat 5.5.lnk
[2010/08/15 17:35:26 | 000,004,286 | ---- | M] () -- C:\Windows\System32\ico.ico
[2010/08/12 20:19:10 | 001,697,608 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2010/08/12 13:49:18 | 000,830,976 | ---- | M] () -- C:\Windows\System32\Help64.exe
[2010/07/25 02:37:26 | 000,000,056 | -H-- | M] () -- C:\Windows\System32\ezsidmv.dat
[2010/07/16 00:38:54 | 000,392,704 | ---- | M] () -- C:\Windows\System32\ICH.exe
[2010/07/15 17:41:10 | 000,000,083 | ---- | M] () -- C:\Users\Admin\Desktop\MyXboxMods - View topic - [TUT]How to mod Bioshock 2 (Without modio).URL
[2010/07/14 02:00:59 | 158,069,940 | ---- | M] () -- C:\Users\Admin\Desktop\How to Hex Edit Bioshock 2 Xbox 360 (Remade) [www.keepvid.com].mp4
[2010/07/14 00:49:41 | 000,001,178 | ---- | M] () -- C:\Users\Public\Desktop\Hex Workshop Hex Editor.lnk
[2010/07/10 04:53:19 | 000,000,275 | ---- | M] () -- C:\Users\Admin\AppData\Roaming\default.rss
[2010/07/09 20:22:00 | 000,001,656 | ---- | M] () -- C:\Users\Admin\Documents\584109eb_xIl ToXiC lIx.sav
[2010/07/08 15:57:01 | 000,000,349 | ---- | M] () -- C:\Users\Public\Documents\PCLECHAL.INI
[2010/07/05 20:26:36 | 000,005,120 | ---- | M] () -- C:\Users\Admin\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/06/27 23:36:51 | 001,095,576 | ---- | M] () -- C:\Users\Admin\Desktop\Guitar-Hero-Smash-Hits-Xbox-360-Front-of-Box.jpg
[2010/06/12 01:50:39 | 004,946,643 | ---- | M] () -- C:\Users\Admin\Desktop\i gotta feeling.mp3

========== Files Created - No Company Name ==========

[2010/08/28 04:43:31 | 000,000,119 | ---- | C] () -- C:\Users\Admin\Desktop\[Active] Infected with SafeSurf and SurfGuard.url
[2010/08/28 04:25:06 | 000,055,639 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\AED7BF62d01
[2010/08/28 04:25:06 | 000,027,973 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\E2BC2C0Ad01
[2010/08/28 04:25:06 | 000,027,878 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\0560EF14d01
[2010/08/28 04:25:06 | 000,024,338 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\0D81CA4Ad01
[2010/08/28 04:25:06 | 000,024,326 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\5D6EEC4Ed01
[2010/08/28 04:25:06 | 000,019,516 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\A4CDDCD3d01
[2010/08/28 04:25:06 | 000,019,101 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\FDEE9899d01
[2010/08/28 04:25:06 | 000,018,361 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\A5149F25d01
[2010/08/28 04:25:06 | 000,016,483 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\4D917500d01
[2010/08/28 04:25:05 | 000,028,031 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\424F88FAd01
[2010/08/28 04:25:05 | 000,021,236 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\E4D03733d01
[2010/08/28 04:25:05 | 000,018,213 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\8AC42D85d01
[2010/08/28 04:25:05 | 000,017,918 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\99353656d01
[2010/08/28 04:25:05 | 000,017,149 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\7281980Fd01
[2010/08/28 04:25:05 | 000,016,957 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\6165C1F7d01
[2010/08/28 04:24:52 | 000,021,571 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\F4F9FEE3d01
[2010/08/28 04:24:51 | 000,044,950 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\25B636BDd01
[2010/08/28 04:24:51 | 000,031,159 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\8105072Bd01
[2010/08/28 04:24:51 | 000,030,994 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\1FE448ABd01
[2010/08/28 04:24:51 | 000,029,987 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\6556F9E8d01
[2010/08/28 04:24:51 | 000,028,533 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\04647875d01
[2010/08/28 04:24:51 | 000,028,329 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\B8BA0906d01
[2010/08/28 04:24:51 | 000,026,868 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\161215A5d01
[2010/08/28 04:24:51 | 000,025,840 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\5A83F190d01
[2010/08/28 04:24:51 | 000,025,778 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\D8762EBCd01
[2010/08/28 04:24:51 | 000,025,102 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\D72FA122d01
[2010/08/28 04:24:51 | 000,025,091 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\0BEDA993d01
[2010/08/28 04:24:51 | 000,024,359 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\E9ADF23Cd01
[2010/08/28 04:24:51 | 000,024,300 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\5DF1F132d01
[2010/08/28 04:24:51 | 000,023,040 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\846113DDd01
[2010/08/28 04:24:51 | 000,022,102 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\CF0F92CCd01
[2010/08/28 04:24:51 | 000,022,082 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\947A9B64d01
[2010/08/28 04:24:51 | 000,021,265 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\FCACD3FFd01
[2010/08/28 04:24:51 | 000,021,079 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\AD98F6ACd01
[2010/08/28 04:24:51 | 000,020,802 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\B5296A35d01
[2010/08/28 04:24:51 | 000,019,989 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\99242787d01
[2010/08/28 04:24:51 | 000,019,942 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\B22CAD5Fd01
[2010/08/28 04:24:51 | 000,019,823 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\41B3A442d01
[2010/08/28 04:24:51 | 000,019,045 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\39DC47BBd01
[2010/08/28 04:24:51 | 000,018,554 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\CF1192CCd01
[2010/08/28 04:24:51 | 000,018,428 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\A11E5831d01
[2010/08/28 04:24:51 | 000,018,404 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\38741493d01
[2010/08/28 04:24:51 | 000,017,849 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\828485CCd01
[2010/08/28 04:24:51 | 000,017,819 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\3632AD21d01
[2010/08/28 04:24:51 | 000,017,576 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\CFC992CCd01
[2010/08/28 04:24:51 | 000,016,628 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\70B33B0Cd01
[2010/08/28 04:24:50 | 000,049,096 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\63E9D5A2d01
[2010/08/28 04:24:44 | 000,017,237 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\D5700B4Bd01
[2010/08/28 04:24:43 | 000,024,856 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\E8C72A7Cd01
[2010/08/28 04:24:43 | 000,024,165 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\8A8B49CCd01
[2010/08/28 04:24:43 | 000,023,599 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\8A8D49CCd01
[2010/08/28 04:24:43 | 000,023,409 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\8A8149CCd01
[2010/08/28 04:24:43 | 000,023,302 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\8A8E49CCd01
[2010/08/28 04:24:43 | 000,022,741 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\8A8A49CCd01
[2010/08/28 04:24:43 | 000,022,723 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\8A8C49CCd01
[2010/08/28 04:24:43 | 000,021,926 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\8A8F49CCd01
[2010/08/28 04:24:43 | 000,021,774 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\8A8849CCd01
[2010/08/28 04:24:43 | 000,021,406 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\8A8949CCd01
[2010/08/28 04:24:43 | 000,020,833 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\39979D58d01
[2010/08/28 04:24:43 | 000,020,418 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\8A8049CCd01
[2010/08/28 04:24:43 | 000,018,296 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\8FFB455Dd01
[2010/08/28 04:24:42 | 000,018,635 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\E5D33601d01
[2010/08/28 04:23:45 | 000,030,435 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\7FB5141Ed01
[2010/08/28 04:23:44 | 000,038,230 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\825F5706d01
[2010/08/28 04:23:43 | 000,017,263 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\E7F451C3d01
[2010/08/28 04:23:14 | 000,026,671 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\4DB85049d01
[2010/08/28 04:23:12 | 000,057,276 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\41B13C0Cd01
[2010/08/28 04:23:12 | 000,018,976 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\6ACBA00Bd01
[2010/08/28 04:18:03 | 000,026,617 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\96BB40ADd01
[2010/08/28 04:18:02 | 000,040,049 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\1C8D4D2Dd01
[2010/08/28 04:18:02 | 000,029,650 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\F0385787d01
[2010/08/28 04:17:45 | 000,024,682 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\A11FFC4Bd01
[2010/08/28 04:17:45 | 000,021,865 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\604CCC27d01
[2010/08/28 04:17:44 | 000,056,527 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\E39AD229d01
[2010/08/28 04:17:44 | 000,055,725 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\678C85C9d01
[2010/08/28 04:17:44 | 000,026,051 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\02BD5D41d01
[2010/08/28 04:17:44 | 000,020,484 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\084FA6EBd01
[2010/08/28 04:17:44 | 000,019,936 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\9EE9AE8Ed01
[2010/08/28 04:17:44 | 000,017,736 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\3D53F4D8d01
[2010/08/28 04:17:43 | 000,074,864 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\DE8E1F78d01
[2010/08/28 04:17:43 | 000,025,784 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\CFC216F1d01
[2010/08/28 04:17:43 | 000,022,818 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\69E6D611d01
[2010/08/28 04:17:42 | 000,020,858 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\AA01067Bd01
[2010/08/28 04:17:41 | 000,030,212 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\70464AB8d01
[2010/08/28 04:17:12 | 000,062,724 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\8299ECA9d01
[2010/08/28 04:14:20 | 000,022,419 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\63E9C0BFd01
[2010/08/28 04:14:20 | 000,020,583 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\C2965339d01
[2010/08/28 04:14:18 | 000,021,377 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\A58F13F4d01
[2010/08/28 04:14:17 | 000,128,516 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\D7726F53d01
[2010/08/28 04:14:17 | 000,022,862 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\7AA1433Dd01
[2010/08/28 04:14:16 | 000,049,327 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\46924AF4d01
[2010/08/28 04:14:15 | 000,027,077 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\2A59182Ad01
[2010/08/28 04:14:14 | 000,039,574 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\AA6C005Ed01
[2010/08/28 04:14:12 | 000,019,298 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\F192EA98d01
[2010/08/28 04:13:43 | 000,026,143 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\92ABFBADd01
[2010/08/28 04:13:10 | 000,017,843 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\1826AB3Bd01
[2010/08/28 04:13:03 | 000,119,003 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\E0831AEAd01
[2010/08/28 04:13:03 | 000,045,469 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\44DC4BF1d01
[2010/08/28 04:13:02 | 000,028,596 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\34AD4B18d01
[2010/08/28 04:12:57 | 000,045,016 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\25F84BB9d01
[2010/08/28 04:12:57 | 000,043,717 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\48DD4BD8d01
[2010/08/28 04:12:57 | 000,038,799 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\169F4BB9d01
[2010/08/28 04:12:52 | 000,054,817 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\E5E4D0DEd01
[2010/08/28 04:12:52 | 000,053,954 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\A36FEB7Ad01
[2010/08/28 04:12:51 | 000,065,899 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\8D3CE2B7d01
[2010/08/28 04:12:51 | 000,064,314 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\B43A17E6d01
[2010/08/28 04:12:51 | 000,039,252 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\4AAC36E1d01
[2010/08/28 04:12:51 | 000,023,779 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\BE6CD17Cd01
[2010/08/28 04:12:47 | 000,044,720 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\44FC4BF1d01
[2010/08/28 04:12:46 | 000,070,584 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\858A6743d01
[2010/08/28 04:12:46 | 000,046,016 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\4BCE2128d01
[2010/08/28 04:12:46 | 000,037,352 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\884A7EC3d01
[2010/08/28 04:12:46 | 000,033,965 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\D87C68BCd01
[2010/08/28 04:12:46 | 000,031,724 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\E626B696d01
[2010/08/28 04:12:46 | 000,030,030 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\AD2A386Cd01
[2010/08/28 04:12:46 | 000,024,940 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\DF1B3448d01
[2010/08/28 04:12:46 | 000,018,136 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\4106B286d01
[2010/08/28 04:12:45 | 000,029,540 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\07E84BCDd01
[2010/08/28 04:12:43 | 000,024,005 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\8A255804d01
[2010/08/28 04:12:41 | 000,016,615 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\E2F86048d01
[2010/08/28 04:12:11 | 000,029,462 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\BC6BEF26d01
[2010/08/28 04:12:11 | 000,018,093 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\07DD311Dd01
[2010/08/28 04:12:10 | 000,017,780 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\BFD998F7d01
[2010/08/28 04:11:10 | 000,047,111 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\A5331565d01
[2010/08/28 04:11:10 | 000,034,911 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\A75E06A7d01
[2010/08/28 04:11:10 | 000,020,656 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\6FF66744d01
[2010/08/28 04:11:09 | 000,027,558 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\D1C6304Fd01
[2010/08/28 04:10:38 | 000,085,204 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\34C514BFd01
[2010/08/28 04:10:38 | 000,022,494 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\24BD3D6Cd01
[2010/08/28 04:05:23 | 000,096,959 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\352447DCd01
[2010/08/28 04:05:23 | 000,035,087 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\E45DCB7Ed01
[2010/08/28 04:05:23 | 000,024,408 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\25FDC4B8d01
[2010/08/28 04:05:23 | 000,023,417 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\1E5639FBd01
[2010/08/28 04:05:23 | 000,022,426 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\724C3907d01
[2010/08/28 04:05:23 | 000,019,348 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\6344815Dd01
[2010/08/28 04:05:23 | 000,017,906 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\CFA02EBDd01
[2010/08/28 04:05:22 | 000,041,389 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\2C8D4A3Ad01
[2010/08/28 04:05:20 | 000,031,033 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\E5AAEA61d01

 

[2010/08/28 04:05:14 | 000,038,888 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\2C6B7616d01
[2010/08/28 04:05:14 | 000,031,477 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\D41D8EDAd01
[2010/08/28 04:05:14 | 000,023,769 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\348694C1d01
[2010/08/28 04:05:13 | 000,075,122 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\78A5C8E5d01
[2010/08/28 04:05:13 | 000,041,118 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\9F4E1566d01
[2010/08/28 04:05:13 | 000,039,172 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\96BB445Ed01
[2010/08/28 04:05:13 | 000,036,991 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\2F20FA90d01
[2010/08/28 04:05:13 | 000,036,032 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\2F75D2A9d01
[2010/08/28 04:05:13 | 000,034,943 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\E35448C4d01
[2010/08/28 04:05:13 | 000,033,596 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\75A0828Ad01
[2010/08/28 04:05:13 | 000,031,075 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\F650EBEDd01
[2010/08/28 04:05:13 | 000,030,357 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\26760341d01
[2010/08/28 04:05:13 | 000,028,526 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\2B1F0D34d01
[2010/08/28 04:05:13 | 000,026,891 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\5E251109d01
[2010/08/28 04:05:13 | 000,026,603 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\19E485D0d01
[2010/08/28 04:05:13 | 000,025,642 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\3B239567d01
[2010/08/28 04:05:13 | 000,025,142 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\039DEDADd01
[2010/08/28 04:05:13 | 000,025,019 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\7F63D891d01
[2010/08/28 04:05:13 | 000,024,600 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\5179EFFCd01
[2010/08/28 04:05:13 | 000,022,862 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\CD8E679Dd01
[2010/08/28 04:05:13 | 000,022,109 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\C7ADC361d01
[2010/08/28 04:05:12 | 000,052,874 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\8296C193d01
[2010/08/28 04:05:12 | 000,040,323 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\34CF07B6d01
[2010/08/28 04:05:12 | 000,040,028 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\E6AEF96Ed01
[2010/08/28 04:05:12 | 000,037,368 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\29C5ECE1d01
[2010/08/28 04:05:12 | 000,037,070 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\B2B2E767d01
[2010/08/28 04:05:12 | 000,034,141 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\90E596D5d01
[2010/08/28 04:05:12 | 000,032,875 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\8EEBD6E1d01
[2010/08/28 04:05:12 | 000,029,430 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\4A2D6374d01
[2010/08/28 04:05:12 | 000,026,026 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\6917979Dd01
[2010/08/28 04:05:12 | 000,025,558 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\AB361A87d01
[2010/08/28 04:05:12 | 000,025,085 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\0868DAAEd01
[2010/08/28 04:05:12 | 000,024,247 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\F40AB40Bd01
[2010/08/28 04:05:12 | 000,022,523 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\D5E072ADd01
[2010/08/28 04:05:11 | 000,047,315 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\7DCB2045d01
[2010/08/28 04:05:11 | 000,040,524 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\77B6C4CEd01
[2010/08/28 04:05:11 | 000,039,172 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\1B3E98A0d01
[2010/08/28 04:05:11 | 000,036,934 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\A5F65144d01
[2010/08/28 04:05:11 | 000,035,628 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\43D6C585d01
[2010/08/28 04:05:11 | 000,034,153 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\5E8CA51Ad01
[2010/08/28 04:05:11 | 000,033,535 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\27F5E77Ad01
[2010/08/28 04:05:11 | 000,033,035 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\B8350501d01
[2010/08/28 04:05:11 | 000,031,661 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\00CBE7A4d01
[2010/08/28 04:05:11 | 000,031,443 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\70C2965Bd01
[2010/08/28 04:05:11 | 000,029,874 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\9ACB5F16d01
[2010/08/28 04:05:11 | 000,029,464 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\4F307121d01
[2010/08/28 04:05:11 | 000,025,060 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\68BE5082d01
[2010/08/28 04:05:11 | 000,022,909 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\160832BFd01
[2010/08/28 04:05:11 | 000,022,704 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\8857E3F4d01
[2010/08/28 04:05:11 | 000,022,081 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\743BC1C5d01
[2010/08/28 04:05:10 | 000,033,722 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\D80177A7d01
[2010/08/28 04:05:10 | 000,029,109 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\87D27905d01
[2010/08/28 04:04:57 | 000,057,357 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\8DF9828Fd01
[2010/08/28 04:04:57 | 000,020,225 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\521CDF17d01
[2010/08/28 04:04:57 | 000,018,210 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\FDD9F66Cd01
[2010/08/28 04:04:56 | 000,068,987 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\C97E96A2d01
[2010/08/28 04:04:56 | 000,059,253 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\F9DD85D8d01
[2010/08/28 04:04:56 | 000,019,162 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\C93B9464d01
[2010/08/28 04:04:55 | 000,037,134 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\0BD6DA17d01
[2010/08/28 04:04:55 | 000,036,890 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\02895F78d01
[2010/08/28 04:04:55 | 000,034,048 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\97C3EC55d01
[2010/08/28 04:04:55 | 000,032,459 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\7B848ED5d01
[2010/08/28 04:04:55 | 000,032,229 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\1B31EC62d01
[2010/08/28 04:04:55 | 000,032,074 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\028595C4d01
[2010/08/28 04:04:55 | 000,031,208 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\7D108682d01
[2010/08/28 04:04:55 | 000,028,151 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\0897E850d01
[2010/08/28 04:04:55 | 000,024,500 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\5A940222d01
[2010/08/28 04:04:55 | 000,023,254 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\A9727932d01
[2010/08/28 04:04:55 | 000,022,634 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\9C28C18Bd01
[2010/08/28 04:04:55 | 000,017,904 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\2923E361d01
[2010/08/28 04:04:55 | 000,017,018 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\981FC18Bd01
[2010/08/28 04:04:54 | 000,020,460 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\A9287932d01
[2010/08/28 04:04:54 | 000,019,272 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\4243B510d01
[2010/08/28 04:04:54 | 000,018,169 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\4CD3B510d01
[2010/08/28 04:04:54 | 000,018,133 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\424DB510d01
[2010/08/28 04:04:54 | 000,016,462 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\AD67D6F6d01
[2010/08/28 04:04:40 | 000,057,074 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\768FF2C1d01
[2010/08/28 04:04:40 | 000,057,074 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\4718A5ADd01
[2010/08/28 04:04:40 | 000,047,172 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\7255B288d01
[2010/08/28 04:04:40 | 000,041,849 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\76BDF2C1d01
[2010/08/28 04:04:40 | 000,034,137 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\9907ADEDd01
[2010/08/28 04:04:40 | 000,034,137 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\7256B288d01
[2010/08/28 04:04:40 | 000,030,947 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\991DADEDd01
[2010/08/28 04:04:40 | 000,030,947 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\724CB288d01
[2010/08/28 04:04:40 | 000,024,809 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\76F8F2C1d01
[2010/08/28 04:04:40 | 000,024,809 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\476FA5ADd01
[2010/08/28 04:04:40 | 000,024,188 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\768BF2C1d01
[2010/08/28 04:04:40 | 000,024,188 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\471CA5ADd01
[2010/08/28 04:04:40 | 000,022,853 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\9906ADEDd01
[2010/08/28 04:04:39 | 000,047,172 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\9904ADEDd01
[2010/08/28 04:04:38 | 000,057,074 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\ACDD9D1Cd01
[2010/08/28 04:04:38 | 000,055,756 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\D77B4F55d01
[2010/08/28 04:04:38 | 000,047,172 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\D7734F55d01
[2010/08/28 04:04:38 | 000,041,849 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\ACEF9D1Cd01
[2010/08/28 04:04:38 | 000,034,137 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\D7704F55d01
[2010/08/28 04:04:38 | 000,030,947 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\D76A4F55d01
[2010/08/28 04:04:38 | 000,024,809 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\ACAA9D1Cd01
[2010/08/28 04:04:38 | 000,024,188 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\ACD99D1Cd01
[2010/08/28 04:04:38 | 000,022,853 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\D7714F55d01
[2010/08/28 04:04:37 | 000,143,330 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\1CFB070Ad01
[2010/08/28 04:04:37 | 000,140,878 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\5FAD1E82d01
[2010/08/28 04:04:37 | 000,063,513 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\802607B5d01
[2010/08/28 04:04:37 | 000,040,630 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\802607B4d01
[2010/08/28 04:04:36 | 000,068,696 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\802607B6d01
[2010/08/28 04:01:32 | 000,020,315 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\5948D88Dd01
[2010/08/28 04:01:30 | 000,024,465 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\2D2B8854d01
[2010/08/28 04:01:30 | 000,024,287 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\820F9F98d01
[2010/08/28 04:01:30 | 000,024,144 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\32DB076Ad01
[2010/08/28 04:01:29 | 000,302,742 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\85A337ABd01
[2010/08/28 04:01:29 | 000,024,307 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\32D7076Ad01
[2010/08/28 04:01:28 | 000,030,313 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\C07E39B0d01
[2010/08/28 03:45:47 | 000,083,898 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\D964D4BFd01
[2010/08/28 03:45:47 | 000,077,786 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\BE5C87B2d01
[2010/08/28 03:45:47 | 000,057,713 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\BA0196D8d01
[2010/08/28 03:45:47 | 000,052,395 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\FDBA18AAd01
[2010/08/28 03:45:47 | 000,048,423 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\B3DABA7Ed01
[2010/08/28 03:45:47 | 000,043,492 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\DD1D80CCd01
[2010/08/28 03:45:47 | 000,035,124 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\BDBA4759d01
[2010/08/28 03:45:47 | 000,017,592 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\D43B9AC9d01
[2010/08/28 03:45:32 | 000,020,068 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\2900CB3Bd01
[2010/08/28 03:45:31 | 000,002,048 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\search.sqlite
[2010/08/28 03:32:30 | 000,022,828 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\13BA26C2d01
[2010/08/28 03:32:30 | 000,017,054 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\07212D14d01
[2010/08/28 03:32:29 | 000,086,502 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\580DC980d01
[2010/08/28 03:32:29 | 000,016,990 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\C785A1B8d01
[2010/08/28 03:32:24 | 000,031,815 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\BE3E0952d01
[2010/08/28 03:32:24 | 000,022,124 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\6819C335d01
[2010/08/28 03:32:24 | 000,017,370 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\C25BB07Ad01
[2010/08/28 03:32:23 | 000,067,298 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\FE2B7FB1d01
[2010/08/28 03:32:23 | 000,055,591 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\2D3AF14Ed01
[2010/08/28 03:32:23 | 000,047,766 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\B2628E8Cd01
[2010/08/28 03:31:21 | 000,018,067 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\9BB5C8D2d01
[2010/08/28 03:31:16 | 000,047,684 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\8177C49Ed01
[2010/08/28 03:31:15 | 000,034,797 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\49534BEAd01
[2010/08/28 03:31:15 | 000,031,534 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\7A3EA997d01
[2010/08/28 03:31:14 | 000,038,986 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\34574053d01
[2010/08/28 03:31:13 | 000,126,132 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\5DAB7CD2d01
[2010/08/28 03:21:15 | 000,016,442 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\399797D2d01
[2010/08/28 03:21:14 | 000,023,453 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\41B09C8Bd01
[2010/08/28 03:21:14 | 000,017,584 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\897D258Dd01
[2010/08/28 03:21:13 | 000,074,434 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\D6BA4191d01
[2010/08/28 03:18:17 | 000,047,078 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\97BDD958d01
[2010/08/28 03:18:17 | 000,046,009 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\97A83958d01
[2010/08/28 03:18:17 | 000,030,793 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\4F15120Ed01
[2010/08/28 03:18:16 | 000,039,493 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\8CB892FFd01
[2010/08/28 03:18:14 | 000,021,402 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\E6EEA4BFd01
[2010/08/28 03:18:14 | 000,020,675 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\5E2300E9d01
[2010/08/28 03:18:14 | 000,020,662 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\B1BFA4BFd01
[2010/08/28 03:18:14 | 000,019,003 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\E60FA4BFd01
[2010/08/28 03:18:14 | 000,017,087 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\8C0AA4BFd01
[2010/08/28 03:18:13 | 000,022,446 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\89381EFAd01
[2010/08/28 03:18:12 | 000,024,026 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\61B600E9d01
[2010/08/28 03:16:44 | 000,136,350 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\BF75FCB5d01
[2010/08/28 03:16:44 | 000,092,713 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\D7762188d01
[2010/08/28 03:16:44 | 000,057,849 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\8E83F030d01
[2010/08/28 03:16:44 | 000,016,522 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\66FEF23Cd01
[2010/08/28 03:16:43 | 000,034,488 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\BA05FCB5d01
[2010/08/28 03:16:42 | 000,166,897 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\A9AEECACd01
[2010/08/28 03:16:42 | 000,017,948 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\18FA1FF7d01
[2010/08/28 03:16:41 | 000,155,667 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\D8570190d01
[2010/08/28 03:16:41 | 000,154,850 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\53D55E63d01
[2010/08/28 03:16:41 | 000,120,255 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\AA4B2280d01
[2010/08/28 03:16:41 | 000,064,679 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\53D652F2d01
[2010/08/28 03:16:41 | 000,016,432 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\9B609D9Ad01
[2010/08/28 03:13:41 | 000,062,551 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\1CC2E275d01
[2010/08/28 03:13:39 | 000,067,112 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\802C0B56d01
[2010/08/28 03:13:39 | 000,029,286 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\1CC1F995d01
[2010/08/28 03:10:54 | 000,051,865 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\48490B4Dd01
[2010/08/28 03:10:54 | 000,048,351 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\7963A404d01
[2010/08/28 03:10:54 | 000,039,379 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\2492D4D6d01
[2010/08/28 03:10:54 | 000,038,162 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\0EEC5D03d01
[2010/08/28 03:10:54 | 000,021,211 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\7C9117B1d01
[2010/08/28 03:10:54 | 000,017,127 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\7836A7EFd01
[2010/08/28 03:10:53 | 000,018,848 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\F06A2895d01
[2010/08/28 03:10:49 | 000,085,189 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\30F7D4B6d01
[2010/08/28 03:10:49 | 000,040,462 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\8BBD4D97d01
[2010/08/28 03:10:49 | 000,038,241 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\97F04D97d01
[2010/08/28 03:10:49 | 000,037,188 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\91974D97d01
[2010/08/28 03:10:49 | 000,033,448 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\92044D97d01
[2010/08/28 03:10:49 | 000,033,399 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\E12A9599d01
[2010/08/28 03:10:47 | 000,038,311 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\3DC68874d01
[2010/08/28 03:10:46 | 000,115,452 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\906CD4B6d01
[2010/08/28 03:10:46 | 000,026,603 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\6DADBE0Bd01
[2010/08/28 03:10:45 | 000,038,788 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\5565191Cd01
[2010/08/28 03:10:42 | 000,074,693 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\4C75F412d01
[2010/08/28 03:07:21 | 000,114,316 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\C810827Bd01
[2010/08/28 03:04:49 | 000,047,543 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\3E56DB7Ed01
[2010/08/28 03:04:49 | 000,024,546 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\418FCB3Ad01
[2010/08/28 03:04:49 | 000,022,879 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\0886D87Ad01
[2010/08/28 03:04:41 | 000,050,171 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\23F5EAA6d01
[2010/08/28 03:04:27 | 000,031,632 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\F52BDC68d01
[2010/08/28 02:58:56 | 000,072,163 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\E55CE357d01
[2010/08/28 02:58:56 | 000,067,931 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\01918BA5d01
[2010/08/28 02:58:56 | 000,019,226 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\B794F07Cd01
[2010/08/28 02:58:33 | 000,035,409 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\110ED982d01
[2010/08/28 02:58:03 | 000,019,351 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\93E60749d01
[2010/08/28 02:58:01 | 000,284,674 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\79A2A9EBd01
[2010/08/28 02:58:01 | 000,042,525 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\4E387C31d01
[2010/08/28 02:58:01 | 000,025,397 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\B7FD53FBd01
[2010/08/28 02:41:29 | 000,039,622 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\87518ED6d01
[2010/08/28 02:41:29 | 000,027,996 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\B5B69180d01
[2010/08/28 02:40:49 | 000,039,622 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\8B00CD2Ad01
[2010/08/28 02:40:48 | 000,088,514 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\BC0A8C20d01
[2010/08/28 02:40:48 | 000,068,215 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\28AE1AF9d01
[2010/08/28 02:40:48 | 000,026,405 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\28AE0119d01
[2010/08/28 02:35:21 | 000,021,197 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\B84E3272d01
[2010/08/28 02:35:21 | 000,019,810 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\8B45CA93d01
[2010/08/28 02:35:20 | 000,038,404 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\77C1AC25d01
[2010/08/28 02:35:20 | 000,030,522 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\B0AE57C4d01
[2010/08/28 02:35:17 | 000,074,928 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\600A1608d01
[2010/08/28 02:34:25 | 000,028,753 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\0EE3A7FAd01
[2010/08/28 02:34:23 | 000,034,058 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\C5C6BA2Ed01
[2010/08/28 02:34:21 | 000,040,704 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\E176BBC6d01
[2010/08/28 02:34:21 | 000,035,128 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\D152D1E5d01
[2010/08/28 02:34:21 | 000,032,933 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\58A51994d01
[2010/08/28 02:34:21 | 000,028,572 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\05295D3Dd01
[2010/08/28 02:34:21 | 000,027,911 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\A278DABDd01
[2010/08/28 02:34:21 | 000,026,489 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\8638EE57d01
[2010/08/28 02:34:21 | 000,023,786 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\1C40DF37d01
[2010/08/28 02:34:21 | 000,021,386 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\2D1AE0BFd01
[2010/08/28 02:34:21 | 000,020,924 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\CA72845Fd01
[2010/08/28 02:34:21 | 000,020,070 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\4386C03Ad01
[2010/08/28 02:34:21 | 000,020,054 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\6FC0D12Ad01
[2010/08/28 02:34:20 | 000,085,973 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\47D6FDEEd01
[2010/08/28 02:34:20 | 000,047,503 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\1A980E42d01
[2010/08/28 02:34:20 | 000,022,721 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\E71C2D5Cd01
[2010/08/28 02:34:20 | 000,019,681 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\B65504B4d01
[2010/08/28 02:34:18 | 000,022,732 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\0E1622D6d01
[2010/08/28 02:34:16 | 000,022,357 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\2D433C6Cd01
[2010/08/28 02:34:15 | 000,029,780 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\6F19ACABd01
[2010/08/28 02:34:06 | 000,036,515 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\2D5513E8d01
[2010/08/28 02:34:03 | 000,049,980 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\9DF197F7d01
[2010/08/28 02:34:03 | 000,041,797 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\2408CC23d01
[2010/08/28 02:33:58 | 000,034,642 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\CDC15AD3d01
[2010/08/28 02:33:58 | 000,033,801 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\81E7EAB2d01
[2010/08/28 02:33:58 | 000,033,672 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\CE6BF043d01
[2010/08/28 02:33:58 | 000,033,342 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\F4D70105d01
[2010/08/28 02:33:57 | 000,151,149 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\EE488469d01
[2010/08/28 02:33:57 | 000,080,450 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\EAF80DD3d01
[2010/08/28 02:33:57 | 000,069,360 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\9F618432d01
[2010/08/28 02:33:57 | 000,049,980 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\D41CC831d01
[2010/08/28 02:33:57 | 000,049,665 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\2A2CFB83d01
[2010/08/28 02:33:57 | 000,041,797 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\409619DFd01
[2010/08/28 02:33:57 | 000,035,688 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\67B51416d01
[2010/08/28 02:33:57 | 000,034,469 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\A456FB82d01
[2010/08/28 02:33:55 | 000,017,560 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\D80FB60Fd01
[2010/08/28 02:33:54 | 000,039,379 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\DB1571B5d01
[2010/08/28 02:33:17 | 000,026,884 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\1EDCE40Cd01
[2010/08/28 02:33:15 | 000,024,678 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\301E0BD7d01
[2010/08/28 02:32:47 | 000,060,524 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\7067F50Cd01
[2010/08/28 02:32:47 | 000,060,524 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\7067EF5Ed01
[2010/08/28 02:32:47 | 000,026,884 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\97D1C92Bd01
[2010/08/28 02:32:47 | 000,025,268 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\232C54C6d01
[2010/08/28 02:32:46 | 000,060,524 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\98A0AE47d01
[2010/08/28 02:32:46 | 000,026,884 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\7F168825d01
[2010/08/28 02:32:46 | 000,018,265 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\AA6991B3d01
[2010/08/28 02:32:45 | 000,019,146 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\56043940d01
[2010/08/28 02:27:44 | 000,165,948 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\025790DEd01
[2010/08/28 02:27:44 | 000,057,591 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\B23790EAd01
[2010/08/28 02:27:42 | 000,081,132 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\282DB5C0d01
[2010/08/28 02:27:42 | 000,081,132 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\093D3135d01
[2010/08/28 02:27:42 | 000,040,716 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\6C617622d01
[2010/08/28 02:27:42 | 000,032,963 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\F1C061A6d01
[2010/08/28 02:27:42 | 000,031,933 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\607D7FF1d01
[2010/08/28 02:27:20 | 000,091,400 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\378A03FCd01
[2010/08/28 02:27:20 | 000,064,192 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\2B2E4786d01
[2010/08/28 02:27:20 | 000,017,365 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\068892D4d01
[2010/08/28 02:27:19 | 000,083,564 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\AA210FE4d01
[2010/08/28 02:27:19 | 000,080,678 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\9FC99BA5d01
[2010/08/28 02:27:19 | 000,070,312 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\11EC11B5d01
[2010/08/28 02:27:19 | 000,050,862 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\AE8447CAd01
[2010/08/28 02:27:19 | 000,032,894 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\139D05AFd01
[2010/08/28 02:27:18 | 000,057,691 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\2BE86105d01
[2010/08/28 02:27:18 | 000,046,104 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\6BBF08CDd01
[2010/08/28 02:27:18 | 000,031,801 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\D7B715CFd01
[2010/08/28 02:27:18 | 000,029,882 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\11B1156Fd01

 

[2010/08/28 02:27:17 | 000,025,667 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\1FF89FBFd01
[2010/08/28 02:27:17 | 000,019,270 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\212DF587d01
[2010/08/28 02:27:17 | 000,018,571 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\B9F9932Ed01
[2010/08/28 02:27:17 | 000,018,336 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\FD07707Fd01
[2010/08/28 02:27:16 | 000,067,112 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\F55B3F1Fd01
[2010/08/28 02:24:46 | 000,055,262 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\982792A6d01
[2010/08/28 02:24:46 | 000,053,461 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\57855B94d01
[2010/08/28 02:24:46 | 000,024,430 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\0EE7449Bd01
[2010/08/28 02:24:46 | 000,023,412 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\258653EFd01
[2010/08/28 02:24:46 | 000,020,316 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\A4D7449Ed01
[2010/08/28 02:24:45 | 000,110,203 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\42E4ADA8d01
[2010/08/28 02:24:45 | 000,033,489 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\D09C8DA0d01
[2010/08/28 02:24:44 | 000,059,368 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\5D95D8E5d01
[2010/08/28 02:24:44 | 000,043,097 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\8B1A21F7d01
[2010/08/28 02:24:42 | 000,026,928 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\2BF438F6d01
[2010/08/28 02:23:13 | 000,053,756 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\EF3FD497d01
[2010/08/28 02:23:13 | 000,025,354 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\AE44A33Cd01
[2010/08/28 02:15:14 | 000,025,533 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\53B59B25d01
[2010/08/28 02:15:14 | 000,019,441 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\750E2411d01
[2010/08/28 02:15:11 | 000,057,254 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\FD8D6481d01
[2010/08/28 02:15:11 | 000,041,415 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\B48E2AFBd01
[2010/08/28 02:15:11 | 000,033,269 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\9AEB6C84d01
[2010/08/28 02:12:03 | 000,475,038 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\7A0F75A6d01
[2010/08/28 02:11:40 | 000,475,038 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\7A0F75A7d01
[2010/08/28 02:11:30 | 000,033,344 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\C80E7769d01
[2010/08/28 02:11:19 | 000,036,630 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\C80E700Bd01
[2010/08/28 02:11:06 | 000,031,184 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\C80E70E8d01
[2010/08/28 02:10:58 | 000,078,982 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\C4C0CE70d01
[2010/08/28 02:10:58 | 000,055,214 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\E2EC4A81d01
[2010/08/28 02:10:58 | 000,032,128 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\3AA6A0E8d01
[2010/08/28 02:10:57 | 000,024,633 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\D3251CC2d01
[2010/08/28 02:10:57 | 000,019,895 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\6B596B0Bd01
[2010/08/28 02:10:56 | 000,098,898 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\8D9049CBd01
[2010/08/28 02:10:56 | 000,023,679 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\1879585Dd01
[2010/08/28 02:10:38 | 000,021,348 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\7475A270d01
[2010/08/28 02:10:23 | 000,067,112 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\802C0856d01
[2010/08/28 02:09:20 | 000,583,030 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\31CCBFE7d01
[2010/08/28 02:09:20 | 000,583,030 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\1AA4AC9Cd01
[2010/08/28 02:09:20 | 000,096,200 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\91692167d01
[2010/08/28 02:09:20 | 000,054,336 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\069E2D65d01
[2010/08/28 02:09:20 | 000,040,517 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\144080E6d01
[2010/08/28 02:09:20 | 000,029,933 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\AFCBC6B4d01
[2010/08/28 02:09:19 | 000,161,767 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\8B9E106Dd01
[2010/08/28 02:09:19 | 000,118,606 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\19B11BFFd01
[2010/08/28 02:09:19 | 000,067,758 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\198F1BFFd01
[2010/08/28 02:09:19 | 000,050,127 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\591D21F3d01
[2010/08/28 02:09:19 | 000,040,605 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\F9B7C10Ad01
[2010/08/28 02:09:19 | 000,037,286 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\A184C417d01
[2010/08/28 02:09:19 | 000,036,728 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\A7A1DEC4d01
[2010/08/28 02:09:19 | 000,030,291 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\C5D4BAF1d01
[2010/08/28 02:09:19 | 000,028,852 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\A837682Dd01
[2010/08/28 02:09:19 | 000,027,469 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\A7A5A220d01
[2010/08/28 02:09:19 | 000,018,748 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\EFB2FC88d01
[2010/08/28 02:09:18 | 000,017,260 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\39BE7689d01
[2010/08/28 02:09:17 | 000,016,682 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\00373EC0d01
[2010/08/28 02:09:15 | 000,019,763 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\301E0BD0d01
[2010/08/28 02:08:45 | 000,067,112 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\D75DFCC1d01
[2010/08/28 02:08:18 | 000,025,168 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\C4A39B1Fd01
[2010/08/28 02:08:17 | 000,068,400 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\24067092d01
[2010/08/28 02:08:17 | 000,064,971 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\34F4BE06d01
[2010/08/28 02:08:17 | 000,047,151 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\D22D61E6d01
[2010/08/28 02:08:17 | 000,044,183 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\F2E828E3d01
[2010/08/28 02:08:17 | 000,041,640 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\2E6172DBd01
[2010/08/28 02:08:17 | 000,041,591 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\9F3BF28Cd01
[2010/08/28 02:08:17 | 000,040,128 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\D8727E57d01
[2010/08/28 02:08:17 | 000,039,083 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\C02E82C1d01
[2010/08/28 02:08:17 | 000,033,927 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\8C7F28C2d01
[2010/08/28 02:08:17 | 000,033,154 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\C97F1D67d01
[2010/08/28 02:07:46 | 000,096,840 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\911E2304d01
[2010/08/28 02:04:38 | 000,072,825 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\97C5104Ed01
[2010/08/28 02:04:38 | 000,036,392 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\7C4A5FFEd01
[2010/08/28 02:04:38 | 000,018,290 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\5C860B3Ed01
[2010/08/28 02:04:37 | 000,027,129 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\535839EDd01
[2010/08/28 02:04:36 | 000,067,112 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\802C0A56d01
[2010/08/28 02:01:39 | 000,048,666 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\B2572EB6d01
[2010/08/28 02:01:39 | 000,044,479 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\B2502EB6d01
[2010/08/28 02:01:39 | 000,039,856 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\B2522EB6d01
[2010/08/28 02:01:39 | 000,037,260 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\B2532EB6d01
[2010/08/28 02:01:38 | 000,044,913 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\24FF20DDd01
[2010/08/28 02:01:38 | 000,044,009 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\B2512EB6d01
[2010/08/28 02:01:37 | 000,017,633 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\1F14A702d01
[2010/08/28 02:01:37 | 000,016,575 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\CF1FC379d01
[2010/08/28 02:01:36 | 000,064,027 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\485EAE6Dd01
[2010/08/28 02:01:36 | 000,030,178 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\14B810C9d01
[2010/08/28 02:01:36 | 000,028,759 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\9FC6D7DBd01
[2010/08/28 02:01:36 | 000,027,559 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\3F881E47d01
[2010/08/28 02:01:35 | 000,348,520 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\370C87AEd01
[2010/08/28 02:01:35 | 000,058,556 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\FED129CCd01
[2010/08/28 02:01:35 | 000,050,058 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\759E47CFd01
[2010/08/28 02:01:35 | 000,042,707 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\3821A792d01
[2010/08/28 02:01:35 | 000,028,975 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\1E7F7755d01
[2010/08/28 02:01:35 | 000,022,503 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\0EAA189Ad01
[2010/08/28 02:01:35 | 000,019,536 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\535D357Cd01
[2010/08/28 02:01:35 | 000,019,020 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\78BD9AB5d01
[2010/08/28 02:01:34 | 000,282,401 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\FC8C6AD9d01
[2010/08/28 02:01:32 | 000,067,112 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\802C2B56d01
[2010/08/28 02:00:17 | 000,067,112 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\802C7F56d01
[2010/08/28 01:50:05 | 000,047,586 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\5BF0B27Bd01
[2010/08/28 01:50:05 | 000,038,935 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\FB2FD8BEd01
[2010/08/28 01:50:05 | 000,038,874 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\3BD0A10Bd01
[2010/08/28 01:50:05 | 000,035,204 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\AAB118D5d01
[2010/08/28 01:50:05 | 000,027,613 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\89599425d01
[2010/08/28 01:50:05 | 000,025,732 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\AAB2D49Ed01
[2010/08/28 01:50:05 | 000,023,813 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\AAB25650d01
[2010/08/28 01:50:04 | 000,053,988 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\758EC830d01
[2010/08/28 01:50:04 | 000,031,359 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\1F94C33Dd01
[2010/08/28 01:50:04 | 000,029,085 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\2EC563F1d01
[2010/08/28 01:50:04 | 000,021,780 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\90FB0F4Dd01
[2010/08/28 01:50:03 | 000,037,534 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\06A0748Fd01
[2010/08/28 01:50:02 | 000,020,188 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\06A0448Fd01
[2010/08/28 01:49:56 | 000,076,478 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\8ADF9611d01
[2010/08/28 01:49:55 | 000,017,043 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\DB70A18Cd01
[2010/08/28 01:49:46 | 000,022,321 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\9628E217d01
[2010/08/28 01:49:45 | 000,017,229 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\43987B1Ad01
[2010/08/28 01:49:45 | 000,017,074 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\43867B1Ad01
[2010/08/28 01:49:44 | 000,043,013 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\A25260E9d01
[2010/08/28 01:49:44 | 000,041,718 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\D1764728d01
[2010/08/28 01:49:44 | 000,039,991 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\1011F48Ed01
[2010/08/28 01:49:44 | 000,036,205 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\7F26DAB3d01
[2010/08/28 01:49:44 | 000,033,779 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\9A6104E9d01
[2010/08/28 01:49:44 | 000,030,503 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\290EF48Ed01
[2010/08/28 01:49:44 | 000,028,978 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\18480130d01
[2010/08/28 01:49:44 | 000,017,297 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\B83AE217d01
[2010/08/28 01:49:43 | 000,064,680 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\DDD8AE71d01
[2010/08/28 01:49:43 | 000,028,917 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\18560130d01
[2010/08/28 01:49:43 | 000,016,626 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\97AB8031d01
[2010/08/28 01:49:17 | 000,033,949 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\FC4BA4B3d01
[2010/08/28 01:49:16 | 000,023,485 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\F7EFB68Dd01
[2010/08/28 01:47:20 | 000,016,717 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\8A4FDCE2d01
[2010/08/28 01:47:19 | 000,145,041 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\D7A50084d01
[2010/08/28 01:47:19 | 000,045,792 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\AEF8B935d01
[2010/08/28 01:47:19 | 000,026,317 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\2DE4075Bd01
[2010/08/28 01:47:18 | 000,056,916 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\39632E0Fd01
[2010/08/28 01:47:18 | 000,028,500 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\EAD90661d01
[2010/08/28 01:47:18 | 000,028,464 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\AEF8BBCAd01
[2010/08/28 01:47:18 | 000,028,413 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\A20625F1d01
[2010/08/28 01:47:18 | 000,028,104 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\0F1499E7d01
[2010/08/28 01:47:18 | 000,026,218 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\D7770EDFd01
[2010/08/28 01:47:18 | 000,026,217 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\A48133FDd01
[2010/08/28 01:47:18 | 000,026,124 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\7293935Dd01
[2010/08/28 01:47:18 | 000,024,300 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\F3EC09D8d01
[2010/08/28 01:47:18 | 000,023,378 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\D7550EDFd01
[2010/08/28 01:47:18 | 000,022,307 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\F31609D8d01
[2010/08/28 01:47:18 | 000,019,591 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\C1EE6969d01
[2010/08/28 01:47:18 | 000,019,455 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\C03E0EDFd01
[2010/08/28 01:47:17 | 000,067,676 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\70DC10CEd01
[2010/08/28 01:47:17 | 000,058,025 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\FB9C58BCd01
[2010/08/28 01:47:17 | 000,030,182 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\51ACCF92d01
[2010/08/28 01:47:17 | 000,029,417 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\D75D0EDFd01
[2010/08/28 01:47:17 | 000,028,468 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\A4C333FDd01
[2010/08/28 01:47:17 | 000,027,433 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\DEB68D81d01
[2010/08/28 01:47:17 | 000,026,491 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\D1D40661d01
[2010/08/28 01:47:17 | 000,026,298 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\C1E06969d01
[2010/08/28 01:47:17 | 000,026,134 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\62C78D94d01
[2010/08/28 01:47:17 | 000,026,067 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\BA4757C3d01
[2010/08/28 01:47:17 | 000,025,598 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\33598D92d01
[2010/08/28 01:47:17 | 000,024,997 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\EADC0661d01
[2010/08/28 01:47:17 | 000,023,605 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\36229D68d01
[2010/08/28 01:47:17 | 000,022,554 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\D1A50661d01
[2010/08/28 01:47:17 | 000,022,401 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\8A4BC593d01
[2010/08/28 01:47:17 | 000,021,453 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\2315D4E5d01
[2010/08/28 01:47:17 | 000,021,440 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\22C7D0F1d01
[2010/08/28 01:47:17 | 000,020,418 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\62F58D94d01
[2010/08/28 01:47:17 | 000,020,146 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\0E3B8D80d01
[2010/08/28 01:47:17 | 000,019,453 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\FEA2E5E4d01
[2010/08/28 01:47:17 | 000,019,141 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\8A456A93d01
[2010/08/28 01:47:17 | 000,016,898 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\22A5D0F1d01
[2010/08/28 01:47:16 | 000,041,322 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\1205B5C1d01
[2010/08/28 01:47:16 | 000,022,424 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\8A49C593d01
[2010/08/28 01:47:15 | 000,230,100 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\3F0513D3d01
[2010/08/28 01:47:15 | 000,022,857 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\E1CAE0C4d01
[2010/08/28 01:47:14 | 000,030,775 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\66C016A9d01
[2010/08/28 01:47:12 | 000,067,112 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\802C1C56d01
[2010/08/28 01:33:39 | 000,019,791 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\72EF11FCd01
[2010/08/28 01:33:09 | 000,025,189 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\70E3E398d01
[2010/08/28 01:32:39 | 000,065,804 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\5B452F4Dd01
[2010/08/28 01:32:39 | 000,035,756 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\2A904D81d01
[2010/08/28 01:32:39 | 000,033,492 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\B42AA896d01
[2010/08/28 01:32:39 | 000,032,797 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\E2827454d01
[2010/08/28 01:32:39 | 000,025,155 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\53D9D43Ad01
[2010/08/28 01:30:02 | 000,170,206 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\A5C84343d01
[2010/08/28 01:30:02 | 000,117,280 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\78846DD4d01
[2010/08/28 01:30:02 | 000,095,730 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\B8908BAFd01
[2010/08/28 01:30:02 | 000,068,117 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\50981863d01
[2010/08/28 01:30:02 | 000,046,580 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\8D2AA3FFd01
[2010/08/28 01:30:02 | 000,037,913 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\5A409D0Ed01
[2010/08/28 01:30:02 | 000,026,357 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\065789DAd01
[2010/08/28 01:30:02 | 000,026,092 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\CE87AEACd01
[2010/08/28 01:29:50 | 000,019,889 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\274A0534d01
[2010/08/28 01:29:28 | 000,038,760 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\D6A7734Fd01
[2010/08/28 01:29:28 | 000,038,032 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\05F64677d01
[2010/08/28 01:29:27 | 000,031,823 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\3283D54Bd01
[2010/08/28 01:29:25 | 000,055,561 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\BAADDCFDd01
[2010/08/28 01:29:25 | 000,018,418 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\DBC8DD79d01
[2010/08/28 01:21:26 | 000,033,401 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\1A99F107d01
[2010/08/28 01:21:26 | 000,029,519 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\28BA1221d01
[2010/08/28 01:21:26 | 000,029,163 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\8D726FBFd01
[2010/08/28 01:21:26 | 000,022,787 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\2C41D6AFd01
[2010/08/28 01:21:26 | 000,019,956 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\AD1DDB32d01
[2010/08/28 01:21:24 | 000,057,732 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\4AC9889Fd01
[2010/08/28 01:18:51 | 000,074,421 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\743DB792d01
[2010/08/28 01:18:51 | 000,053,088 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\5550DB7Ed01
[2010/08/28 01:18:51 | 000,042,031 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\5251DB7Ed01
[2010/08/28 01:18:51 | 000,039,656 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\05A6DB71d01
[2010/08/28 01:18:51 | 000,036,325 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\1756DB7Ed01
[2010/08/28 01:18:51 | 000,033,581 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\6F51DB71d01
[2010/08/28 01:18:51 | 000,031,143 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\1651DB7Ed01
[2010/08/28 01:18:51 | 000,031,064 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\3451DB71d01
[2010/08/28 01:18:51 | 000,028,763 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\3F46DB7Cd01
[2010/08/28 01:18:51 | 000,026,736 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\7450DB71d01
[2010/08/28 01:18:51 | 000,026,202 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\7050DB71d01
[2010/08/28 01:18:51 | 000,026,037 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\1E56DB7Ed01
[2010/08/28 01:18:51 | 000,024,546 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\43752691d01
[2010/08/28 01:18:51 | 000,023,679 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\E250DB7Ed01
[2010/08/28 01:18:51 | 000,023,397 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\1353DB7Ed01
[2010/08/28 01:18:51 | 000,022,879 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\0A006713d01
[2010/08/28 01:18:46 | 000,042,293 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\8650AE65d01
[2010/08/28 01:18:46 | 000,041,220 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\F5AD40B0d01
[2010/08/28 01:18:46 | 000,028,573 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\5E198522d01
[2010/08/28 01:18:42 | 000,049,080 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\E47189CDd01
[2010/08/28 01:18:42 | 000,033,302 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\1ACF5720d01
[2010/08/28 01:18:42 | 000,031,281 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\47828404d01
[2010/08/28 01:18:42 | 000,026,767 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\0653DB71d01
[2010/08/28 01:18:42 | 000,025,422 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\8CBF2214d01
[2010/08/28 01:18:40 | 000,050,284 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\7D435FB5d01
[2010/08/28 01:18:40 | 000,029,081 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\B9CC069Fd01
[2010/08/28 01:18:24 | 000,031,109 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\1DBBF246d01
[2010/08/28 01:17:54 | 000,040,961 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\251BCDB2d01
[2010/08/28 01:17:22 | 000,081,277 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\AC958556d01
[2010/08/28 01:17:22 | 000,059,491 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\3C14816Ed01
[2010/08/28 01:17:22 | 000,048,689 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\551FA0D3d01
[2010/08/28 01:17:22 | 000,047,297 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\A911420Ad01
[2010/08/28 01:17:22 | 000,038,847 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\9F2B6E54d01
[2010/08/28 01:17:22 | 000,034,682 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\B5D49E85d01
[2010/08/28 01:17:22 | 000,034,053 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\2319E03Ed01
[2010/08/28 01:17:22 | 000,032,735 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\243C5091d01
[2010/08/28 01:17:22 | 000,026,021 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\B93D8ED2d01
[2010/08/28 01:17:22 | 000,018,643 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\F20D2FFBd01
[2010/08/28 01:16:53 | 000,131,241 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\B4CFC89Dd01
[2010/08/28 01:16:53 | 000,091,197 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\83F6F360d01
[2010/08/28 01:16:53 | 000,051,497 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\C2BD882Fd01
[2010/08/28 01:16:53 | 000,026,594 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\45F114D5d01
[2010/08/28 01:16:53 | 000,025,423 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\89EA6CA2d01
[2010/08/28 01:16:53 | 000,019,842 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\F93DBCF6d01
[2010/08/28 01:16:53 | 000,016,892 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\F93CB067d01
[2010/08/28 01:15:56 | 000,024,532 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\8C4591B5d01
[2010/08/28 01:15:56 | 000,017,706 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\88BC964Dd01
[2010/08/28 01:15:52 | 000,036,602 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\8C6A3F32d01
[2010/08/28 01:14:59 | 000,109,395 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\2B3C6757d01
[2010/08/28 01:14:40 | 000,177,016 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\692BD78Ad01
[2010/08/28 01:14:39 | 000,072,980 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\890CE152d01
[2010/08/28 01:14:39 | 000,072,980 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\6EE7A842d01
[2010/08/28 01:14:39 | 000,069,913 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\BD29DC64d01
[2010/08/28 01:14:39 | 000,068,987 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\FC69C2B8d01
[2010/08/28 01:14:39 | 000,066,545 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\9A1EBD40d01
[2010/08/28 01:14:39 | 000,060,242 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\275BFA0Bd01
[2010/08/28 01:14:38 | 000,127,466 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\99F476B0d01
[2010/08/28 01:14:38 | 000,052,207 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\00DDDF84d01
[2010/08/28 01:14:24 | 000,069,839 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\116FF85Dd01
[2010/08/28 01:14:24 | 000,069,755 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\2E383F2Ad01
[2010/08/28 01:14:24 | 000,057,002 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\873BBC5Bd01
[2010/08/28 01:14:24 | 000,041,019 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\D30CA74Bd01
[2010/08/28 01:14:24 | 000,040,166 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\745EE1BAd01
[2010/08/28 01:14:24 | 000,031,166 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\00319D5Ad01
[2010/08/28 01:14:23 | 000,021,107 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\14F2FDC4d01
[2010/08/28 01:14:23 | 000,020,225 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\645B885Dd01
[2010/08/28 01:14:23 | 000,017,620 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\8108957Fd01
[2010/08/28 01:14:23 | 000,016,715 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\EA3847DDd01
[2010/08/28 01:14:22 | 000,029,740 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\AC5A8F80d01
[2010/08/28 01:14:22 | 000,016,727 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\1984B8CCd01
[2010/08/28 00:54:09 | 000,067,112 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\802C7B56d01
[2010/08/28 00:53:52 | 000,067,112 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\802C0F56d01
[2010/08/28 00:53:47 | 000,027,558 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\E5DBFBC5d01
[2010/08/28 00:52:56 | 000,032,511 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\57C46313d01
[2010/08/28 00:44:41 | 000,032,131 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\003AE0D5d01
[2010/08/28 00:44:41 | 000,030,523 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\78A0F120d01
[2010/08/28 00:44:11 | 000,109,553 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\2011715Dd01
[2010/08/28 00:44:11 | 000,017,450 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\D73E9F85d01
[2010/08/28 00:43:54 | 000,017,542 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\C11C3B29d01
[2010/08/28 00:30:59 | 000,002,354 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\pluginreg.dat
[2010/08/28 00:30:31 | 000,065,536 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\cert8.db
[2010/08/28 00:30:31 | 000,032,768 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\urlclassifier3.sqlite
[2010/08/28 00:30:31 | 000,016,384 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\key3.db
[2010/08/28 00:30:30 | 010,988,222 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\_CACHE_003_
[2010/08/28 00:30:30 | 004,266,376 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\_CACHE_002_
[2010/08/28 00:30:30 | 003,348,163 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\_CACHE_001_
[2010/08/28 00:30:30 | 000,016,384 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\secmod.db
[2010/08/28 00:30:30 | 000,000,276 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\Cache\_CACHE_MAP_
[2010/08/28 00:30:29 | 000,002,048 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\webappsstore.sqlite
[2010/08/28 00:30:27 | 000,015,360 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\cookies.sqlite
[2010/08/28 00:30:27 | 000,002,048 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\permissions.sqlite
[2010/08/28 00:30:26 | 000,815,104 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\places.sqlite
[2010/08/28 00:30:26 | 000,142,385 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\compreg.dat
[2010/08/28 00:30:26 | 000,131,840 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\places.sqlite-journal
[2010/08/28 00:30:26 | 000,102,022 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\xpti.dat
[2010/08/28 00:30:24 | 000,348,994 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\browser.xpt
[2010/08/28 00:30:24 | 000,023,460 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\dom_svg.xpt
[2010/08/28 00:30:24 | 000,018,049 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\dom_html.xpt
[2010/08/28 00:30:24 | 000,017,215 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\necko.xpt
[2010/08/28 00:30:24 | 000,012,938 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\pipnss.xpt
[2010/08/28 00:30:24 | 000,011,997 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\dom_css.xpt
[2010/08/28 00:30:24 | 000,011,652 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\places.xpt
[2010/08/28 00:30:24 | 000,011,557 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\editor.xpt
[2010/08/28 00:30:24 | 000,011,151 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\widget.xpt
[2010/08/28 00:30:24 | 000,011,095 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\xpcom_ds.xpt
[2010/08/28 00:30:24 | 000,010,561 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\docshell_base.xpt
[2010/08/28 00:30:24 | 000,009,477 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\dom_base.xpt
[2010/08/28 00:30:24 | 000,009,066 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\content_base.xpt
[2010/08/28 00:30:24 | 000,008,438 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\xpconnect.xpt
[2010/08/28 00:30:24 | 000,007,420 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\xpcom_io.xpt

 

[2010/08/28 00:30:24 | 000,007,408 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\dom_xul.xpt
[2010/08/28 00:30:24 | 000,007,301 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\dom_core.xpt
[2010/08/28 00:30:24 | 000,006,869 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\dom_events.xpt
[2010/08/28 00:30:24 | 000,006,029 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\jsdservice.xpt
[2010/08/28 00:30:24 | 000,005,510 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\webBrowser_core.xpt
[2010/08/28 00:30:24 | 000,005,145 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\plugin.xpt
[2010/08/28 00:30:24 | 000,004,908 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\rdf.xpt
[2010/08/28 00:30:24 | 000,003,831 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\extensions.xpt
[2010/08/28 00:30:24 | 000,003,731 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\layout_xul_tree.xpt
[2010/08/28 00:30:24 | 000,003,603 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\autocomplete.xpt
[2010/08/28 00:30:24 | 000,003,290 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\pref.xpt
[2010/08/28 00:30:24 | 000,003,274 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\feeds.xpt
[2010/08/28 00:30:24 | 000,003,185 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\xpcom_base.xpt
[2010/08/28 00:30:24 | 000,003,155 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\storage.xpt
[2010/08/28 00:30:24 | 000,003,040 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\xpcom_components.xpt
[2010/08/28 00:30:24 | 000,003,021 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\imglib2.xpt
[2010/08/28 00:30:24 | 000,002,958 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\shistory.xpt
[2010/08/28 00:30:24 | 000,002,793 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\windowwatcher.xpt
[2010/08/28 00:30:24 | 000,002,719 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\caps.xpt
[2010/08/28 00:30:24 | 000,002,713 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\uriloader.xpt
[2010/08/28 00:30:24 | 000,002,646 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\update.xpt
[2010/08/28 00:30:24 | 000,002,621 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\dom_loadsave.xpt
[2010/08/28 00:30:24 | 000,002,602 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\necko_http.xpt
[2010/08/28 00:30:24 | 000,002,595 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\necko_cache.xpt
[2010/08/28 00:30:24 | 000,002,547 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\appshell.xpt
[2010/08/28 00:30:24 | 000,002,512 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\content_xtf.xpt
[2010/08/28 00:30:24 | 000,002,502 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\inspector.xpt
[2010/08/28 00:30:24 | 000,002,425 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\xultmpl.xpt
[2010/08/28 00:30:24 | 000,002,369 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\saxparser.xpt
[2010/08/28 00:30:24 | 000,002,240 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\xpcom_thread.xpt
[2010/08/28 00:30:24 | 000,002,232 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\downloads.xpt
[2010/08/28 00:30:24 | 000,002,122 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\layout_xul.xpt
[2010/08/28 00:30:24 | 000,002,074 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\webbrowserpersist.xpt
[2010/08/28 00:30:24 | 000,002,008 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\mimetype.xpt
[2010/08/28 00:30:24 | 000,001,981 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\exthandler.xpt
[2010/08/28 00:30:24 | 000,001,930 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\dom_canvas.xpt
[2010/08/28 00:30:24 | 000,001,896 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\xpcom_system.xpt
[2010/08/28 00:30:24 | 000,001,789 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\commandhandler.xpt
[2010/08/28 00:30:24 | 000,001,784 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\loginmgr.xpt
[2010/08/28 00:30:24 | 000,001,648 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\necko_cookie.xpt
[2010/08/28 00:30:24 | 000,001,560 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\xpcom_xpti.xpt
[2010/08/28 00:30:24 | 000,001,508 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\exthelper.xpt
[2010/08/28 00:30:24 | 000,001,491 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\uconv.xpt
[2010/08/28 00:30:24 | 000,001,475 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\necko_strconv.xpt
[2010/08/28 00:30:24 | 000,001,451 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\gfx.xpt
[2010/08/28 00:30:24 | 000,001,417 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\dom_xpath.xpt
[2010/08/28 00:30:24 | 000,001,346 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\jar.xpt
[2010/08/28 00:30:24 | 000,001,326 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\content_xslt.xpt
[2010/08/28 00:30:24 | 000,001,293 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\webshell_idls.xpt
[2010/08/28 00:30:24 | 000,001,282 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\dom_traversal.xpt
[2010/08/28 00:30:24 | 000,001,263 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\dom_offline.xpt
[2010/08/28 00:30:24 | 000,001,260 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\locale.xpt
[2010/08/28 00:30:24 | 000,001,258 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\txmgr.xpt
[2010/08/28 00:30:24 | 000,001,240 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\dom_range.xpt
[2010/08/28 00:30:24 | 000,001,209 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\xuldoc.xpt
[2010/08/28 00:30:24 | 000,001,181 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\unicharutil.xpt
[2010/08/28 00:30:24 | 000,001,179 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\prefetch.xpt
[2010/08/28 00:30:24 | 000,001,120 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\oji.xpt
[2010/08/28 00:30:24 | 000,001,111 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\xpinstall.xpt
[2010/08/28 00:30:24 | 000,001,088 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\toolkitprofile.xpt
[2010/08/28 00:30:24 | 000,001,081 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\necko_dns.xpt
[2010/08/28 00:30:24 | 000,001,060 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\spellchecker.xpt
[2010/08/28 00:30:24 | 000,001,036 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\find.xpt
[2010/08/28 00:30:24 | 000,001,019 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\dom_stylesheets.xpt
[2010/08/28 00:30:24 | 000,001,011 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\xml-rpc.xpt
[2010/08/28 00:30:24 | 000,000,960 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\commandlines.xpt
[2010/08/28 00:30:24 | 000,000,911 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\layout_printing.xpt
[2010/08/28 00:30:24 | 000,000,893 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\necko_socket.xpt
[2010/08/28 00:30:24 | 000,000,874 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\dom_storage.xpt
[2010/08/28 00:30:24 | 000,000,858 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\grabber.gif
[2010/08/28 00:30:24 | 000,000,856 | ---- | C] () -- C:\Windows\System32\drivers\f\1\plugins\flashplayer.xpt
[2010/08/28 00:30:24 | 000,000,845 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\mozfind.xpt
[2010/08/28 00:30:24 | 000,000,841 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\table-remove-row-hover.gif
[2010/08/28 00:30:24 | 000,000,841 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\table-remove-row.gif
[2010/08/28 00:30:24 | 000,000,841 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\table-remove-column-hover.gif
[2010/08/28 00:30:24 | 000,000,841 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\table-remove-column.gif
[2010/08/28 00:30:24 | 000,000,835 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\table-remove-row-active.gif
[2010/08/28 00:30:24 | 000,000,835 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\table-remove-column-active.gif
[2010/08/28 00:30:24 | 000,000,826 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\table-add-row-after-hover.gif
[2010/08/28 00:30:24 | 000,000,826 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\table-add-row-after.gif
[2010/08/28 00:30:24 | 000,000,826 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\table-add-column-after-hover.gif
[2010/08/28 00:30:24 | 000,000,826 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\table-add-column-after.gif
[2010/08/28 00:30:24 | 000,000,825 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\table-add-row-before-hover.gif
[2010/08/28 00:30:24 | 000,000,825 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\table-add-row-before.gif
[2010/08/28 00:30:24 | 000,000,825 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\table-add-column-before-hover.gif
[2010/08/28 00:30:24 | 000,000,825 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\table-add-column-before.gif
[2010/08/28 00:30:24 | 000,000,771 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\zipwriter.xpt
[2010/08/28 00:30:24 | 000,000,759 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\txtsvc.xpt
[2010/08/28 00:30:24 | 000,000,755 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\composer.xpt
[2010/08/28 00:30:24 | 000,000,724 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\contentprefs.xpt
[2010/08/28 00:30:24 | 000,000,718 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\satchel.xpt
[2010/08/28 00:30:24 | 000,000,700 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\content_html.xpt
[2010/08/28 00:30:24 | 000,000,694 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\htmlparser.xpt
[2010/08/28 00:30:24 | 000,000,693 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\content_xmldoc.xpt
[2010/08/28 00:30:24 | 000,000,679 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\chardet.xpt
[2010/08/28 00:30:24 | 000,000,652 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\profile.xpt
[2010/08/28 00:30:24 | 000,000,645 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\intl.xpt
[2010/08/28 00:30:24 | 000,000,628 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\pipboot.xpt
[2010/08/28 00:30:24 | 000,000,619 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\html\folder.png
[2010/08/28 00:30:24 | 000,000,613 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\xulapp.xpt
[2010/08/28 00:30:24 | 000,000,605 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\content_htmldoc.xpt
[2010/08/28 00:30:24 | 000,000,599 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\fastfind.xpt
[2010/08/28 00:30:24 | 000,000,551 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\dom_sidebar.xpt
[2010/08/28 00:30:24 | 000,000,543 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\appstartup.xpt
[2010/08/28 00:30:24 | 000,000,537 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\parentalcontrols.xpt
[2010/08/28 00:30:24 | 000,000,530 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\embed_base.xpt
[2010/08/28 00:30:24 | 000,000,488 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\cookie.xpt
[2010/08/28 00:30:24 | 000,000,451 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\dom_xbl.xpt
[2010/08/28 00:30:24 | 000,000,437 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\necko_file.xpt
[2010/08/28 00:30:24 | 000,000,377 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\pippki.xpt
[2010/08/28 00:30:24 | 000,000,377 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\dom.xpt
[2010/08/28 00:30:24 | 000,000,373 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\directory.xpt
[2010/08/28 00:30:24 | 000,000,349 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\dom_json.xpt
[2010/08/28 00:30:24 | 000,000,344 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\chrome.xpt
[2010/08/28 00:30:24 | 000,000,326 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\imgicon.xpt
[2010/08/28 00:30:24 | 000,000,312 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\necko_about.xpt
[2010/08/28 00:30:24 | 000,000,302 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\layout_base.xpt
[2010/08/28 00:30:24 | 000,000,296 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\mozbrwsr.xpt
[2010/08/28 00:30:24 | 000,000,287 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\proxyObject.xpt
[2010/08/28 00:30:24 | 000,000,285 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\necko_res.xpt
[2010/08/28 00:30:24 | 000,000,226 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\dom_views.xpt
[2010/08/28 00:30:24 | 000,000,212 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\windowds.xpt
[2010/08/28 00:30:24 | 000,000,211 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\autoconfig.xpt
[2010/08/28 00:30:24 | 000,000,211 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\alerts.xpt
[2010/08/28 00:30:24 | 000,000,201 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\necko_ftp.xpt
[2010/08/28 00:30:24 | 000,000,198 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\xulapp_setup.xpt
[2010/08/28 00:30:24 | 000,000,188 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\necko_viewsource.xpt
[2010/08/28 00:30:24 | 000,000,174 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\lwbrk.xpt
[2010/08/28 00:30:24 | 000,000,172 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\urlformatter.xpt
[2010/08/28 00:30:24 | 000,000,122 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\loading-image.gif
[2010/08/28 00:30:24 | 000,000,106 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\broken-image.gif
[2010/08/28 00:30:24 | 000,000,059 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\arrowd.gif
[2010/08/28 00:30:24 | 000,000,058 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\table-add-column-after-active.gif
[2010/08/28 00:30:24 | 000,000,057 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\table-add-row-before-active.gif
[2010/08/28 00:30:24 | 000,000,057 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\table-add-row-after-active.gif
[2010/08/28 00:30:24 | 000,000,057 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\table-add-column-before-active.gif
[2010/08/28 00:30:24 | 000,000,056 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\arrow.gif
[2010/08/28 00:30:23 | 000,115,501 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\nsUpdateService.js
[2010/08/28 00:30:23 | 000,110,913 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\nsSearchService.js
[2010/08/28 00:30:23 | 000,077,051 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\nsMicrosummaryService.js
[2010/08/28 00:30:23 | 000,076,993 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\nsSessionStore.js
[2010/08/28 00:30:23 | 000,061,758 | ---- | C] () -- C:\Windows\System32\drivers\f\1\modules\utils.js
[2010/08/28 00:30:23 | 000,056,411 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\fonts\mathfont.properties
[2010/08/28 00:30:23 | 000,050,600 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\nsUrlClassifierLib.js
[2010/08/28 00:30:23 | 000,049,926 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\storage-Legacy.js
[2010/08/28 00:30:23 | 000,040,367 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\nsLoginManagerPrompter.js
[2010/08/28 00:30:23 | 000,038,499 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\entityTables\transliterate.properties
[2010/08/28 00:30:23 | 000,037,314 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\nsProgressDialog.js
[2010/08/28 00:30:23 | 000,035,256 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\nsXmlRpcClient.js
[2010/08/28 00:30:23 | 000,034,011 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\WebContentConverter.js
[2010/08/28 00:30:23 | 000,033,805 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\nsPlacesTransactionsService.js
[2010/08/28 00:30:23 | 000,030,004 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\entityTables\mathml20.properties
[2010/08/28 00:30:23 | 000,025,176 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\nsSafebrowsingApplication.js
[2010/08/28 00:30:23 | 000,024,273 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\nsSearchSuggestions.js
[2010/08/28 00:30:23 | 000,021,420 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\nsPostUpdateWin.js
[2010/08/28 00:30:23 | 000,019,983 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\nsUrlClassifierListManager.js
[2010/08/28 00:30:23 | 000,019,182 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\accessibility.xpt
[2010/08/28 00:30:23 | 000,017,380 | ---- | C] () -- C:\Windows\System32\drivers\f\1\modules\DownloadUtils.jsm
[2010/08/28 00:30:23 | 000,013,682 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\nsProxyAutoConfig.js
[2010/08/28 00:30:23 | 000,012,513 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\nsSidebar.js
[2010/08/28 00:30:23 | 000,011,428 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\nsSessionStartup.js
[2010/08/28 00:30:23 | 000,011,392 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\charsetalias.properties
[2010/08/28 00:30:23 | 000,009,998 | ---- | C] () -- C:\Windows\System32\drivers\f\1\modules\XPCOMUtils.jsm
[2010/08/28 00:30:23 | 000,009,967 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\nsTaggingService.js
[2010/08/28 00:30:23 | 000,009,551 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\charsetData.properties
[2010/08/28 00:30:23 | 000,009,399 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\nsRequestService.js
[2010/08/28 00:30:23 | 000,008,278 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\nsXULAppInstall.js
[2010/08/28 00:30:23 | 000,007,585 | ---- | C] () -- C:\Windows\System32\drivers\f\1\modules\PluralForm.jsm
[2010/08/28 00:30:23 | 000,007,296 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\autoconfig\prefcalls.js
[2010/08/28 00:30:23 | 000,007,049 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\nsResetPref.js
[2010/08/28 00:30:23 | 000,007,039 | ---- | C] () -- C:\Windows\System32\drivers\f\1\modules\ISO8601DateUtils.jsm
[2010/08/28 00:30:23 | 000,006,920 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\nsWebHandlerApp.js
[2010/08/28 00:30:23 | 000,006,721 | ---- | C] () -- C:\Windows\System32\drivers\f\1\modules\JSON.jsm
[2010/08/28 00:30:23 | 000,006,719 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\fonts\mathfontUnicode.properties
[2010/08/28 00:30:23 | 000,006,667 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\txEXSLTRegExFunctions.js
[2010/08/28 00:30:23 | 000,005,649 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\langGroups.properties
[2010/08/28 00:30:23 | 000,005,493 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\fonts\mathfontSTIXNonUnicode.properties
[2010/08/28 00:30:23 | 000,005,490 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\language.properties
[2010/08/28 00:30:23 | 000,004,090 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\entityTables\html40Symbols.properties
[2010/08/28 00:30:23 | 000,003,954 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\fonts\mathfontSymbol.properties
[2010/08/28 00:30:23 | 000,003,930 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\pref\xulrunner.js
[2010/08/28 00:30:23 | 000,003,902 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\fonts\mathfontStandardSymbolsL.properties
[2010/08/28 00:30:23 | 000,003,690 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\entityTables\html40Latin1.properties
[2010/08/28 00:30:23 | 000,003,378 | ---- | C] () -- C:\Windows\System32\drivers\f\1\greprefs\security-prefs.js
[2010/08/28 00:30:23 | 000,003,268 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\nsTryToClose.js
[2010/08/28 00:30:23 | 000,003,142 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\pluginGlue.js
[2010/08/28 00:30:23 | 000,003,115 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\nsURLFormatter.js
[2010/08/28 00:30:23 | 000,003,033 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\fonts\mathfontSTIXSize1.properties
[2010/08/28 00:30:23 | 000,002,854 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\nsSetDefaultBrowser.js
[2010/08/28 00:30:23 | 000,002,396 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\entityTables\html40Special.properties
[2010/08/28 00:30:23 | 000,002,080 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\wincharset.properties
[2010/08/28 00:30:23 | 000,001,967 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\entityTables\htmlEntityVersions.properties
[2010/08/28 00:30:23 | 000,000,774 | ---- | C] () -- C:\Windows\System32\drivers\f\1\chrome\en-US.manifest
[2010/08/28 00:30:23 | 000,000,552 | ---- | C] () -- C:\Windows\System32\drivers\f\1\chrome\classic.manifest
[2010/08/28 00:30:23 | 000,000,517 | ---- | C] () -- C:\Windows\System32\drivers\f\1\chrome\toolkit.manifest
[2010/08/28 00:30:23 | 000,000,356 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\mimeTypes.rdf
[2010/08/28 00:30:23 | 000,000,347 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\prefs.js
[2010/08/28 00:30:23 | 000,000,233 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\accessibility-msaa.xpt
[2010/08/28 00:30:23 | 000,000,208 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\pref\reporter.js
[2010/08/28 00:30:23 | 000,000,172 | ---- | C] () -- C:\Windows\System32\drivers\f\1\chrome\geckofx.manifest
[2010/08/28 00:30:23 | 000,000,153 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\US\localstore.rdf
[2010/08/28 00:30:23 | 000,000,153 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\localstore.rdf
[2010/08/28 00:30:23 | 000,000,144 | ---- | C] () -- C:\Windows\System32\drivers\f\1\chrome\comm.manifest
[2010/08/28 00:30:23 | 000,000,087 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\autoconfig\platform.js
[2010/08/28 00:30:23 | 000,000,085 | ---- | C] () -- C:\Windows\System32\drivers\f\1\greprefs\xpinstall.js
[2010/08/28 00:30:23 | 000,000,069 | ---- | C] () -- C:\Windows\System32\drivers\f\1\chrome\pippki.manifest
[2010/08/28 00:30:22 | 000,333,726 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\nsExtensionManager.js
[2010/08/28 00:30:22 | 000,072,928 | ---- | C] () -- C:\Windows\System32\drivers\f\1\greprefs\all.js
[2010/08/28 00:30:22 | 000,066,215 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\FeedProcessor.js
[2010/08/28 00:30:22 | 000,064,412 | ---- | C] () -- C:\Windows\System32\drivers\f\1\modules\Microformats.js
[2010/08/28 00:30:22 | 000,051,214 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\nsHandlerService.js
[2010/08/28 00:30:22 | 000,049,780 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\FeedWriter.js
[2010/08/28 00:30:22 | 000,044,106 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\nsLoginManager.js
[2010/08/28 00:30:22 | 000,041,950 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\nsHelperAppDlg.js
[2010/08/28 00:30:22 | 000,038,238 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\fuelApplication.js
[2010/08/28 00:30:22 | 000,036,111 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\nsLivemarkService.js
[2010/08/28 00:30:22 | 000,035,102 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\pref\firefox.js
[2010/08/28 00:30:22 | 000,033,087 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\nsBrowserContentHandler.js
[2010/08/28 00:30:22 | 000,032,409 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\nsBrowserGlue.js
[2010/08/28 00:30:22 | 000,030,074 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\nsBlocklistService.js
[2010/08/28 00:30:22 | 000,029,973 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\nsContentPrefService.js
[2010/08/28 00:30:22 | 000,025,339 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\FeedConverter.js
[2010/08/28 00:30:22 | 000,012,091 | ---- | C] () -- C:\Windows\System32\drivers\f\1\modules\distribution.js
[2010/08/28 00:30:22 | 000,011,677 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\nsAddonRepository.js
[2010/08/28 00:30:22 | 000,006,265 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\nsDefaultCLH.js
[2010/08/28 00:30:22 | 000,005,737 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\nsDownloadManagerUI.js
[2010/08/28 00:30:22 | 000,005,005 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\nsContentDispatchChooser.js
[2010/08/28 00:30:22 | 000,004,805 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\nsDictionary.js
[2010/08/28 00:30:22 | 000,004,302 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\nsLoginInfo.js
[2010/08/28 00:30:22 | 000,003,104 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\nsBadCertHandler.js
[2010/08/28 00:30:22 | 000,002,927 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\aboutRobots.js
[2010/08/28 00:30:22 | 000,002,925 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\aboutRights.js
[2010/08/28 00:30:22 | 000,002,738 | ---- | C] () -- C:\Windows\System32\drivers\f\1\modules\debug.js
[2010/08/28 00:30:22 | 000,001,512 | ---- | C] () -- C:\Windows\System32\drivers\f\1\components\jsconsole-clhandler.js
[2010/08/28 00:30:22 | 000,000,915 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\pref\firefox-branding.js
[2010/08/28 00:30:22 | 000,000,224 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\pref\firefox-l10n.js
[2010/08/28 00:30:22 | 000,000,126 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\pref\channel-prefs.js
[2010/08/28 00:30:21 | 001,915,137 | ---- | C] () -- C:\Windows\System32\drivers\f\1\chrome\toolkit.jar
[2010/08/28 00:30:21 | 000,777,705 | ---- | C] () -- C:\Windows\System32\drivers\f\1\chrome\classic.jar
[2010/08/28 00:30:21 | 000,332,438 | ---- | C] () -- C:\Windows\System32\drivers\f\1\chrome\en-US.jar
[2010/08/28 00:30:21 | 000,317,480 | ---- | C] () -- C:\Windows\System32\drivers\f\1\chrome\pippki.jar
[2010/08/28 00:30:21 | 000,063,788 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\dtd\mathml.dtd
[2010/08/28 00:30:21 | 000,039,680 | ---- | C] () -- C:\Windows\System32\drivers\f\1\chrome\comm.jar
[2010/08/28 00:30:21 | 000,015,416 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\forms.css
[2010/08/28 00:30:21 | 000,014,664 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\mathml.css
[2010/08/28 00:30:21 | 000,013,443 | ---- | C] () -- C:\Windows\System32\drivers\f\1\chrome\geckofx.jar
[2010/08/28 00:30:21 | 000,011,637 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\contenteditable.css
[2010/08/28 00:30:21 | 000,011,608 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\quirk.css
[2010/08/28 00:30:21 | 000,011,096 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\html.css
[2010/08/28 00:30:21 | 000,010,740 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\EditorOverride.css
[2010/08/28 00:30:21 | 000,008,427 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\dtd\xhtml11.dtd
[2010/08/28 00:30:21 | 000,006,469 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\ua.css
[2010/08/28 00:30:21 | 000,003,037 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\viewsource.css
[2010/08/28 00:30:21 | 000,002,295 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\svg.css
[2010/08/28 00:30:21 | 000,001,861 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\designmode.css
[2010/08/28 00:30:21 | 000,001,078 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\US\chrome\userChrome-example.css
[2010/08/28 00:30:21 | 000,001,078 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\chrome\userChrome-example.css
[2010/08/28 00:30:21 | 000,000,663 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\US\chrome\userContent-example.css
[2010/08/28 00:30:21 | 000,000,663 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\chrome\userContent-example.css
[2010/08/28 00:30:21 | 000,000,478 | ---- | C] () -- C:\Windows\System32\drivers\f\1\softokn3.chk
[2010/08/28 00:30:21 | 000,000,478 | ---- | C] () -- C:\Windows\System32\drivers\f\1\freebl3.chk
[2010/08/28 00:30:20 | 005,969,360 | ---- | C] () -- C:\Windows\System32\drivers\f\1\plugins\NPSWF32.dll
[2010/08/28 00:30:19 | 000,007,139 | ---- | C] () -- C:\Windows\System32\drivers\f\1\defaults\profile\bookmarks.html
[2010/08/28 00:30:19 | 000,000,117 | ---- | C] () -- C:\Windows\System32\drivers\f\1\res\hiddenWindow.html
[2010/08/27 18:30:12 | 000,256,512 | ---- | C] () -- C:\Windows\PEV.exe
[2010/08/27 18:30:12 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2010/08/27 18:30:12 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2010/08/27 18:30:12 | 000,077,312 | ---- | C] () -- C:\Windows\MBR.exe
[2010/08/27 18:30:12 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2010/08/27 06:40:47 | 001,042,891 | ---- | C] () -- C:\Users\Admin\Desktop\CIMG0150.jpg
[2010/08/27 06:15:17 | 000,255,497 | ---- | C] () -- C:\Users\Admin\Desktop\Untitled.jpg
[2010/08/27 06:05:06 | 003,828,997 | R--- | C] () -- C:\Users\Admin\Desktop\ComboFix.exe
[2010/08/27 03:09:45 | 000,000,096 | ---- | C] () -- C:\Users\Admin\Desktop\YouTube - drmongs's Channel.url
[2010/08/27 02:08:11 | 000,000,085 | ---- | C] () -- C:\Users\Admin\Desktop\Bioshock 2 Guide, by DrMong - Maps and Audio Diary Locations.url
[2010/08/24 00:08:15 | 000,032,256 | ---- | C] () -- C:\Users\Admin\Desktop\Scanning Report.doc
[2010/08/23 19:35:11 | 000,000,074 | ---- | C] () -- C:\Users\Admin\Desktop\Infected with SafeSurf and SurfGuard - Safer-Networking Forums.URL
[2010/08/23 19:26:09 | 000,254,074 | ---- | C] () -- C:\Users\Admin\Desktop\vrs3.jpg
[2010/08/23 19:07:15 | 000,003,703 | ---- | C] () -- C:\Users\Admin\Desktop\Attach.zip
[2010/08/23 18:08:25 | 000,000,899 | ---- | C] () -- C:\Users\Admin\Application Data\Microsoft\Internet Explorer\Quick Launch\ERUNT.lnk
[2010/08/23 18:08:25 | 000,000,875 | ---- | C] () -- C:\Users\Admin\Desktop\ERUNT.lnk
[2010/08/23 17:58:56 | 000,525,824 | ---- | C] () -- C:\Users\Admin\Desktop\dds.scr
[2010/08/23 04:48:18 | 000,581,854 | ---- | C] () -- C:\Users\Admin\Desktop\vrs2.jpg
[2010/08/23 04:47:42 | 000,384,354 | ---- | C] () -- C:\Users\Admin\Desktop\vrs.jpg
[2010/08/23 01:07:24 | 000,000,071 | ---- | C] () -- C:\Users\Admin\Desktop\safesurf.exe.URL
[2010/08/23 00:46:13 | 000,007,643 | ---- | C] () -- C:\Users\Admin\AppData\Local\Resmon.ResmonCfg
[2010/08/21 00:41:58 | 000,422,912 | ---- | C] () -- C:\Users\Admin\Desktop\Doc1.doc
[2010/08/20 22:48:30 | 000,001,240 | ---- | C] () -- C:\Users\Admin\Application Data\Microsoft\Internet Explorer\Quick Launch\Spybot - Search & Destroy.lnk
[2010/08/20 22:48:30 | 000,001,216 | ---- | C] () -- C:\Users\Admin\Desktop\Spybot - Search & Destroy.lnk
[2010/08/15 17:35:26 | 000,004,286 | ---- | C] () -- C:\Windows\System32\ico.ico
[2010/08/15 17:34:51 | 009,655,685 | ---- | C] () -- C:\Windows\System32\drivers\f\jet.exe
[2010/08/12 19:46:44 | 000,002,398 | ---- | C] () -- C:\Users\Admin\Desktop\Google Chrome.lnk
[2010/08/12 19:45:53 | 000,000,908 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3156090111-885036254-1565554444-1001UA.job
[2010/08/12 19:45:52 | 000,000,856 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3156090111-885036254-1565554444-1001Core.job
[2010/08/12 13:49:18 | 000,830,976 | ---- | C] () -- C:\Windows\System32\Help64.exe
[2010/07/25 02:37:26 | 000,000,056 | -H-- | C] () -- C:\Windows\System32\ezsidmv.dat
[2010/07/16 00:38:54 | 000,392,704 | ---- | C] () -- C:\Windows\System32\ICH.exe
[2010/07/15 17:41:10 | 000,000,083 | ---- | C] () -- C:\Users\Admin\Desktop\MyXboxMods - View topic - [TUT]How to mod Bioshock 2 (Without modio).URL
[2010/07/14 01:53:25 | 158,069,940 | ---- | C] () -- C:\Users\Admin\Desktop\How to Hex Edit Bioshock 2 Xbox 360 (Remade) [www.keepvid.com].mp4
[2010/07/14 00:49:41 | 000,001,178 | ---- | C] () -- C:\Users\Public\Desktop\Hex Workshop Hex Editor.lnk
[2010/07/09 20:22:00 | 000,001,656 | ---- | C] () -- C:\Users\Admin\Documents\584109eb_xIl ToXiC lIx.sav
[2010/06/27 23:36:42 | 001,095,576 | ---- | C] () -- C:\Users\Admin\Desktop\Guitar-Hero-Smash-Hits-Xbox-360-Front-of-Box.jpg
[2010/06/12 01:50:35 | 004,946,643 | ---- | C] () -- C:\Users\Admin\Desktop\i gotta feeling.mp3
[2010/04/30 23:15:28 | 000,000,759 | ---- | C] () -- C:\ProgramData\hpzinstall.log
[2010/04/02 17:17:34 | 000,179,091 | ---- | C] () -- C:\Windows\System32\xlive.dll.cat
[2010/04/01 22:35:15 | 000,000,069 | ---- | C] () -- C:\Windows\NeroDigital.ini
[2010/01/27 19:45:58 | 000,000,275 | ---- | C] () -- C:\Users\Admin\AppData\Roaming\default.rss
[2009/12/23 21:48:26 | 000,005,120 | ---- | C] () -- C:\Users\Admin\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009/10/28 16:32:42 | 000,237,568 | R--- | C] () -- C:\Windows\System32\qtmlClient.dll
[2009/10/28 16:32:42 | 000,000,000 | ---- | C] () -- C:\Windows\Graffiti5.2Pin.ini
[2009/10/28 15:38:17 | 000,000,376 | ---- | C] () -- C:\Windows\ODBC.INI
[2009/10/27 22:05:04 | 000,000,258 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2009/07/13 19:51:43 | 000,073,728 | ---- | C] () -- C:\Windows\System32\BthpanContextHandler.dll
[2009/07/13 19:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\System32\BWContextHandler.dll
[2009/05/26 18:38:12 | 000,026,888 | ---- | C] () -- C:\Windows\System32\drivers\swmsflt.sys
[2008/02/08 17:13:44 | 000,319,488 | ---- | C] () -- C:\Windows\System32\LS3Renderer.dll
[2007/01/26 02:04:12 | 000,138,752 | ---- | C] () -- C:\Windows\System32\mase32.dll
[2007/01/26 02:04:12 | 000,027,648 | ---- | C] () -- C:\Windows\System32\ma32.dll

========== LOP Check ==========

[2010/06/16 02:35:50 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\BoneTown
[2010/01/19 14:57:39 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\Bytemobile
[2010/07/15 05:03:28 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\Camfrog
[2009/12/29 00:43:37 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\CanuckSoftware
[2010/08/15 17:34:55 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\Emergency Soft
[2010/05/28 22:45:58 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\GameTuts
[2010/08/27 06:16:58 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\IObit
[2010/04/12 15:27:20 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\Mael
[2009/10/28 16:33:52 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\proDAD
[2010/07/06 19:42:18 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\Publish Providers
[2010/07/06 20:38:59 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\Sony
[2010/01/19 15:04:05 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\Sprint
[2010/07/10 16:44:54 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\SystemRequirementsLab
[2010/08/27 16:23:46 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\Tific
[2010/04/24 01:29:49 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\TuneUpMedia
[2010/08/27 15:03:33 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\uTorrent
[2010/02/13 23:07:08 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\WildPackets
[2010/08/20 22:40:57 | 000,032,602 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========



========== Alternate Data Streams ==========

@Alternate Data Stream - 164 bytes -> C:\ProgramData\TEMP:CB0AACC9
@Alternate Data Stream - 121 bytes -> C:\ProgramData\TEMPFC5A2B2
@Alternate Data Stream - 109 bytes -> C:\ProgramData\TEMP:A8ADE5D8
< End of report >

 

ok SafeSurf and SurfGuard are not listed on the Processes anymore so i guess infection is gone? unless u see something else on the logs i posted. also i noticed on the Quickscan log this C:\Windows\System32\drivers\etc\hosts and then it shows links, its that folder safe?
Thanks

 

The Hosts file has been added to by one of your anti-malware tools. A lot of ppl use the hosts file to stop in-page ads, **** sites etc.

An entry such as 127.0.0.1 www.007guard.com causes that particular site not to load on your pc, effectively blocking it.

==

Are you able to download and run Combofix now?