[code] OTS logfile created on: 2011-03-26 11:29:26 - Run 1 OTS by OldTimer - Version 3.1.42.0 Folder = C:\Documents and Settings\X\My Documents Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 6.0.2900.5512) Locale: 00000415 | Country: Poland | Language: PLK | Date Format: yyyy-MM-dd 503,00 Mb Total Physical Memory | 225,00 Mb Available Physical Memory | 45,00% Memory free 1,00 Gb Paging File | 1,00 Gb Available in Paging File | 79,00% Paging File free Paging file location(s): C:\pagefile.sys 756 1512 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 34,21 Gb Total Space | 5,50 Gb Free Space | 16,08% Space Free | Partition Type: NTFS D: Drive not present or media not loaded E: Drive not present or media not loaded Drive F: | 931,51 Gb Total Space | 59,31 Gb Free Space | 6,37% Space Free | Partition Type: NTFS G: Drive not present or media not loaded H: Drive not present or media not loaded I: Drive not present or media not loaded Computer Name: DB0SCF97 Current User Name: X Logged in as Administrator. Current Boot Mode: Normal Scan Mode: All users Company Name Whitelist: Off Skip Microsoft Files: Off File Age = 30 Days [Processes - Safe List] ots.exe -> C:\Documents and Settings\X\My Documents\OTS.exe -> [2011-03-26 11:15:50 | 000,645,632 | ---- | M] (OldTimer Tools) freeagentservice.exe -> C:\Program Files\Seagate\SeagateManager\Sync\FreeAgentService.exe -> [2009-03-27 14:54:06 | 000,165,160 | ---- | M] (Seagate Technology LLC) explorer.exe -> C:\WINDOWS\explorer.exe -> [2008-04-14 04:42:20 | 001,033,728 | ---- | M] (Microsoft Corporation) dslmon.exe -> C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe -> [2007-02-13 15:20:50 | 001,205,840 | ---- | M] () fscapture.exe -> C:\Program Files\FastStone Capture\FSCapture.exe -> [2007-02-13 01:31:26 | 001,111,552 | ---- | M] () stsystra.exe -> C:\WINDOWS\stsystra.exe -> [2005-09-10 06:19:34 | 000,393,216 | ---- | M] (SigmaTel, Inc.) [Modules - Safe List] ots.exe -> C:\Documents and Settings\X\My Documents\OTS.exe -> [2011-03-26 11:15:50 | 000,645,632 | ---- | M] (OldTimer Tools) comctl32.dll -> C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll -> [2010-08-23 17:12:02 | 001,054,208 | ---- | M] (Microsoft Corporation) [Win32 Services - Safe List] (HidServ) Human Interface Device Access [Disabled | Stopped] -> -> File not found (AppMgmt) Application Management [On_Demand | Stopped] -> -> File not found (FreeAgentGoNext Service) Seagate Service [Auto | Running] -> C:\Program Files\Seagate\SeagateManager\Sync\FreeAgentService.exe -> [2009-03-27 14:54:06 | 000,165,160 | ---- | M] (Seagate Technology LLC) [Driver Services - Safe List] (SliceDisk5) SliceDisk5 [Kernel | On_Demand | Stopped] -> C:\Program Files\A-FF Find and Mount\slicedisk.sys -> [2008-04-03 18:07:34 | 000,010,240 | ---- | M] (Atola) (adiusbaw) USB ADSL WAN Adapter [Kernel | On_Demand | Running] -> C:\WINDOWS\system32\drivers\adiusbaw.sys -> [2007-02-07 15:50:32 | 000,118,552 | ---- | M] (Analog Devices Inc.) (ELOADER) General Purpose USB Driver (adildr.sys) [Kernel | Auto | Stopped] -> C:\WINDOWS\system32\drivers\adildr.sys -> [2007-02-07 15:50:14 | 000,056,088 | ---- | M] (Analog Deivces) (ASCTRM) ASCTRM [Kernel | Auto | Running] -> C:\WINDOWS\System32\drivers\asctrm.sys -> [2006-02-06 06:11:24 | 000,008,552 | ---- | M] (Windows (R) 2000 DDK provider) (STHDA) SigmaTel High Definition Audio CODEC [Kernel | On_Demand | Running] -> C:\WINDOWS\system32\drivers\sthda.sys -> [2005-09-10 06:15:32 | 001,032,472 | ---- | M] (SigmaTel, Inc.) (bcm4sbxp) Broadcom 440x 10/100 Integrated Controller XP Driver [Kernel | On_Demand | Running] -> C:\WINDOWS\system32\drivers\bcm4sbxp.sys -> [2005-08-05 10:32:16 | 000,045,312 | R--- | M] (Broadcom Corporation) (APPDRV) APPDRV [Kernel | System | Running] -> C:\WINDOWS\SYSTEM32\DRIVERS\APPDRV.SYS -> [2005-08-03 17:44:16 | 000,016,128 | ---- | M] (Dell Inc) (Ser2pl) Prolific2 Serial port driver [Kernel | On_Demand | Stopped] -> C:\WINDOWS\system32\drivers\ser2pl.sys -> [2005-07-25 10:04:08 | 000,048,640 | ---- | M] (Prolific Technology Inc.) (HSF_DPV) HSF_DPV [Kernel | On_Demand | Running] -> C:\WINDOWS\system32\drivers\HSF_DPV.sys -> [2005-07-22 10:02:12 | 001,035,008 | ---- | M] (Conexant Systems, Inc.) (HSFHWAZL) HSFHWAZL [Kernel | On_Demand | Running] -> C:\WINDOWS\system32\drivers\HSFHWAZL.sys -> [2005-07-22 10:01:08 | 000,201,600 | ---- | M] (Conexant Systems, Inc.) (winachsf) winachsf [Kernel | On_Demand | Running] -> C:\WINDOWS\system32\drivers\HSF_CNXT.sys -> [2005-07-22 10:01:00 | 000,717,952 | ---- | M] (Conexant Systems, Inc.) (BCM43XX) Dell Wireless WLAN Card Driver [Kernel | On_Demand | Running] -> C:\WINDOWS\system32\drivers\BCMWL5.SYS -> [2004-12-07 04:09:58 | 000,369,024 | ---- | M] (Broadcom Corporation) [Registry - Safe List] < Internet Explorer Settings [HKEY_LOCAL_MACHINE\] > -> -> HKEY_LOCAL_MACHINE\: Main\\"Local Page" -> %SystemRoot%\system32\blank.htm -> HKEY_LOCAL_MACHINE\: Main\\"Start Page" -> about:blank -> HKEY_LOCAL_MACHINE\: Search\\"Default_Page_URL" -> http://www.google.com/ig/dell?hl=en -> HKEY_LOCAL_MACHINE\: Search\\"Start Page" -> http://www.google.com/ig/dell?hl=en -> < Internet Explorer Settings [HKEY_USERS\.DEFAULT\] > -> -> HKEY_USERS\.DEFAULT\: Main\\"Default_Page_URL" -> http://www.google.com/ig/dell?hl=en -> HKEY_USERS\.DEFAULT\: "ProxyEnable" -> 0 -> < Internet Explorer Settings [HKEY_USERS\S-1-5-18\] > -> -> HKEY_USERS\S-1-5-18\: Main\\"Default_Page_URL" -> http://www.google.com/ig/dell?hl=en -> HKEY_USERS\S-1-5-18\: "ProxyEnable" -> 0 -> < Internet Explorer Settings [HKEY_USERS\S-1-5-19\] > -> -> HKEY_USERS\S-1-5-19\: "ProxyEnable" -> 0 -> < Internet Explorer Settings [HKEY_USERS\S-1-5-20\] > -> -> HKEY_USERS\S-1-5-20\: "ProxyEnable" -> 0 -> < Internet Explorer Settings [HKEY_USERS\S-1-5-21-2154615204-4275496255-3731553294-1006\] > -> -> HKEY_USERS\S-1-5-21-2154615204-4275496255-3731553294-1006\: Main\\"Start Page" -> about:blank -> HKEY_USERS\S-1-5-21-2154615204-4275496255-3731553294-1006\: SearchURL\\"provider" -> gogl -> HKEY_USERS\S-1-5-21-2154615204-4275496255-3731553294-1006\: "ProxyEnable" -> 0 -> < FireFox Extensions [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Mozilla HKLM\software\mozilla\Firefox\Extensions -> -> < FireFox Extensions [User Folders] > -> < HOSTS File > ([2009-04-18 13:26:45 | 000,000,027 | ---- | M] - 1 lines) -> C:\WINDOWS\system32\drivers\etc\hosts -> Reset Hosts 127.0.0.1 localhost < BHO's [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\ -> {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} [HKLM] -> C:\Program Files\Google\GoogleToolbarNotifier\5.5.4723.1820\swg.dll [Google Toolbar Notifier BHO] -> [2011-01-09 01:51:23 | 000,812,528 | ---- | M] (Google Inc.) < Run [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run -> "FinePrint Dyspozytor v5" -> C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\fpdisp5a.exe ["C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\fpdisp5a.exe" /source=HKLM] -> [2006-08-24 14:55:54 | 000,499,712 | ---- | M] (FinePrint Software, LLC) "SigmatelSysTrayApp" -> C:\WINDOWS\stsystra.exe [stsystra.exe] -> [2005-09-10 06:19:34 | 000,393,216 | ---- | M] (SigmaTel, Inc.) < Run [HKEY_USERS\.DEFAULT\] > -> HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Run -> "HKEY_LOCAL_MACHI" -> Reg Error: Value error. [Reg Error: Value error.] -> File not found < RunOnce [HKEY_USERS\.DEFAULT\] > -> HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce -> "RunNarrator" -> C:\WINDOWS\System32\narrator.exe [Narrator.exe] -> [2008-04-14 04:42:30 | 000,053,760 | ---- | M] (Microsoft Corporation) < Run [HKEY_USERS\S-1-5-18\] > -> HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Run -> "C:\WINDOWS\SYSTE" -> Reg Error: Value error. [Reg Error: Value error.] -> File not found < RunOnce [HKEY_USERS\S-1-5-18\] > -> HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce -> "RunNarrator" -> C:\WINDOWS\System32\narrator.exe [Narrator.exe] -> [2008-04-14 04:42:30 | 000,053,760 | ---- | M] (Microsoft Corporation) < Run [HKEY_USERS\S-1-5-19\] > -> HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Run -> "C:\WINDOWS\SYSTE" -> Reg Error: Value error. [Reg Error: Value error.] -> File not found < Run [HKEY_USERS\S-1-5-20\] > -> HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Run -> "C:\WINDOWS\SYSTE" -> Reg Error: Value error. [Reg Error: Value error.] -> File not found < Administrator Startup Folder > -> C:\Documents and Settings\Administrator\Start Menu\Programs\Startup -> < All Users Startup Folder > -> C:\Documents and Settings\All Users\Start Menu\Programs\Startup -> C:\Documents and Settings\All Users\Start Menu\Programs\Startup\DSLMON.lnk -> C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe -> [2007-02-13 15:20:50 | 001,205,840 | ---- | M] () < Default User Startup Folder > -> C:\Documents and Settings\Default User\Start Menu\Programs\Startup -> < X Startup Folder > -> C:\Documents and Settings\X\Start Menu\Programs\Startup -> < Software Policy Settings [HKEY_USERS\S-1-5-21-2154615204-4275496255-3731553294-1006] > -> HKEY_USERS\S-1-5-21-2154615204-4275496255-3731553294-1006\SOFTWARE\Policies\Microsoft\Internet Explorer -> < CurrentVersion Policy Settings - Explorer [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer \\"NoCDBurning" -> [0] -> File not found \\"NoDriveAutoRun" -> [67108863] -> File not found \\"NoDriveTypeAutoRun" -> [323] -> File not found \\"NoDrives" -> [0] -> File not found \\"HonorAutoRunSetting" -> [1] -> File not found < CurrentVersion Policy Settings - System [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System < CurrentVersion Policy Settings [HKEY_USERS\.DEFAULT] > -> HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer -> HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer \\"NoDriveTypeAutoRun" -> [323] -> File not found \\"NoDriveAutoRun" -> [67108863] -> File not found < CurrentVersion Policy Settings [HKEY_USERS\.DEFAULT] > -> HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System -> < CurrentVersion Policy Settings [HKEY_USERS\S-1-5-18] > -> HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer -> HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer \\"NoDriveTypeAutoRun" -> [323] -> File not found \\"NoDriveAutoRun" -> [67108863] -> File not found < CurrentVersion Policy Settings [HKEY_USERS\S-1-5-18] > -> HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System -> < CurrentVersion Policy Settings [HKEY_USERS\S-1-5-19] > -> HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer -> HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer \\"NoDriveTypeAutoRun" -> [145] -> File not found < CurrentVersion Policy Settings [HKEY_USERS\S-1-5-20] > -> HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer -> HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer \\"NoDriveTypeAutoRun" -> [145] -> File not found < CurrentVersion Policy Settings [HKEY_USERS\S-1-5-21-2154615204-4275496255-3731553294-1006] > -> HKEY_USERS\S-1-5-21-2154615204-4275496255-3731553294-1006\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer -> HKEY_USERS\S-1-5-21-2154615204-4275496255-3731553294-1006\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer \\"NoDriveTypeAutoRun" -> [323] -> File not found \\"NoDrives" -> [0] -> File not found \\"NoDriveAutoRun" -> [67108863] -> File not found < CurrentVersion Policy Settings [HKEY_USERS\S-1-5-21-2154615204-4275496255-3731553294-1006] > -> HKEY_USERS\S-1-5-21-2154615204-4275496255-3731553294-1006\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System -> HKEY_USERS\S-1-5-21-2154615204-4275496255-3731553294-1006\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System < Internet Explorer Menu Extensions [HKEY_USERS\S-1-5-19\] > -> HKEY_USERS\S-1-5-19\Software\Microsoft\Internet Explorer\MenuExt\ -> Add to Google Photos Screensa&ver -> C:\WINDOWS\System32\GPhotos.scr [res://C:\WINDOWS\system32\GPhotos.scr/200] -> [2009-01-05 23:33:03 | 003,751,995 | ---- | M] (Google Inc.) < Internet Explorer Menu Extensions [HKEY_USERS\S-1-5-20\] > -> HKEY_USERS\S-1-5-20\Software\Microsoft\Internet Explorer\MenuExt\ -> Add to Google Photos Screensa&ver -> C:\WINDOWS\System32\GPhotos.scr [res://C:\WINDOWS\system32\GPhotos.scr/200] -> [2009-01-05 23:33:03 | 003,751,995 | ---- | M] (Google Inc.) < Internet Explorer Menu Extensions [HKEY_USERS\S-1-5-21-2154615204-4275496255-3731553294-1006\] > -> HKEY_USERS\S-1-5-21-2154615204-4275496255-3731553294-1006\Software\Microsoft\Internet Explorer\MenuExt\ -> Google Sidewiki... -> C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_96D6FF0C6D236BF8.dll [res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_96D6FF0C6D236BF8.dll/cmsidewiki.html] -> [2011-01-09 01:43:27 | 000,848,896 | ---- | M] (Google Inc.) < Internet Explorer Extensions [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\ -> {c95fe080-8f5d-11d2-a20b-00aa003c157a}:C:\WINDOWS\web\related.htm [HKLM] -> [Button: @shdoclc.dll,-866] -> File not found {c95fe080-8f5d-11d2-a20b-00aa003c157a}:C:\WINDOWS\web\related.htm [HKLM] -> [Menu: @shdoclc.dll,-864] -> File not found < Internet Explorer Extensions [HKEY_USERS\.DEFAULT\] > -> HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Extensions\ -> CmdMapping\\"{08B0E5C0-4FCB-11CF-AAA5-00401C608501}" [HKLM] -> [Reg Error: Value error.] -> File not found CmdMapping\\"{CD67F990-D8E9-11d2-98FE-00C0F0318AFE}" [HKLM] -> [Reg Error: Key error.] -> File not found CmdMapping\\"{FB5F1910-F110-11d2-BB9E-00C04F795683}" [HKLM] -> [Reg Error: Key error.] -> File not found < Internet Explorer Extensions [HKEY_USERS\S-1-5-18\] > -> HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Extensions\ -> CmdMapping\\"{08B0E5C0-4FCB-11CF-AAA5-00401C608501}" [HKLM] -> [Reg Error: Value error.] -> File not found CmdMapping\\"{CD67F990-D8E9-11d2-98FE-00C0F0318AFE}" [HKLM] -> [Reg Error: Key error.] -> File not found CmdMapping\\"{FB5F1910-F110-11d2-BB9E-00C04F795683}" [HKLM] -> [Reg Error: Key error.] -> File not found < Internet Explorer Extensions [HKEY_USERS\S-1-5-21-2154615204-4275496255-3731553294-1006\] > -> HKEY_USERS\S-1-5-21-2154615204-4275496255-3731553294-1006\Software\Microsoft\Internet Explorer\Extensions\ -> CmdMapping\\"{08B0E5C0-4FCB-11CF-AAA5-00401C608501}" [HKLM] -> [Reg Error: Value error.] -> File not found CmdMapping\\"{53F6FCCD-9E22-4d71-86EA-6E43136192AB}" [HKLM] -> [Reg Error: Value error.] -> File not found CmdMapping\\"{925DAB62-F9AC-4221-806A-057BFB1014AA}" [HKLM] -> [Reg Error: Value error.] -> File not found CmdMapping\\"{c95fe080-8f5d-11d2-a20b-00aa003c157a}" [HKLM] -> [@shdoclc.dll,-866] -> File not found CmdMapping\\"{CD67F990-D8E9-11d2-98FE-00C0F0318AFE}" [HKLM] -> [Reg Error: Key error.] -> File not found CmdMapping\\"{DFB852A3-47F8-48C4-A200-58CAB36FD2A2}" [HKLM] -> [Reg Error: Key error.] -> File not found CmdMapping\\"{FB5F1910-F110-11d2-BB9E-00C04F795683}" [HKLM] -> [Reg Error: Key error.] -> File not found < Internet Explorer Plugins [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Plugins\ -> < Default Prefix > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\DefaultPrefix "" -> http:// < Trusted Sites Domains [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> [Key] 2 domain(s) found. -> online_musicmatch.com [https] -> Trusted sites -> < Trusted Sites Ranges [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> [Key] 0 range(s) found. -> < Trusted Sites Domains [HKEY_USERS\.DEFAULT\] > -> HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> [Key] 0 domain(s) found. -> < Trusted Sites Ranges [HKEY_USERS\.DEFAULT\] > -> HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> [Key] 0 range(s) found. -> < Trusted Sites Domains [HKEY_USERS\S-1-5-18\] > -> HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> [Key] 0 domain(s) found. -> < Trusted Sites Ranges [HKEY_USERS\S-1-5-18\] > -> HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> [Key] 0 range(s) found. -> < Trusted Sites Domains [HKEY_USERS\S-1-5-19\] > -> HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> [Key] 0 domain(s) found. -> < Trusted Sites Ranges [HKEY_USERS\S-1-5-19\] > -> HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> [Key] 0 range(s) found. -> < Trusted Sites Domains [HKEY_USERS\S-1-5-20\] > -> HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> [Key] 0 domain(s) found. -> < Trusted Sites Ranges [HKEY_USERS\S-1-5-20\] > -> HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> [Key] 0 range(s) found. -> < Trusted Sites Domains [HKEY_USERS\S-1-5-21-2154615204-4275496255-3731553294-1006\] > -> HKEY_USERS\S-1-5-21-2154615204-4275496255-3731553294-1006\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> HKEY_USERS\S-1-5-21-2154615204-4275496255-3731553294-1006\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> [Key] 0 domain(s) found. -> < Trusted Sites Ranges [HKEY_USERS\S-1-5-21-2154615204-4275496255-3731553294-1006\] > -> HKEY_USERS\S-1-5-21-2154615204-4275496255-3731553294-1006\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> HKEY_USERS\S-1-5-21-2154615204-4275496255-3731553294-1006\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> [Key] 0 range(s) found. -> < Downloaded Program Files > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\ -> {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} [HKLM] -> http://download.bitdefender.com/resources/scanner/sources/en/scan8/oscan8.cab [BDSCANONLINE Control] -> {8AD9C840-044E-11D1-B3E9-00805F499D93} [HKLM] -> http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab [Java Plug-in 1.6.0_20] -> {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} [HKLM] -> http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab [Java Plug-in 1.6.0_20] -> {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} [HKLM] -> http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab [Java Plug-in 1.6.0_20] -> {D27CDB6E-AE6D-11CF-96B8-444553540000} [HKLM] -> http://fpdownload.macromedia.com/get/flashplayer/current/swflash.cab [Shockwave Flash Object] -> {F27237D7-93C8-44C2-AC6E-D6057B9A918F} [HKLM] -> https://extranet.uj.edu.pl/dana-cached/sc/JuniperSetupClient.cab [JuniperSetupClientControl Class] -> < Winlogon settings [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon -> *Shell* -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\Shell -> Explorer.exe -> C:\WINDOWS\explorer.exe -> [2008-04-14 04:42:20 | 001,033,728 | ---- | M] (Microsoft Corporation) *MultiFile Done* -> -> < Domain Profile Authorized Applications List > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List -> < Standard Profile Authorized Applications List > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List -> "C:\Documents and Settings\X\My Documents\utorrent.exe" -> C:\Documents and Settings\X\My Documents\utorrent.exe [C:\Documents and Settings\X\My Documents\utorrent.exe:*:Enabled:µTorrent] -> [2007-02-18 17:57:46 | 000,177,152 | ---- | M] () "C:\Program Files\BitTorrent\btdownloadgui.exe" -> C:\Program Files\BitTorrent\btdownloadgui.exe [C:\Program Files\BitTorrent\btdownloadgui.exe:*:Enabled:btdownloadgui] -> [2003-05-13 00:13:41 | 000,642,820 | ---- | M] () "C:\Program Files\Gadu-Gadu\gg.exe" -> C:\Program Files\Gadu-Gadu\gg.exe [C:\Program Files\Gadu-Gadu\gg.exe:*:Disabled:Gadu-Gadu - program główny] -> [2006-10-10 16:51:52 | 001,636,040 | ---- | M] (Gadu-Gadu S.A.) "C:\Program Files\WinHTTrack\WinHTTrack.exe" -> C:\Program Files\WinHTTrack\WinHTTrack.exe [C:\Program Files\WinHTTrack\WinHTTrack.exe:*:Enabled:WinHTTrack Website Copier, Web Site mirroring for professional and private purposes] -> [2010-02-21 16:12:38 | 000,444,416 | ---- | M] (HTTrack) < SafeBoot AlternateShell [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot -> < CDROM Autorun Setting [HKEY_LOCAL_MACHINE]> -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom -> "AutoRun" -> 1 -> "DisplayName" -> CD-ROM Driver -> "ImagePath" -> [system32\DRIVERS\cdrom.sys] -> File not found < Drives with AutoRun files > -> -> C:\AUTOEXEC.BAT [] -> C:\AUTOEXEC.BAT [ NTFS ] -> [2004-08-10 20:04:08 | 000,000,000 | ---- | M] () F:\Autorun.inf [07EF:0001:0001:0001 | [autorun] | icon = .\FreeAgentDesktopNext.ico | ] -> F:\Autorun.inf [ NTFS ] -> [2009-07-24 16:12:49 | 000,000,067 | ---- | M] () < MountPoints2 [HKEY_CURRENT_USER] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2 -> < Registry Shell Spawning - Select to Repair > -> HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\shell\[command]\command -> comfile [open] -> "%1" %* -> exefile [open] -> "%1" %* -> < File Associations - Select to Repair > -> HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\ -> .com [@ = ComFile] -> "%1" %* -> .exe [@ = exefile] -> "%1" %* -> [Registry - Additional Scans - Safe List] < ActiveX StubPath [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\ -> {03F998B2-0E00-11D3-A498-00104B6EB52E} [HKLM] -> Reg Error: Key error. [(default): Viewpoint Media Player; IsInstalled: 01 00 00 00 [binary data]] -> File not found {08B0E5C0-4FCB-11CF-AAA5-00401C608500} [KeyFileName] -> C:\Program Files\Java\jre6\bin\regutils.dll [(default): Java (Sun); IsInstalled: 1] -> [2010-04-12 18:35:02 | 000,270,336 | ---- | M] (Sun Microsystems, Inc.) {10072CEC-8CC1-11D1-986E-00A0C955B42F} [HKLM] -> Reg Error: Key error. [(default): Vector Graphics Rendering (VML); IsInstalled: 01 00 00 00 [binary data]] -> File not found {1B00725B-C455-4DE6-BFB6-AD540AD427CD} [HKLM] -> [(default): Viewpoint Media Player; IsInstalled: 01 00 00 00 [binary data]] -> {2179C5D3-EBFF-11CF-B6FD-00AA00B4E220} [StubPath] -> [ComponentID: NetShow; IsInstalled: 1] -> {22d6f312-b0f6-11d0-94ab-0080c74c7e95} [StubPath] -> [(default): Microsoft Windows Media Player 6.4; IsInstalled: 1] -> {283807B5-2C60-11D0-A31D-00AA00B92C03} [HKLM] -> C:\WINDOWS\system32\danim.dll [(default): DirectAnimation; IsInstalled: 1] -> [2008-04-14 04:41:52 | 001,054,208 | ---- | M] (Microsoft Corporation) {2A3320D6-C805-4280-B423-B665BDE33D8F} [HKLM] -> Reg Error: Key error. [(default): Microsoft .NET Framework 1.1 Security Update (KB979906); IsInstalled: 1] -> File not found {2C7339CF-2B09-4501-B3F3-F3508C9228ED} [StubPath] -> %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll [(default): Themes Setup; IsInstalled: 1] -> {2F6EFCE6-10DF-49F9-9E64-9AE3775B2588} [HKLM] -> Reg Error: Key error. [(default): Microsoft .NET Framework 1.1 Security Update (KB2416447); IsInstalled: 1] -> File not found {36f8ec70-c29a-11d1-b5c7-0000f8051515} [HKLM] -> Reg Error: Key error. [(default): Dynamic HTML Data Binding for Java; IsInstalled: 1] -> File not found {3af36230-a269-11d1-b5bf-0000f8051515} [HKLM] -> Reg Error: Key error. [(default): Offline Browsing Pack; IsInstalled: 1] -> File not found {3bf42070-b3b1-11d1-b5c5-0000f8051515} [HKLM] -> Reg Error: Key error. [(default): Uniscribe; IsInstalled: 1] -> File not found {411EDCF7-755D-414E-A74B-3DCD6583F589} [HKLM] -> Reg Error: Key error. [(default): Microsoft .NET Framework 1.1 Service Pack 1 (KB867460); IsInstalled: 1] -> File not found {4278c270-a269-11d1-b5bf-0000f8051515} [HKLM] -> Reg Error: Key error. [(default): Advanced Authoring; IsInstalled: 1] -> File not found {44BBA840-CC51-11CF-AAFA-00AA00B6015C} [StubPath] -> "%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install [(default): Microsoft Outlook Express 6; IsInstalled: 1] -> {44BBA842-CC51-11CF-AAFA-00AA00B6015B} [StubPath] -> rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT [(default): NetMeeting 3.01; IsInstalled: 01 00 00 00 [binary data]] -> {44BBA848-CC51-11CF-AAFA-00AA00B6015C} [HKLM] -> Reg Error: Key error. [(default): DirectShow; IsInstalled: 1] -> File not found {44BBA855-CC51-11CF-AAFA-00AA00B6015F} [HKLM] -> Reg Error: Key error. [(default): DirectDrawEx; IsInstalled: 1] -> File not found {45ea75a0-a269-11d1-b5bf-0000f8051515} [HKLM] -> Reg Error: Key error. [(default): Internet Explorer Help; IsInstalled: 1] -> File not found {4b218e3e-bc98-4770-93d3-2731b9329278} [StubPath] -> %SystemRoot%\System32\rundll32.exe setupapi,InstallHinfSection MarketplaceLinkInstall 896 %systemroot%\inf\ie.inf [(default): Internet Explorer; IsInstalled: 1] -> {4f216970-c90c-11d1-b5c7-0000f8051515} [HKLM] -> Reg Error: Key error. [(default): DirectAnimation Java Classes; IsInstalled: 1] -> File not found {4f645220-306d-11d2-995d-00c04f98bbc9} [HKLM] -> Reg Error: Key error. [(default): Microsoft Windows Script 5.6; IsInstalled: 1] -> File not found {5945c046-1e7d-11d1-bc44-00c04fd912be} [StubPath] -> rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msmsgs.inf,BLC.QuietInstall.PerUser [(default): Windows Messenger 4.7; IsInstalled: 1] -> {5A8D6EE0-3E18-11D0-821E-444553540000} [HKLM] -> Reg Error: Key error. [ComponentID: ICW; IsInstalled: 1] -> File not found {5AF71003-1797-4D93-9F37-4F2125CBF539} [HKLM] -> Reg Error: Key error. [(default): .NET Framework] -> File not found {5fd399c0-a70a-11d1-9948-00c04f98bbc9} [HKLM] -> Reg Error: Key error. [(default): Internet Explorer Setup Tools; IsInstalled: 1] -> File not found {6BF52A52-394A-11d3-B153-00C04F79FAA6} [StubPath] -> rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\wmp11.inf,PerUserStub [(default): Microsoft Windows Media Player; IsInstalled: 1] -> {6fab99d0-bab8-11d1-994a-00c04f98bbc9} [HKLM] -> Reg Error: Key error. [(default): MSN Site Access; IsInstalled: 1] -> File not found {7131646D-CD3C-40F4-97B9-CD9E4E6262EF} [HKLM] -> Reg Error: Key error. [(default): .NET Framework] -> File not found {7790769C-0471-11d2-AF11-00C04FA35D02} [StubPath] -> "%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install [(default): Address Book 6; IsInstalled: 1] -> {89820200-ECBD-11cf-8B85-00AA005B4340} [StubPath] -> regsvr32.exe /s /n /i:U shell32.dll [(default): Windows Desktop Update; IsInstalled: 1] -> {89820200-ECBD-11cf-8B85-00AA005B4383} [StubPath] -> %SystemRoot%\system32\ie4uinit.exe [(default): Internet Explorer 6; IsInstalled: 1] -> {89B4C1CD-B018-4511-B0A1-5476DBF70820} [StubPath] -> c:\WINDOWS\system32\Rundll32.exe c:\WINDOWS\system32\mscories.dll,Install [ComponentID: DOTNETFRAMEWORKS; IsInstalled: 1] -> {8b15971b-5355-4c82-8c07-7e181ea07608} [StubPath] -> rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\fxsocm.inf,Fax.Install.PerUser [(default): Fax; IsInstalled: 1] -> {9381D8F2-0288-11D0-9501-00AA00B911A5} [HKLM] -> Reg Error: Key error. [(default): Dynamic HTML Data Binding; IsInstalled: 1] -> File not found {94de52c8-2d59-4f1b-883e-79663d2d9a8c} [StubPath] -> [(default): Fax Provider; IsInstalled: 1] -> {C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F} [HKLM] -> Reg Error: Key error. [(default): .NET Framework] -> File not found {C9E9A340-D1F1-11D0-821E-444553540600} [HKLM] -> Reg Error: Key error. [(default): Internet Explorer Core Fonts; IsInstalled: 1] -> File not found {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} [HKLM] -> Reg Error: Key error. [(default): .NET Framework] -> File not found {CC2A9BA0-3BDD-11D0-821E-444553540000} [HKLM] -> Reg Error: Key error. [(default): Task Scheduler; IsInstalled: 1] -> File not found {CDD7975E-60F8-41d5-8149-19E51D6F71D0} [HKLM] -> Reg Error: Key error. [ComponentID: Windows Movie Maker v2.1; IsInstalled: 01 00 00 00 [binary data]] -> File not found {D27CDB6E-AE6D-11cf-96B8-444553540000} [HKLM] -> C:\WINDOWS\system32\Macromed\Flash\Flash10h.ocx [(default): Adobe Flash Player; IsInstalled: 01 00 00 00 [binary data]] -> [2010-06-26 09:39:38 | 005,712,336 | R--- | M] (Adobe Systems, Inc.) {de5aed00-a4bf-11d1-9948-00c04f98bbc9} [HKLM] -> Reg Error: Key error. [(default): HTML Help; IsInstalled: 1] -> File not found {E92B03AB-B707-11d2-9CBD-0000F87A369E} [HKLM] -> Reg Error: Key error. [(default): Active Directory Service Interface; IsInstalled: 01 00 00 00 [binary data]] -> File not found >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} [StubPath] -> C:\WINDOWS\inf\unregmp2.exe /ShowWMP [(default): Microsoft Windows Media Player; IsInstalled: 0] -> >{26923b43-4d38-484f-9b9e-de460746276c} [StubPath] -> %systemroot%\system32\shmgrate.exe OCInstallUserConfigIE [(default): Internet Explorer; IsInstalled: 1] -> >{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS [StubPath] -> RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP [(default): Browser Customizations; IsInstalled: 1] -> >{881dd1c5-3dcf-431b-b061-f3f88e8be88a} [StubPath] -> %systemroot%\system32\shmgrate.exe OCInstallUserConfigOE [(default): Outlook Express; IsInstalled: 1] -> < ActiveX StubPath [HKEY_USERS\.DEFAULT\] > -> HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Active Setup\Installed Components\ -> {44BBA842-CC51-11CF-AAFA-00AA00B6015B} [HKLM] -> Reg Error: Key error. [(no name)] -> File not found {44BBA848-CC51-11CF-AAFA-00AA00B6015C} [HKLM] -> Reg Error: Key error. [(no name)] -> File not found < ActiveX StubPath [HKEY_USERS\S-1-5-18\] > -> HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Active Setup\Installed Components\ -> {44BBA842-CC51-11CF-AAFA-00AA00B6015B} [HKLM] -> Reg Error: Key error. [(no name)] -> File not found {44BBA848-CC51-11CF-AAFA-00AA00B6015C} [HKLM] -> Reg Error: Key error. [(no name)] -> File not found < ActiveX StubPath [HKEY_USERS\S-1-5-19\] > -> HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Active Setup\Installed Components\ -> {44BBA842-CC51-11CF-AAFA-00AA00B6015B} [HKLM] -> Reg Error: Key error. [(no name)] -> File not found {44BBA848-CC51-11CF-AAFA-00AA00B6015C} [HKLM] -> Reg Error: Key error. [(no name)] -> File not found < ActiveX StubPath [HKEY_USERS\S-1-5-20\] > -> HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Active Setup\Installed Components\ -> {44BBA842-CC51-11CF-AAFA-00AA00B6015B} [HKLM] -> Reg Error: Key error. [(no name)] -> File not found {44BBA848-CC51-11CF-AAFA-00AA00B6015C} [HKLM] -> Reg Error: Key error. [(no name)] -> File not found < ActiveX StubPath [HKEY_USERS\S-1-5-21-2154615204-4275496255-3731553294-1006\] > -> HKEY_USERS\S-1-5-21-2154615204-4275496255-3731553294-1006\SOFTWARE\Microsoft\Active Setup\Installed Components\ -> {2C7339CF-2B09-4501-B3F3-F3508C9228ED} [HKLM] -> Reg Error: Key error. [(no name)] -> File not found {44BBA840-CC51-11CF-AAFA-00AA00B6015C} [HKLM] -> Reg Error: Key error. [(no name)] -> File not found {44BBA842-CC51-11CF-AAFA-00AA00B6015B} [HKLM] -> Reg Error: Key error. [(no name)] -> File not found {44BBA848-CC51-11CF-AAFA-00AA00B6015C} [HKLM] -> Reg Error: Key error. [(no name)] -> File not found {4b218e3e-bc98-4770-93d3-2731b9329278} [HKLM] -> Reg Error: Key error. [(no name)] -> File not found {5945c046-1e7d-11d1-bc44-00c04fd912be} [HKLM] -> Reg Error: Key error. [(no name)] -> File not found {7790769C-0471-11d2-AF11-00C04FA35D02} [HKLM] -> Reg Error: Key error. [(no name)] -> File not found {89820200-ECBD-11cf-8B85-00AA005B4340} [HKLM] -> Reg Error: Key error. [(no name)] -> File not found {89820200-ECBD-11cf-8B85-00AA005B4383} [HKLM] -> Reg Error: Key error. [(no name)] -> File not found {89B4C1CD-B018-4511-B0A1-5476DBF70820} [HKLM] -> Reg Error: Key error. [(no name)] -> File not found {8b15971b-5355-4c82-8c07-7e181ea07608} [HKLM] -> Reg Error: Key error. [(no name)] -> File not found {94de52c8-2d59-4f1b-883e-79663d2d9a8c} [HKLM] -> Reg Error: Key error. [(no name)] -> File not found >{26923b43-4d38-484f-9b9e-de460746276c} [HKLM] -> Reg Error: Key error. [(no name)] -> File not found >{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS [HKLM] -> Reg Error: Key error. [(no name)] -> File not found >{881dd1c5-3dcf-431b-b061-f3f88e8be88a} [HKLM] -> Reg Error: Key error. [(no name)] -> File not found InitiallyClear [HKLM] -> Reg Error: Key error. [(no name)] -> File not found < App Paths [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\ -> ACDSee32.exe -> C:\Program Files\ACDSee32\ACDSee32.exe [C:\Program Files\ACDSee32\ACDSee32.exe] -> [2000-10-04 10:57:50 | 001,433,600 | ---- | M] (ACD Systems, Ltd.) AcroRd32.exe -> C:\Program Files\Adobe\Reader 9.0\Reader\AcroRd32.exe [C:\Program Files\Adobe\Reader 9.0\Reader\AcroRd32.exe] -> [2009-02-27 16:10:32 | 000,349,544 | ---- | M] (Adobe Systems Incorporated) bantam.dll -> C:\Program Files\Common Files\Borland Shared\BDE\bantam.dll [C:\Program Files\Common Files\Borland Shared\BDE\bantam.dll] -> [2003-10-07 20:40:20 | 000,101,376 | ---- | M] (Borland Software Corporation) bckgzm.exe -> C:\Program Files\MSN Gaming Zone\Windows\bckgzm.exe [C:\Program Files\MSN Gaming Zone\Windows\bckgzm.exe] -> [2004-08-04 12:00:00 | 000,042,577 | ---- | M] (Microsoft Corporation) bdeadmin.cpl -> C:\WINDOWS\system32\bdeadmin.cpl [C:\WINDOWS\system32\bdeadmin.cpl] -> [2003-10-07 20:39:00 | 000,184,320 | ---- | M] (Borland Software Corporation) bdeadmin.hlp -> C:\Program Files\Common Files\Borland Shared\BDE\BDEADMIN.HLP [C:\Program Files\Common Files\Borland Shared\BDE\bdeadmin.hlp] -> [2003-10-07 20:39:46 | 000,113,107 | ---- | M] () blw32.dll -> C:\Program Files\Common Files\Borland Shared\BDE\blw32.dll [C:\Program Files\Common Files\Borland Shared\BDE\blw32.dll] -> [2003-10-07 20:39:46 | 000,046,080 | ---- | M] (Borland International) CARMOrganizer.exe -> C:\Program Files\WordPerfect Office 12\Programs\CARMOrganizer.exe [C:\Program Files\WordPerfect Office 12\Programs\CARMOrganizer.exe] -> [2004-12-02 02:51:44 | 000,065,624 | ---- | M] (Corel Corporation) CdrConv.exe -> C:\Program Files\WordPerfect Office 12\Programs\CdrConv.exe [C:\Program Files\WordPerfect Office 12\Programs\CdrConv.exe] -> [2004-12-02 03:37:06 | 001,290,304 | ---- | M] (Corel Corporation) chkrzm.exe -> C:\Program Files\MSN Gaming Zone\Windows\chkrzm.exe [C:\Program Files\MSN Gaming Zone\Windows\chkrzm.exe] -> [2004-08-04 12:00:00 | 000,042,575 | ---- | M] (Microsoft Corporation) cmmgr32.exe -> Reg Error: Value error. [Reg Error: Value error.] -> File not found combofix.exe -> Reg Error: Value error. [Reg Error: Value error.] -> File not found CONF.EXE -> C:\Program Files\NetMeeting\conf.exe [C:\Program Files\NetMeeting\conf.exe] -> [2008-04-14 04:42:16 | 001,032,192 | ---- | M] (Microsoft Corporation) ConvUtil.exe -> C:\Program Files\WordPerfect Office 12\Programs\ConvUtil.exe [C:\Program Files\WordPerfect Office 12\Programs\ConvUtil.exe] -> [2004-12-02 04:39:12 | 000,299,008 | ---- | M] (Corel Corporation) di.exe -> C:\Program Files\Disk Investigator\di.exe [C:\Program Files\Disk Investigator\di.exe] -> [2009-07-04 13:07:54 | 000,286,720 | ---- | M] (Kevin Solway) dialer.exe -> C:\Program Files\Windows NT\dialer.exe [C:\Program Files\Windows NT\dialer.exe] -> [2008-04-14 04:42:18 | 000,539,136 | ---- | M] (Microsoft Corporation) disp.dll -> C:\Program Files\Common Files\Borland Shared\BDE\disp.dll [C:\Program Files\Common Files\Borland Shared\BDE\disp.dll] -> [2003-10-07 20:40:04 | 000,354,816 | ---- | M] (Borland Software Corporation) DjVuCntl.dll -> C:\Program Files\LizardTech\Lizardtech DjVu Control\DjVuCntl.dll [C:\Program Files\LizardTech\Lizardtech DjVu Control\DjVuCntl.dll] -> [2007-02-04 22:03:14 | 000,651,264 | ---- | M] (LizardTech) DSLMON.exe -> C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe [C:\Program Files\SAGEM\SAGEM F@st 800-840\DSLMON.exe] -> [2007-02-13 15:20:50 | 001,205,840 | ---- | M] () fpdisp5.exe -> C:\WINDOWS\system32\spool\drivers\w32x86\3\fpdisp5a.exe [C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\fpdisp5a.exe] -> [2006-08-24 14:55:54 | 000,499,712 | ---- | M] (FinePrint Software, LLC) fpdisp5a.exe -> C:\WINDOWS\system32\spool\drivers\w32x86\3\fpdisp5a.exe [C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\fpdisp5a.exe] -> [2006-08-24 14:55:54 | 000,499,712 | ---- | M] (FinePrint Software, LLC) FSCapture.exe -> C:\Program Files\FastStone Capture\FSCapture.exe [C:\Program Files\FastStone Capture\FSCapture.exe] -> [2007-02-13 01:31:26 | 001,111,552 | ---- | M] () gpsPhotoTagger.exe -> C:\Documents and Settings\X\My Documents\www__Pomoce_do_kompa\gpsPhotoTagger\gpsPhotoTagger.exe [C:\Documents and Settings\X\My Documents\www__Pomoce_do_kompa\gpsPhotoTagger\gpsPhotoTagger.exe] -> [2008-09-24 11:08:32 | 014,966,784 | ---- | M] () HijackThis.exe -> Reg Error: Value error. [Reg Error: Value error.] -> File not found hrtzzm.exe -> C:\Program Files\MSN Gaming Zone\Windows\hrtzzm.exe [C:\Program Files\MSN Gaming Zone\Windows\hrtzzm.exe] -> [2004-08-04 12:00:00 | 000,042,573 | ---- | M] (Microsoft Corporation) hypertrm.exe -> C:\Program Files\Windows NT\hypertrm.exe ["C:\Program Files\Windows NT\hypertrm.exe"] -> [2004-08-04 12:00:00 | 000,028,160 | ---- | M] (Hilgraeve, Inc.) idapi32.dll -> C:\Program Files\Common Files\Borland Shared\BDE\idapi32.dll [C:\Program Files\Common Files\Borland Shared\BDE\idapi32.dll] -> [2003-10-07 20:41:24 | 000,589,312 | ---- | M] (Borland Software Corporation) idasci32.dll -> C:\Program Files\Common Files\Borland Shared\BDE\idasci32.dll [C:\Program Files\Common Files\Borland Shared\BDE\idasci32.dll] -> [2003-10-07 20:41:54 | 000,116,224 | ---- | M] (Borland Software Corporation) idbat32.dll -> C:\Program Files\Common Files\Borland Shared\BDE\idbat32.dll [C:\Program Files\Common Files\Borland Shared\BDE\idbat32.dll] -> [2003-10-07 20:42:02 | 000,139,264 | ---- | M] (Borland Software Corporation) idda3532.dll -> C:\Program Files\Common Files\Borland Shared\BDE\idda3532.dll [C:\Program Files\Common Files\Borland Shared\BDE\idda3532.dll] -> [2003-10-07 20:42:28 | 000,601,600 | ---- | M] (Borland Software Corporation) iddao32.dll -> C:\Program Files\Common Files\Borland Shared\BDE\iddao32.dll [C:\Program Files\Common Files\Borland Shared\BDE\iddao32.dll] -> [2003-10-07 20:43:04 | 000,647,168 | ---- | M] (Borland Software Corporation) iddbas32.dll -> C:\Program Files\Common Files\Borland Shared\BDE\iddbas32.dll [C:\Program Files\Common Files\Borland Shared\BDE\iddbas32.dll] -> [2003-10-07 20:43:36 | 000,454,144 | ---- | M] (Borland Software Corporation) iddr32.dll -> C:\Program Files\Common Files\Borland Shared\BDE\iddr32.dll [C:\Program Files\Common Files\Borland Shared\BDE\iddr32.dll] -> [2003-10-07 20:43:58 | 000,167,936 | ---- | M] (Borland Software Corporation) idodbc32.dll -> C:\Program Files\Common Files\Borland Shared\BDE\idodbc32.dll [C:\Program Files\Common Files\Borland Shared\BDE\idodbc32.dll] -> [2003-10-07 20:44:18 | 000,436,224 | ---- | M] (Borland Software Corporation) idpdx32.dll -> C:\Program Files\Common Files\Borland Shared\BDE\idpdx32.dll [C:\Program Files\Common Files\Borland Shared\BDE\idpdx32.dll] -> [2003-10-07 20:44:42 | 000,255,488 | ---- | M] (Borland Software Corporation) idqbe32.dll -> C:\Program Files\Common Files\Borland Shared\BDE\idqbe32.dll [C:\Program Files\Common Files\Borland Shared\BDE\idqbe32.dll] -> [2003-10-07 20:45:06 | 000,422,400 | ---- | M] (Borland Software Corporation) idr20009.dll -> C:\Program Files\Common Files\Borland Shared\BDE\idr20009.dll [C:\Program Files\Common Files\Borland Shared\BDE\idr20009.dll] -> [2003-10-07 20:45:24 | 000,117,248 | ---- | M] (Borland Software Corporation) idsql32.dll -> C:\Program Files\Common Files\Borland Shared\BDE\idsql32.dll [C:\Program Files\Common Files\Borland Shared\BDE\idsql32.dll] -> [2003-10-07 20:45:42 | 000,464,896 | ---- | M] (Borland Software Corporation) install.exe -> Reg Error: Value error. [Reg Error: Value error.] -> File not found javaws.exe -> C:\Program Files\Java\jre6\bin\javaws.exe [C:\Program Files\Java\jre6\bin\javaws.exe] -> [2010-11-15 19:14:34 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) MediaHub.exe -> C:\Program Files\Common Files\Sonic Shared\Sonic Central\Main\Mediahub.exe [C:\Program Files\Common Files\Sonic Shared\Sonic Central\Main\Mediahub.exe] -> [2005-02-11 09:00:00 | 002,293,760 | ---- | M] () migwiz.exe -> C:\WINDOWS\system32\usmt\migwiz.exe [%SystemRoot%\system32\usmt\migwiz.exe] -> [2008-04-14 04:42:26 | 000,245,248 | ---- | M] (Microsoft Corporation) mmjb.exe -> C:\Program Files\MUSICMATCH\Musicmatch Jukebox\mmjb.exe [C:\Program Files\Musicmatch\Musicmatch Jukebox\mmjb.exe] -> [2005-09-09 02:20:54 | 001,982,464 | ---- | M] (Musicmatch, Inc.) moviemk.exe -> C:\Program Files\Movie Maker\moviemk.exe [C:\Program Files\Movie Maker\moviemk.exe] -> [2010-06-18 14:36:12 | 003,558,912 | ---- | M] (Microsoft Corporation) mplayerc.exe -> C:\Program Files\Media Player Classic\mplayerc.exe ["C:\Program Files\Media Player Classic\mplayerc.exe"] -> [2006-12-23 17:04:32 | 004,252,160 | ---- | M] (Gabest) msimn.exe -> C:\Program Files\Outlook Express\msimn.exe [%ProgramFiles%\Outlook Express\msimn.exe] -> [2008-04-14 04:42:30 | 000,060,416 | ---- | M] (Microsoft Corporation) OOOggDump.exe -> C:\Program Files\illiminable\oggcodecs\OOOggDump.exe [C:\Program Files\illiminable\oggcodecs\OOOggDump.exe] -> [2006-09-14 10:50:42 | 000,010,240 | ---- | M] () pbrush.exe -> C:\WINDOWS\system32\mspaint.exe [%SystemRoot%\system32\mspaint.exe] -> [2009-12-16 19:43:27 | 000,343,040 | ---- | M] (Microsoft Corporation) PCI_FR_40 -> [C:\Documents and Settings\X\My Documents\-\PCI_FR_40] -> File not found phoebe5.exe -> C:\Program Files\Panasonic\PHOTOfunSTUDIO -viewer-\Phoebe5.exe [C:\Program Files\Panasonic\PHOTOfunSTUDIO -viewer-\phoebe5.exe] -> [2008-06-10 19:05:52 | 000,522,184 | ---- | M] (Matsushita Electric Industrial Co., Ltd.) PhotoImpression.exe -> C:\Program Files\ArcSoft\PhotoImpression 4\PhotoImpression.exe [C:\Program Files\ArcSoft\PhotoImpression 4\PhotoImpression.exe] -> [2003-01-07 02:21:02 | 001,744,896 | ---- | M] (ArcSoft) pinball.exe -> C:\Program Files\Windows NT\Pinball\pinball.exe [C:\Program Files\Windows NT\Pinball\pinball.exe] -> [2008-04-14 04:42:32 | 000,281,088 | ---- | M] (Cinematronics) PL-2303 DriverInstaller.exe -> [C:\WINDOWS\PL-2303 DriverInstaller.exe] -> File not found PowerDVD.exe -> C:\Program Files\CyberLink\PowerDVD\PowerDVD.exe [C:\Program Files\CyberLink\PowerDVD\PowerDVD.exe] -> [2005-02-23 23:21:50 | 000,327,680 | ---- | M] (CyberLink Corp.) Prwin12.exe -> C:\Program Files\WordPerfect Office 12\Programs\Prwin12.exe [C:\Program Files\WordPerfect Office 12\Programs\Prwin12.exe] -> [2005-03-23 23:35:24 | 006,803,507 | ---- | M] (Corel Corporation) QPW.EXE -> C:\Program Files\WordPerfect Office 12\Programs\QPW.exe [C:\Program Files\WordPerfect Office 12\Programs\QPW.exe] -> [2004-12-02 06:13:24 | 000,139,264 | ---- | M] (Corel Corporation) QuickTimePlayer.exe -> C:\Program Files\QuickTime\QuickTimePlayer.exe [C:\PROGRA~1\QUICKT~1\QuickTimePlayer.exe] -> [2004-01-06 23:02:38 | 001,393,664 | ---- | M] (Apple Computer, Inc.) QuickTimeUpdater.exe -> C:\Program Files\QuickTime\QuickTimeUpdater.exe [C:\PROGRA~1\QUICKT~1\QuickTimeUpdater.exe] -> [2004-01-06 23:02:39 | 000,147,968 | ---- | M] (Apple Computer, Inc.) RealPlay.exe -> Reg Error: Value error. [Reg Error: Value error.] -> File not found recuva.exe -> C:\Program Files\Recuva\Recuva.exe [C:\Program Files\Recuva\recuva.exe] -> [2009-06-25 15:05:54 | 001,283,824 | ---- | M] (Piriform Ltd) rvsezm.exe -> C:\Program Files\MSN Gaming Zone\Windows\Rvsezm.exe [C:\Program Files\MSN Gaming Zone\Windows\rvsezm.exe] -> [2004-08-04 12:00:00 | 000,042,574 | ---- | M] (Microsoft Corporation) sbase.exe -> F:\Nowy folder\OpenOffice.org 3\program\sbase.exe [F:\Nowy folder\OpenOffice.org 3\program\sbase.exe] -> [2010-05-21 01:16:26 | 000,305,152 | ---- | M] (OpenOffice.org) scalc.exe -> F:\Nowy folder\OpenOffice.org 3\program\scalc.exe [F:\Nowy folder\OpenOffice.org 3\program\scalc.exe] -> [2010-05-21 01:16:26 | 000,305,152 | ---- | M] (OpenOffice.org) sdraw.exe -> F:\Nowy folder\OpenOffice.org 3\program\sdraw.exe [F:\Nowy folder\OpenOffice.org 3\program\sdraw.exe] -> [2010-05-21 01:16:26 | 000,305,152 | ---- | M] (OpenOffice.org) setup.exe -> Reg Error: Value error. [Reg Error: Value error.] -> File not found shvlzm.exe -> C:\Program Files\MSN Gaming Zone\Windows\shvlzm.exe [C:\Program Files\MSN Gaming Zone\Windows\shvlzm.exe] -> [2004-08-04 12:00:00 | 000,042,573 | ---- | M] (Microsoft Corporation) simpress.exe -> F:\Nowy folder\OpenOffice.org 3\program\simpress.exe [F:\Nowy folder\OpenOffice.org 3\program\simpress.exe] -> [2010-05-21 01:16:26 | 000,305,152 | ---- | M] (OpenOffice.org) smath.exe -> F:\Nowy folder\OpenOffice.org 3\program\smath.exe [F:\Nowy folder\OpenOffice.org 3\program\smath.exe] -> [2010-05-21 01:16:26 | 000,305,152 | ---- | M] (OpenOffice.org) soffice.exe -> F:\Nowy folder\OpenOffice.org 3\program\soffice.exe [F:\Nowy folder\OpenOffice.org 3\program\soffice.exe] -> [2010-05-21 01:16:22 | 011,318,784 | ---- | M] (OpenOffice.org) sqlint32.dll -> C:\Program Files\Common Files\Borland Shared\BDE\sqlint32.dll [C:\Program Files\Common Files\Borland Shared\BDE\sqlint32.dll] -> [2003-10-07 20:48:08 | 000,390,144 | ---- | M] (Borland Software Corporation) STImgBrowser.exe -> C:\Program Files\Samsung\Digimax Viewer 2.1\STImgBrowser.exe [C:\Program Files\Samsung\Digimax Viewer 2.1\STImgBrowser.exe] -> [2004-06-21 15:17:16 | 000,634,880 | ---- | M] (STOIK Imaging (www.stoik.com)) swriter.exe -> F:\Nowy folder\OpenOffice.org 3\program\swriter.exe [F:\Nowy folder\OpenOffice.org 3\program\swriter.exe] -> [2010-05-21 01:16:26 | 000,305,152 | ---- | M] (OpenOffice.org) table30.exe -> Reg Error: Value error. [Reg Error: Value error.] -> File not found unopkg.exe -> F:\Nowy folder\OpenOffice.org 3\program\unopkg.exe [F:\Nowy folder\OpenOffice.org 3\program\unopkg.exe] -> [2010-05-20 07:01:10 | 000,010,752 | ---- | M] () wab.exe -> C:\Program Files\Outlook Express\wab.exe [%ProgramFiles%\Outlook Express\wab.exe] -> [2010-10-11 15:59:30 | 000,045,568 | ---- | M] (Microsoft Corporation) wabmig.exe -> C:\Program Files\Outlook Express\wabmig.exe [%ProgramFiles%\Outlook Express\wabmig.exe] -> [2008-04-14 04:42:40 | 000,030,208 | ---- | M] (Microsoft Corporation) winnt32.exe -> Reg Error: Value error. [Reg Error: Value error.] -> File not found WinRAR.exe -> C:\Program Files\WinRAR\WinRAR.exe [C:\Program Files\WinRAR\WinRAR.exe] -> [2006-09-17 11:23:33 | 000,923,136 | ---- | M] () WORDPAD.EXE -> C:\Program Files\Windows NT\Accessories\WORDPAD.EXE ["%ProgramFiles%\Windows NT\Accessories\WORDPAD.EXE"] -> [2010-07-12 13:55:03 | 000,218,112 | ---- | M] (Microsoft Corporation) wpldes12.exe -> C:\Program Files\WordPerfect Office 12\Programs\WPLDES12.exe [C:\Program Files\WordPerfect Office 12\Programs\WPLDES12.exe] -> [2004-12-02 07:40:26 | 000,053,300 | ---- | M] (Corel Corporation) wpwin12.exe -> C:\Program Files\WordPerfect Office 12\Programs\wpwin12.exe [C:\Program Files\WordPerfect Office 12\Programs\wpwin12.exe] -> [2004-12-02 06:46:58 | 000,069,632 | ---- | M] (Corel Corporation) WRITE.EXE -> C:\Program Files\Windows NT\Accessories\WORDPAD.EXE ["%ProgramFiles%\Windows NT\Accessories\WORDPAD.EXE"] -> [2010-07-12 13:55:03 | 000,218,112 | ---- | M] (Microsoft Corporation) XPSViewer.exe -> C:\WINDOWS\System32\XPSViewer\XPSViewer.exe ["c:\WINDOWS\system32\XPSViewer\XPSViewer.exe"] -> [2008-07-29 20:26:06 | 000,301,568 | ---- | M] (Microsoft Corporation) < Approved Shell Extensions [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved -> "{087B3AE3-E237-4467-B8DB-5A38AB959AC9}" [HKLM] -> F:\Nowy folder\OpenOffice.org 3\Basis\program\shlxthdl\shlxthdl.dll [OpenOffice.org Infotip Handler] -> [2010-05-19 15:37:00 | 000,401,920 | ---- | M] (OpenOffice.org) "{0DF44EAA-FF21-4412-828E-260A8728E7F1}" [HKLM] -> [Taskbar and Start Menu] -> File not found "{2206CDB2-19C1-11D1-89E0-00C04FD7A829}" [HKLM] -> C:\Program Files\Common Files\System\Ole DB\oledb32.dll [Microsoft Data Link] -> [2008-04-14 04:42:04 | 000,487,424 | ---- | M] (Microsoft Corporation) "{2F603045-309F-11CF-9774-0020AFD0CFF6}" [HKLM] -> C:\Program Files\Synaptics\SynTP\SynTPCpl.dll [Synaptics Control Panel] -> [2005-06-24 13:26:34 | 006,058,074 | ---- | M] (Synaptics, Inc.) "{32714800-2E5F-11d0-8B85-00AA0044F941}" [HKLM] -> C:\Program Files\Outlook Express\wabfind.dll [For &People...] -> [2008-04-14 04:42:10 | 000,032,768 | ---- | M] (Microsoft Corporation) "{3B092F0C-7696-40E3-A80F-68D74DA84210}" [HKLM] -> F:\Nowy folder\OpenOffice.org 3\Basis\program\shlxthdl\shlxthdl.dll [OpenOffice.org Thumbnail Viewer] -> [2010-05-19 15:37:00 | 000,401,920 | ---- | M] (OpenOffice.org) "{42071714-76d4-11d1-8b24-00a0c9068ff3}" [HKLM] -> [Display Panning CPL Extension] -> File not found "{5CA3D70E-1895-11CF-8E15-001234567890}" [HKLM] -> C:\WINDOWS\system32\dla\tfswshx.dll [DriveLetterAccess] -> [2004-12-06 08:05:00 | 000,118,842 | ---- | M] (Sonic Solutions) "{63542C48-9552-494A-84F7-73AA6A7C99C1}" [HKLM] -> F:\Nowy folder\OpenOffice.org 3\Basis\program\shlxthdl\shlxthdl.dll [OpenOffice.org Property Sheet Handler] -> [2010-05-19 15:37:00 | 000,401,920 | ---- | M] (OpenOffice.org) "{764BF0E1-F219-11ce-972D-00AA00A14F56}" [HKLM] -> Reg Error: Key error. [Shell extensions for file compression] -> File not found "{853FE2B1-B769-11d0-9C4E-00C04FB6C6FA}" [HKLM] -> Reg Error: Key error. [Encryption Context Menu] -> File not found "{88895560-9AA2-1069-930E-00AA0030EBC8}" [HKLM] -> C:\WINDOWS\system32\hticons.dll [HyperTerminal Icon Ext] -> [2004-08-04 12:00:00 | 000,044,544 | ---- | M] (Hilgraeve, Inc.) "{B41DB860-8EE4-11D2-9906-E49FADC173CA}" [HKLM] -> C:\Program Files\WinRAR\RarExt.dll [WinRAR shell extension] -> [2006-09-13 23:20:24 | 000,126,464 | ---- | M] () "{C52AF81D-F7A0-4AAB-8E87-F80A60CCD396}" [HKLM] -> F:\Nowy folder\OpenOffice.org 3\Basis\program\shlxthdl\shlxthdl.dll [OpenOffice.org Column Handler] -> [2010-05-19 15:37:00 | 000,401,920 | ---- | M] (OpenOffice.org) < Approved Shell Extensions [HKEY_USERS\S-1-5-21-2154615204-4275496255-3731553294-1006\] > -> HKEY_USERS\S-1-5-21-2154615204-4275496255-3731553294-1006\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\ -> {BDEADF00-C265-11d0-BCED-00A0C90AB50F} [HKLM] -> C:\Program Files\Common Files\Microsoft Shared\Web Folders\MSONSEXT.DLL [Web Folders] -> [2001-05-20 05:57:40 | 000,561,209 | ---- | M] () < Desktop Components > -> HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Desktop\Components\ -> 0 -> [Key] -> 0 -> FriendlyName = My Current Home Page -> 0 -> Source = About:Home -> 0 -> SubscribedURL = About:Home -> < Disabled MSConfig State [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\state -> "bootini" -> 0 -> "services" -> 0 -> "startup" -> 0 -> "system.ini" -> 0 -> "win.ini" -> 0 -> < Drivers32 [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32 -> "msacm.iac2" -> C:\WINDOWS\system32\iac25_32.ax [C:\WINDOWS\system32\iac25_32.ax] -> [2008-04-14 04:42:44 | 000,199,680 | ---- | M] (Intel Corporation) "msacm.l3acm" -> C:\WINDOWS\system32\l3codeca.acm [C:\WINDOWS\system32\l3codeca.acm] -> [2010-01-29 15:43:39 | 000,307,260 | ---- | M] (Fraunhofer Institut Integrierte Schaltungen IIS) "msacm.sl_anet" -> C:\WINDOWS\System32\sl_anet.acm [sl_anet.acm] -> [2008-04-14 04:40:52 | 000,086,016 | ---- | M] (Sipro Lab Telecom Inc.) "msacm.trspch" -> C:\WINDOWS\System32\tssoft32.acm [tssoft32.acm] -> [2004-08-04 12:00:00 | 000,008,192 | ---- | M] (DSP GROUP, INC.) "msacm.voxacm160" -> C:\WINDOWS\System32\vct3216.acm [vct3216.acm] -> [1999-10-30 01:36:42 | 000,082,944 | ---- | M] (Voxware, Inc.) "vidc.cvid" -> C:\WINDOWS\System32\iccvid.dll [iccvid.dll] -> [2010-06-17 15:03:00 | 000,080,384 | ---- | M] (Radius Inc.) "vidc.I420" -> C:\WINDOWS\System32\i263_32.drv [i263_32.drv] -> [2008-03-23 17:29:14 | 000,391,168 | ---- | M] (Intel Corporation) "vidc.iv31" -> C:\WINDOWS\System32\ir32_32.dll [ir32_32.dll] -> [2004-08-04 12:00:00 | 000,199,168 | ---- | M] () "vidc.iv32" -> C:\WINDOWS\System32\ir32_32.dll [ir32_32.dll] -> [2004-08-04 12:00:00 | 000,199,168 | ---- | M] () "vidc.iv41" -> C:\WINDOWS\System32\ir41_32.ax [ir41_32.ax] -> [2008-04-14 04:42:44 | 000,848,384 | ---- | M] (Intel Corporation) "vidc.iv50" -> C:\WINDOWS\System32\ir50_32.dll [ir50_32.dll] -> [2008-04-14 04:41:56 | 000,755,200 | ---- | M] (Intel Corporation) "vidc.XVID" -> C:\WINDOWS\System32\xvidvfw.dll [xvidvfw.dll] -> [2005-04-04 12:52:42 | 000,180,224 | ---- | M] () < Ext (PreApproved) - [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\ -> {4536918A-95A8-498F-B542-CB906C561A43} [HKLM] -> C:\Program Files\Google\Update\1.2.183.39\npGoogleOneClick8.dll [Google Update Plugin] -> [2011-01-09 11:56:27 | 000,219,288 | ---- | M] (Google Inc.) {5852F5ED-8BF4-11D4-A245-0080C6F74284} [HKLM] -> C:\Program Files\Java\jre6\bin\wsdetect.dll [isInstalled Class] -> [2010-11-15 19:14:37 | 000,108,320 | ---- | M] (Sun Microsystems, Inc.) {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found {8AD9C840-044E-11D1-B3E9-00805F499D93} [HKLM] -> C:\Program Files\Java\jre6\bin\npjpi160_20.dll [Java Plug-in 1.6.0_20] -> [2010-11-15 19:14:36 | 000,136,992 | ---- | M] (Sun Microsystems, Inc.) {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} [HKLM] -> C:\Program Files\Java\jre6\bin\npjpi160_20.dll [Java Plug-in 1.6.0_20] -> [2010-11-15 19:14:36 | 000,136,992 | ---- | M] (Sun Microsystems, Inc.) {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBB} [HKLM] -> C:\Program Files\Java\jre6\bin\npjpi160_20.dll [Java Plug-in 1.6.0_20] -> [2010-11-15 19:14:36 | 000,136,992 | ---- | M] (Sun Microsystems, Inc.) {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBC} [HKLM] -> C:\Program Files\Java\jre6\bin\npjpi160_20.dll [Java Plug-in 1.6.0_20] -> [2010-11-15 19:14:36 | 000,136,992 | ---- | M] (Sun Microsystems, Inc.) {CAFEEFAC-DEC7-0000-0000-ABCDEFFEDCBA} [HKLM] -> C:\WINDOWS\system32\deployJava1.dll [Deployment Toolkit] -> [2010-11-15 19:14:33 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) {CAFEEFAC-DEC7-0000-0001-ABCDEFFEDCBA} [HKLM] -> C:\WINDOWS\system32\deployJava1.dll [Deployment Toolkit] -> [2010-11-15 19:14:33 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBC} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found {DFEAF541-F3E1-4c24-ACAC-99C30715084A} [HKLM] -> C:\Program Files\Microsoft Silverlight\4.0.60129.0\npctrl.dll [Microsoft Silverlight] -> [2011-01-29 00:18:58 | 001,024,840 | ---- | M] ( Microsoft Corporation) < Ext (Settings) - [HKEY_CURRENT_USER] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\ -> {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} [HKLM] -> C:\Program Files\Google\GoogleToolbarNotifier\5.5.4723.1820\swg.dll [Google Toolbar Notifier BHO] -> [2011-01-09 01:51:23 | 000,812,528 | ---- | M] (Google Inc.) {BDD307C3-7BC0-4542-9F8F-A9611FE6C1BF} [HKLM] -> C:\WINDOWS\system32\proctexe.ocx [Additive Surface] -> [2008-04-14 04:40:36 | 000,081,920 | ---- | M] (Intel Corporation) < Ext (Stats) - [HKEY_CURRENT_USER] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\ -> {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} [HKLM] -> C:\Program Files\QuickTime\QTPlugin.ocx [QuickTime Object] -> [2006-02-06 06:11:39 | 000,360,504 | ---- | M] (Apple Computer, Inc.) {08B0E5C0-4FCB-11CF-AAA5-00401C608501} [HKLM] -> Reg Error: Key error. [Reg Error: Value error.] -> File not found {0E8D0700-75DF-11D3-8B4A-0008C7450C4A} [HKLM] -> C:\Program Files\LizardTech\Lizardtech DjVu Control\DjVuCntl.dll [DjVuCtl Class] -> [2007-02-04 22:03:14 | 000,651,264 | ---- | M] (LizardTech) {22FC6CE8-7D47-479F-B74A-BFBB04ADB9AF} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found {377B5106-3B4E-4A2D-8520-8767590CAC86} [HKLM] -> C:\Program Files\Common Files\Adobe\SVG Viewer 3.0\NPSVG3.dll [SVG Document] -> [2005-04-14 21:24:22 | 000,321,192 | ---- | M] (Adobe Systems Incorporated) {53F6FCCD-9E22-4D71-86EA-6E43136192AB} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} [HKLM] -> C:\WINDOWS\DOWNLO~1\CONFLICT.1\oscan82.ocx [BDSCANONLINE Control] -> [2009-05-07 15:56:24 | 000,656,384 | ---- | M] () {64182481-4F71-486B-A045-B233BD0DA8FC} [HKLM] -> [CescrtHlpr Object] -> File not found {85D1F590-48F4-11D9-9669-0800200C9A66} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found {8AD9C840-044E-11D1-B3E9-00805F499D93} [HKLM] -> C:\Program Files\Java\jre6\bin\npjpi160_20.dll [Java Plug-in 1.6.0_20] -> [2010-11-15 19:14:36 | 000,136,992 | ---- | M] (Sun Microsystems, Inc.) {925DAB62-F9AC-4221-806A-057BFB1014AA} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found {A9FC132B-096D-460B-B7D5-1DB0FAE0C062} [HKLM] -> C:\WINDOWS\system32\msnetobj.dll [RMGetLicense Class] -> [2006-10-18 20:47:16 | 000,179,712 | ---- | M] (Microsoft Corporation) {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} [HKLM] -> C:\Program Files\Google\GoogleToolbarNotifier\5.5.4723.1820\swg.dll [Google Toolbar Notifier BHO] -> [2011-01-09 01:51:23 | 000,812,528 | ---- | M] (Google Inc.) {BD96C556-65A3-11D0-983A-00C04FC29E36} [HKLM] -> C:\Program Files\Common Files\System\msadc\msadco.dll [RDS.DataSpace] -> [2010-11-09 15:52:35 | 000,143,360 | ---- | M] (Microsoft Corporation) {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found {C95FE080-8F5D-11D2-A20B-00AA003C157A} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found {CA8A9780-280D-11CF-A24D-444553540000} [HKLM] -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroPDF.dll [Adobe PDF Reader] -> [2009-02-27 11:07:48 | 000,660,840 | ---- | M] (Adobe Systems, Inc.) {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} [HKLM] -> C:\Program Files\Java\jre6\bin\npjpi160_20.dll [Java Plug-in 1.6.0_20] -> [2010-11-15 19:14:36 | 000,136,992 | ---- | M] (Sun Microsystems, Inc.) {CAFEEFAC-DEC7-0000-0000-ABCDEFFEDCBA} [HKLM] -> C:\WINDOWS\system32\deployJava1.dll [Deployment Toolkit] -> [2010-11-15 19:14:33 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) {CAFEEFAC-DEC7-0000-0001-ABCDEFFEDCBA} [HKLM] -> C:\WINDOWS\system32\deployJava1.dll [Deployment Toolkit] -> [2010-11-15 19:14:33 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) {D27CDB6E-AE6D-11CF-96B8-444553540000} [HKLM] -> C:\WINDOWS\system32\Macromed\Flash\Flash10h.ocx [Shockwave Flash Object] -> [2010-06-26 09:39:38 | 005,712,336 | R--- | M] (Adobe Systems, Inc.) {DB4E9724-F518-4DFD-9C7C-78B52103CAB9} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found {DE625294-70E6-45ED-B895-CFFA13AEB044} [HKLM] -> C:\Program Files\Axis Communications\AXIS Media Control Embedded\AxisMediaControlEmb.dll [AxisMediaControlEmb Class] -> [2006-12-07 19:32:10 | 000,806,912 | ---- | M] (Axis Communications) {DFEAF541-F3E1-4C24-ACAC-99C30715084A} [HKLM] -> C:\Program Files\Microsoft Silverlight\4.0.60129.0\npctrl.dll [Microsoft Silverlight] -> [2011-01-29 00:18:58 | 001,024,840 | ---- | M] ( Microsoft Corporation) {E2E2DD38-D088-4134-82B7-F2BA38496583} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found {EA582743-9076-4178-9AA6-7393FDF4D5CE} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found {F27237D7-93C8-44C2-AC6E-D6057B9A918F} [HKLM] -> C:\WINDOWS\Downloaded Program Files\JuniperSetupClient.ocx [JuniperSetupClientControl Class] -> [2010-08-19 17:33:12 | 000,238,960 | ---- | M] () < File Associations - Select to Repair > -> HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\ -> .bat [@ = batfile] -> "%1" %* -> .cmd [@ = cmdfile] -> "%1" %* -> .com [@ = ComFile] -> "%1" %* -> .cpl [@ = cplfile] -> rundll32.exe shell32.dll,Control_RunDLL "%1",%* -> .exe [@ = exefile] -> "%1" %* -> .url [@ = InternetShortcut] -> rundll32.exe shdocvw.dll,OpenURL %l -> .pif [@ = piffile] -> "%1" %* -> .scr [@ = scrfile] -> "%1" /S -> < HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost > -> -> *netsvcs* -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs -> 6to4 -> -> File not found AppMgmt -> -> File not found HidServ -> -> File not found Ias -> -> File not found Iprip -> -> File not found Irmon -> -> File not found NWCWorkstation -> -> File not found Nwsapagent -> -> File not found WmdmPmSp -> -> File not found *MultiFile Done* -> -> < Protocol Handlers [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\ -> skype4com:{FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} [HKLM] -> C:\Program Files\Common Files\Skype\Skype4COM.dll[IEProtocolHandler Class] -> [2010-05-13 15:12:42 | 002,135,336 | R--- | M] (Skype Technologies) < SafeBoot-Minimal Settings > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ -> {36FC9E60-C465-11CF-8056-444553540000} -> Universal Serial Bus controllers {4D36E965-E325-11CE-BFC1-08002BE10318} -> CD-ROM Drive {4D36E967-E325-11CE-BFC1-08002BE10318} -> DiskDrive {4D36E969-E325-11CE-BFC1-08002BE10318} -> Standard floppy disk controller {4D36E96A-E325-11CE-BFC1-08002BE10318} -> Hdc {4D36E96B-E325-11CE-BFC1-08002BE10318} -> Keyboard {4D36E96F-E325-11CE-BFC1-08002BE10318} -> Mouse {4D36E977-E325-11CE-BFC1-08002BE10318} -> PCMCIA Adapters {4D36E97B-E325-11CE-BFC1-08002BE10318} -> SCSIAdapter {4D36E97D-E325-11CE-BFC1-08002BE10318} -> System {4D36E980-E325-11CE-BFC1-08002BE10318} -> Floppy disk drive {533C5B84-EC70-11D2-9505-00C04F79DEAF} -> Volume shadow copy {71A27CDD-812A-11D0-BEC7-08002BE2092F} -> Volume {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} -> Human Interface Devices AppMgmt -> -> File not found Base -> Driver Group Boot Bus Extender -> Driver Group Boot file system -> Driver Group File system -> Driver Group Filter -> Driver Group PCI Configuration -> Driver Group PNP Filter -> Driver Group Primary disk -> Driver Group SCSI Class -> Driver Group System Bus Extender -> Driver Group vds -> Service vga.sys -> Driver < SafeBoot-Network Settings > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\ -> {36FC9E60-C465-11CF-8056-444553540000} -> Universal Serial Bus controllers {4D36E965-E325-11CE-BFC1-08002BE10318} -> CD-ROM Drive {4D36E967-E325-11CE-BFC1-08002BE10318} -> DiskDrive {4D36E969-E325-11CE-BFC1-08002BE10318} -> Standard floppy disk controller {4D36E96A-E325-11CE-BFC1-08002BE10318} -> Hdc {4D36E96B-E325-11CE-BFC1-08002BE10318} -> Keyboard {4D36E96F-E325-11CE-BFC1-08002BE10318} -> Mouse {4D36E972-E325-11CE-BFC1-08002BE10318} -> Net {4D36E973-E325-11CE-BFC1-08002BE10318} -> NetClient {4D36E974-E325-11CE-BFC1-08002BE10318} -> NetService {4D36E975-E325-11CE-BFC1-08002BE10318} -> NetTrans {4D36E977-E325-11CE-BFC1-08002BE10318} -> PCMCIA Adapters {4D36E97B-E325-11CE-BFC1-08002BE10318} -> SCSIAdapter {4D36E97D-E325-11CE-BFC1-08002BE10318} -> System {4D36E980-E325-11CE-BFC1-08002BE10318} -> Floppy disk drive {71A27CDD-812A-11D0-BEC7-08002BE2092F} -> Volume {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} -> Human Interface Devices AppMgmt -> -> File not found Base -> Driver Group Boot Bus Extender -> Driver Group Boot file system -> Driver Group File system -> Driver Group Filter -> Driver Group NDIS Wrapper -> Driver Group NetBIOSGroup -> Driver Group NetDDEGroup -> Driver Group Network -> Driver Group NetworkProvider -> Driver Group PCI Configuration -> Driver Group PNP Filter -> Driver Group PNP_TDI -> Driver Group Primary disk -> Driver Group SCSI Class -> Driver Group Streams Drivers -> Driver Group System Bus Extender -> Driver Group TDI -> Driver Group vga.sys -> Driver < Security Center Settings > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center \\"FirstRunDisabled" -> [1] -> File not found \\"AntiVirusDisableNotify" -> [0] -> File not found \\"FirewallDisableNotify" -> [0] -> File not found \\"UpdatesDisableNotify" -> [0] -> File not found \\"AntiVirusOverride" -> [0] -> File not found \\"FirewallOverride" -> [0] -> File not found HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall\ -> -> < System Restore User Settings > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore -> "DisableSR" -> 0 -> < System Restore File Filter Service > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr -> "Start" -> 0 -> < System Restore Service > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService -> "Start" -> 2 -> < Windows Firewall Group Policy Settings > -> HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall -> HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile\ -> -> < Windows DomainProfile Firewall Policy Settings > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\ -> -> < Windows StandardProfile Firewall Policy Settings > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile \\"EnableFirewall" -> [1] -> File not found HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\ -> -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\ -> -> < Windows StandardProfile GloballyOpenPorts Settings > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List -> < Session Manager Settings [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager -> *BootExecute* -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\\BootExecute -> autocheck autochk * -> -> File not found *MultiFile Done* -> -> "ExcludeFromKnownDlls" -> [binary data] -> *ObjectDirectories* -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\\ObjectDirectories -> \Windows -> \Windows -> [2011-03-26 10:35:59 | 000,000,000 | ---D | M] \RPC Control -> -> File not found *MultiFile Done* -> -> < Session Manager Environment Settings [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\Environment -> "ComSpec" -> C:\WINDOWS\system32\cmd.exe -> [2008-04-14 04:42:16 | 000,389,120 | ---- | M] (Microsoft Corporation) "TEMP" -> C:\WINDOWS\temp -> [2011-03-26 10:36:38 | 000,000,000 | ---D | M] "TMP" -> C:\WINDOWS\temp -> [2011-03-26 10:36:38 | 000,000,000 | ---D | M] "windir" -> C:\WINDOWS -> [2011-03-26 10:35:59 | 000,000,000 | ---D | M] *Path* -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\Environment\\Path -> %systemroot%\system32 -> C:\WINDOWS\system32 -> [2011-03-26 10:23:59 | 000,000,000 | ---D | M] %systemroot% -> C:\WINDOWS -> [2011-03-26 10:35:59 | 000,000,000 | ---D | M] %systemroot%\system32\wbem -> C:\WINDOWS\system32\wbem -> [2009-04-19 09:40:07 | 000,000,000 | ---D | M] C:\Documents and Settings\X\My Documents\www__Pomoce_do_kompa -> C:\Documents and Settings\X\My Documents\www__Pomoce_do_kompa -> [2010-11-16 20:08:44 | 000,000,000 | ---D | M] *MultiFile Done* -> -> *PATHEXT* -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\Environment\\PATHEXT -> .COM -> -> File not found .EXE -> -> File not found .BAT -> -> File not found .CMD -> -> File not found .VBS -> -> File not found .VBE -> -> File not found .JS -> -> File not found .JSE -> -> File not found .WSF -> -> File not found .WSH -> -> File not found *MultiFile Done* -> -> < Session Manager FileRenameOperations Settings [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\FileRenameOperations -> < Session Manager KnownDlls Settings [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\KnownDlls -> "advapi32" -> C:\WINDOWS\System32\advapi32.dll -> [2009-02-09 13:10:48 | 000,617,472 | ---- | M] (Microsoft Corporation) "comdlg32" -> C:\WINDOWS\System32\comdlg32.dll -> [2008-04-14 04:41:52 | 000,276,992 | ---- | M] (Microsoft Corporation) "DllDirectory" -> C:\WINDOWS\system32 -> [2011-03-26 10:23:59 | 000,000,000 | ---D | M] "gdi32" -> C:\WINDOWS\System32\gdi32.dll -> [2008-10-23 13:36:14 | 000,286,720 | ---- | M] (Microsoft Corporation) "imagehlp" -> C:\WINDOWS\System32\imagehlp.dll -> [2008-04-14 04:41:56 | 000,144,384 | ---- | M] (Microsoft Corporation) "kernel32" -> C:\WINDOWS\System32\kernel32.dll -> [2009-03-21 15:06:58 | 000,989,696 | ---- | M] (Microsoft Corporation) "lz32" -> C:\WINDOWS\System32\lz32.dll -> [2004-08-04 12:00:00 | 000,002,560 | ---- | M] (Microsoft Corporation) "ole32" -> C:\WINDOWS\System32\ole32.dll -> [2010-07-16 13:05:55 | 001,288,192 | ---- | M] (Microsoft Corporation) "oleaut32" -> C:\WINDOWS\System32\oleaut32.dll -> [2008-04-14 04:42:04 | 000,551,936 | ---- | M] (Microsoft Corporation) "olecli32" -> C:\WINDOWS\System32\olecli32.dll -> [2008-04-14 04:42:04 | 000,074,752 | ---- | M] (Microsoft Corporation) "olecnv32" -> C:\WINDOWS\System32\olecnv32.dll -> [2008-04-14 04:42:04 | 000,037,376 | ---- | M] (Microsoft Corporation) "olesvr32" -> C:\WINDOWS\System32\olesvr32.dll -> [2004-08-04 12:00:00 | 000,022,016 | ---- | M] (Microsoft Corporation) "olethk32" -> C:\WINDOWS\System32\olethk32.dll -> [2004-08-04 12:00:00 | 000,069,120 | ---- | M] (Microsoft Corporation) "rpcrt4" -> C:\WINDOWS\System32\rpcrt4.dll -> [2010-08-16 09:45:00 | 000,590,848 | ---- | M] (Microsoft Corporation) "shell32" -> C:\WINDOWS\System32\shell32.dll -> [2011-01-21 15:44:37 | 008,462,336 | ---- | M] (Microsoft Corporation) "url" -> C:\WINDOWS\System32\url.dll -> [2008-04-14 04:42:10 | 000,037,888 | ---- | M] (Microsoft Corporation) "urlmon" -> C:\WINDOWS\System32\urlmon.dll -> [2010-12-20 23:15:52 | 000,629,760 | ---- | M] (Microsoft Corporation) "user32" -> C:\WINDOWS\System32\user32.dll -> [2008-04-14 04:42:10 | 000,578,560 | ---- | M] (Microsoft Corporation) "version" -> C:\WINDOWS\System32\version.dll -> [2008-04-14 04:42:10 | 000,018,944 | ---- | M] (Microsoft Corporation) "wininet" -> C:\WINDOWS\System32\wininet.dll -> [2010-12-20 23:15:52 | 000,667,136 | ---- | M] (Microsoft Corporation) "wldap32" -> C:\WINDOWS\System32\wldap32.dll -> [2008-04-14 04:42:10 | 000,172,032 | ---- | M] (Microsoft Corporation) < Session Manager SFC Settings [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\SFC -> "CommonFilesDir" -> C:\Program Files\Common Files -> [2010-09-18 12:40:37 | 000,000,000 | ---D | M] "ProgramFilesDir" -> C:\Program Files -> [2011-02-07 22:14:00 | 000,000,000 | ---D | M] < Registry Shell Spawning - Select to Repair > -> HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\shell\[command]\command -> batfile [open] -> "%1" %* -> cmdfile [open] -> "%1" %* -> comfile [open] -> "%1" %* -> cplfile [cplopen] -> rundll32.exe shell32.dll,Control_RunDLL "%1",%* -> exefile [open] -> "%1" %* -> InternetShortcut [open] -> rundll32.exe shdocvw.dll,OpenURL %l -> piffile [open] -> "%1" %* -> scrfile [config] -> "%1" -> scrfile [install] -> rundll32.exe desk.cpl,InstallScreenSaver %l -> scrfile [open] -> "%1" /S -> Unknown [openas] -> %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 -> Directory [ACDBrowse] -> C:\Program Files\ACDSee32\ACDSee32.exe "%1" -> [2000-10-04 10:57:50 | 001,433,600 | ---- | M] (ACD Systems, Ltd.) Directory [AddToPlaylistVLC] -> "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" -> [2010-11-13 17:46:38 | 000,107,008 | ---- | M] () Directory [find] -> %SystemRoot%\Explorer.exe -> [2008-04-14 04:42:20 | 001,033,728 | ---- | M] (Microsoft Corporation) Directory [Odkurz tutaj] -> C:\Program Files\Odkurzacz\odkurzacz.exe %1 -> [2008-08-17 19:59:36 | 001,290,752 | ---- | M] (Franmo Software) Directory [PlayWithVLC] -> "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" -> [2010-11-13 17:46:38 | 000,107,008 | ---- | M] () Folder [open] -> %SystemRoot%\Explorer.exe /idlist,%I,%L -> [2008-04-14 04:42:20 | 001,033,728 | ---- | M] (Microsoft Corporation) Folder [explore] -> %SystemRoot%\Explorer.exe /e,/idlist,%I,%L -> [2008-04-14 04:42:20 | 001,033,728 | ---- | M] (Microsoft Corporation) Drive [find] -> %SystemRoot%\Explorer.exe -> [2008-04-14 04:42:20 | 001,033,728 | ---- | M] (Microsoft Corporation) < Uninstall List [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ -> {05DC6B8D-4456-4CA6-8DE7-086106D7ED56} -> Digimax i5 {075473F5-846A-448B-BCB3-104AA1760205} -> Sonic RecordNow Data {0DD140D3-9563-481E-AA75-BA457CBDAEF2} -> PC Inspector File Recovery {0EB5D9B7-8E6C-4A9E-B74F-16B7EE89A67B} -> Microsoft Plus! Photo Story 2 LE {0F756CD9-4A1E-409B-B101-601DDC4C03AA} -> Qualxserve Service Agreement {105CFC7C-6992-11D5-BD9D-000102C10FD8} -> Lizardtech DjVu Control {1206EF92-2E83-4859-ACCB-2048C3CB7DA6} -> Sonic DLA {18455581-E099-4BA8-BC6B-F34B2F06600C} -> Google Toolbar for Internet Explorer {1A15507A-8551-4626-915D-3D5FA095CC1B} -> Corel Paint Shop Pro X {1F528948-0E80-4C96-B455-DE4167CB1DF7} -> Internal Network Card Power Management {2318C2B1-4965-11d4-9B18-009027A5CD4F} -> Google Toolbar for Internet Explorer {26A24AE4-039D-4CA4-87B4-2F83216020FF} -> Java(TM) 6 Update 20 {26E1BFB0-E87E-4696-9F89-B467F01F81E5} -> Broadcom Management Programs {300A2961-B2B5-4889-9CB9-5C2A570D08AD} -> Debugging Tools for Windows (x86) {30465B6C-B53F-49A1-9EBA-A3F187AD502E} -> Sonic Update Manager {33BB4982-DC52-4886-A03B-F4C5C80BEE89} -> Windows Media Player 10 {350C97B0-3D7C-4EE8-BAA9-00BCB3D54227} -> WebFldrs XP {352310C3-E46B-42D3-8F32-54721FDD72D9} -> NetZeroInstallers {3EE33958-7381-4E7B-A4F3-6E43098E9E9C} -> Google AFE {3F92ABBB-6BBF-11D5-B229-002078017FBF} -> NetWaiting {407B9B5C-DAC5-4F44-A756-B57CAB4E6A8B} -> Google Earth {4667B940-BB01-428B-986E-A0CC46497BF7} -> ELIcon {4A03706F-666A-4037-7777-5F2748764D10} -> Java Auto Updater {4AE3A0CB-87B0-4F51-BECD-3D1F8DFDD62F} -> SAGEM F@st 800-840 {546C7D0B-1E12-4573-BCD0-F5B0D3C66A74} -> ArcSoft PhotoImpression 4 {548EEA8E-8299-497F-8057-811D2D7097DC} -> Dell Support 3.1 {5905F42D-3F5F-4916-ADA6-94A3646AEE76} -> Dell Driver Reset Tool {5AF71003-1797-4D93-9F37-4F2125CBF539} -> Microsoft .NET Framework 2.0 Language Pack - PLK {5BBFB0E4-2250-49C3-A8A3-65BE2197D13B} -> MP3 Player Utilities {62BD0AE0-4EB1-4BBB-8F43-B6400C8FEB2C} -> AOLIcon {6811CAA0-BF12-11D4-9EA1-0050BAE317E1} -> PowerDVD 5.5 {6D5FCA42-1486-4E32-AFE8-1B7E2AA59D33} -> Digital Content Portal {6E45BA47-383C-4C1E-8ED0-0D4845C293D7} -> Microsoft Plus! Digital Media Edition Installer {728278A1-0BB7-45E4-AC5E-91D7C0FD1EDE} -> EarthLink setup files {7299052b-02a4-4627-81f2-1818da5d550d} -> Microsoft Visual C++ 2005 Redistributable {74F7662C-B1DB-489E-A8AC-07A06B24978B} -> Dell System Restore {770657D0-A123-3C07-8E44-1C83EC895118} -> Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 {7A3F0566-5E05-4919-9C98-456F6B5CF831} -> Get High Speed Internet! {7F142D56-3326-11D5-B229-002078017FBF} -> Modem Helper {85D3CC30-8859-481A-9654-FD9B74310BEF} -> Musicmatch® Jukebox {8727531E-6C58-4852-A90B-39CF45E269A9} -> OpenOffice.org 3.2 {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} -> Microsoft Silverlight {8A708DD8-A5E6-11D4-A706-000629E95E20} -> Intel(R) Graphics Media Accelerator Driver for Mobile {8A9B8148-DDD7-448F-BD6C-358386D32354} -> Corel Photo Album 6 {918E1CCE-45B0-4F58-84B7-53DDA2790A3C} -> Elcomsoft Internet Password Breaker {97C0EA4A-1A0B-4C53-ACEB-49984DA79C90} -> Google Earth {985556E5-353F-4AA9-9E75-29AB8A5E4E14} -> Harzing's Publish or Perish 2.5.2969 {9A9DBEBC-C800-4776-A970-D76D6AA405B1} -> PHOTOfunSTUDIO -viewer- {9EE54C1F-FC99-44D6-916A-0CA2D45E740F} -> Digimax Viewer 2.1 {A2BCA9F1-566C-4805-97D1-7FDC93386723} -> Adobe AIR {A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7} -> Microsoft .NET Framework 3.0 Service Pack 2 {A35883BD-9C83-4625-82F3-90F86728C662} -> FreeUndelete {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} -> Google Update Helper {AB708C9B-97C8-4AC9-899B-DBF226AC9382} -> Sonic RecordNow Audio {AC76BA86-7AD7-1045-7B44-A91000000001} -> Adobe Reader 9.1.1 - Polish {AF19F291-F22F-4798-9662-525305AE9E48} -> WordPerfect Office 12 {B12665F4-4E93-4AB4-B7FC-37053B524629} -> Sonic RecordNow Copy {B2F25F71-D920-4288-A548-54CD253DEF14} -> SILKYPIX Developer Studio 3.0 SE {BB6D4A78-4BDB-4FBD-81CB-00DC2FC2BF41} -> Seagate Manager Installer {C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F} -> Microsoft .NET Framework 2.0 Service Pack 2 {C5074CC4-0E26-4716-A307-960272A90040} -> QuickSet {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} -> Microsoft .NET Framework 1.1 {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} -> Microsoft .NET Framework 3.5 SP1 {D103C4BA-F905-437A-8049-DB24763BBE36} -> Skype™ 4.2 {D642E38E-0D24-486C-9A2D-E316DD696F4B} -> Microsoft XML Parser {D9226EB1-C528-48AC-B423-BD9240E1F60B} -> Opera 9.62 {E646DCF0-5A68-11D5-B229-002078017FBF} -> Digital Line Detect {E93E5EF6-D361-481E-849D-F16EF5C78EBC} -> Musicmatch for Windows Media Player {ECC3713C-08A4-40E3-95F1-7D0704F1CE5E} -> PL-2303 USB-to-Serial {F333A33D-125C-32A2-8DCE-5C5D14231E27} -> Visual C++ 2008 x86 Runtime - (v9.0.30729) {F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01 -> Visual C++ 2008 x86 Runtime - v9.0.30729.01 {F5346614-B7C4-4E94-826A-E2363155233D} -> EasyCleaner ACDSee Classic -> ACDSee Classic Adobe AIR -> Adobe AIR Adobe Flash Player ActiveX -> Adobe Flash Player 10 ActiveX Adobe Flash Player Plugin -> Adobe Flash Player 10 Plugin Adobe SVG Viewer -> Adobe SVG Viewer 3.0 ALLPlayer V2.4_is1 -> ALLPlayer V2.4 Avira UnErase Personal -> Avira UnErase Personal AviScreen Classic (Freeware)_is1 -> AviScreen Classic Version 1.3 AXIS Media Control Embedded -> AXIS Media Control Embedded BitTorrent -> BitTorrent 3.2.1 Broadcom 802.11b Network Adapter -> Dell Wireless WLAN Card CNXT_MODEM_HDAUDIO_VEN_14F1&DEV_2BFA&SUBSYS_14F100C3 -> Conexant HDA D110 MDC V.92 Modem Davory -> Davory Dell Digital Jukebox Driver -> Dell Digital Jukebox Driver Digital Editions -> Adobe Digital Editions Disk Investigator -> Disk Investigator 1.5 EKF 2004 -> EKF 2004 FastStone Capture -> FastStone Capture 5.3 Find and Mount_is1 -> Find and Mount 2.31 FinePrint -> FinePrint FLVPlayer4Free Free FLV Player_is1 -> FLVPlayer4Free Free FLV Player 2.0.0.0 FreeUndelete -> FreeUndelete Gadu-Gadu -> Gadu-Gadu 7.6 Google Desktop -> Google Desktop GPS Photo Tagger -> GPS Photo Tagger V1.2.2 Handy Recovery 1.0 -> Handy Recovery 1.0 HijackThis -> HijackThis 2.0.0 InstallShield_{B2F25F71-D920-4288-A548-54CD253DEF14} -> SILKYPIX Developer Studio 3.0 SE InstallShield_{BB6D4A78-4BDB-4FBD-81CB-00DC2FC2BF41} -> Seagate Manager Installer Microsoft .NET Framework 1.1 (1033) -> Microsoft .NET Framework 1.1 Microsoft .NET Framework 2.0 Language Pack - PLK -> Microsoft .NET Framework 2.0 — pakiet języka polskiego Microsoft .NET Framework 3.5 SP1 -> Microsoft .NET Framework 3.5 SP1 MSCompPackV1 -> Microsoft Compression Client Pack 1.0 for Windows XP Odkurzacz 11.3_is1 -> Odkurzacz 11.3 oggcodecs -> oggcodecs 0.72.1838 Panda ActiveScan -> Panda ActiveScan Picasa 3 -> Picasa 3 ProCite 5 Demo -> ProCite 5 Demo Puran Defrag Free Edition_is1 -> Puran Defrag Free Edition 7.1 QuickTime -> QuickTime QuicktimeAlt_is1 -> QuickTime Alternative 1.77 RealAlt_is1 -> Real Alternative 1.7.5 Lite Recuva -> Recuva (remove only) Registry Mechanic_is1 -> Registry Mechanic 8.0 SequoiaView -> SequoiaView StreetPlugin -> Learn2 Player (Uninstall Only) SynTPDeinstKey -> Synaptics Pointing Device Driver UndeletePlus_is1 -> Undelete Plus 2.97 VLC media player -> VLC media player 1.1.5 WebCyberCoach_wtrb -> WebCyberCoach 3.2 Dell WGA -> Windows Genuine Advantage Validation Tool Windows Media Format Runtime -> Windows Media Format 11 runtime Windows Media Player -> Windows Media Player 11 Windows XP Service Pack -> Windows XP Service Pack 3 WinHTTrack Website Copier_is1 -> WinHTTrack Website Copier 3.43-9C WinRAR archiver -> Archiwizator WinRAR winusb0100 -> Microsoft WinUsb 1.0 WMFDist11 -> Windows Media Format 11 runtime wmp11 -> Windows Media Player 11 Wudf01005 -> Microsoft User-Mode Driver Framework Feature Pack 1.5 XviD_is1 -> XviD MPEG-4 Video Codec < Uninstall List [HKEY_USERS\S-1-5-21-2154615204-4275496255-3731553294-1006\] > -> HKEY_USERS\S-1-5-21-2154615204-4275496255-3731553294-1006\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ -> Juniper_Setup_Client -> Juniper Networks Setup Client < EventViewer Logs - Last 10 Errors > -> Event Information -> Description Application [ Error ] 2011-03-22 17:24:00 Computer Name = DB0SBF91 | Source = Application Hang | ID = 1002 -> Description = Hanging application iexplore.exe, version 6.0.2900.5512, hang module hungapp, version 0.0.0.0, hang address 0x00000000. Application [ Error ] 2011-03-22 17:24:04 Computer Name = DB0SBF91 | Source = Application Hang | ID = 1002 -> Description = Hanging application iexplore.exe, version 6.0.2900.5512, hang module hungapp, version 0.0.0.0, hang address 0x00000000. Application [ Error ] 2011-03-22 17:24:06 Computer Name = DB0SBF91 | Source = Application Hang | ID = 1002 -> Description = Hanging application iexplore.exe, version 6.0.2900.5512, hang module hungapp, version 0.0.0.0, hang address 0x00000000. Application [ Error ] 2011-03-26 05:16:38 Computer Name = DB0SBF91 | Source = Application Hang | ID = 1002 -> Description = Hanging application iexplore.exe, version 6.0.2900.5512, hang module hungapp, version 0.0.0.0, hang address 0x00000000. Application [ Error ] 2011-03-26 05:16:39 Computer Name = DB0SBF91 | Source = Application Hang | ID = 1002 -> Description = Hanging application iexplore.exe, version 6.0.2900.5512, hang module hungapp, version 0.0.0.0, hang address 0x00000000. Application [ Error ] 2011-03-26 05:16:45 Computer Name = DB0SBF91 | Source = Application Hang | ID = 1002 -> Description = Hanging application iexplore.exe, version 6.0.2900.5512, hang module hungapp, version 0.0.0.0, hang address 0x00000000. Application [ Error ] 2011-03-26 05:16:46 Computer Name = DB0SBF91 | Source = Application Hang | ID = 1002 -> Description = Hanging application iexplore.exe, version 6.0.2900.5512, hang module hungapp, version 0.0.0.0, hang address 0x00000000. Application [ Error ] 2011-03-26 05:16:51 Computer Name = DB0SBF91 | Source = Application Hang | ID = 1002 -> Description = Hanging application iexplore.exe, version 6.0.2900.5512, hang module hungapp, version 0.0.0.0, hang address 0x00000000. Application [ Error ] 2011-03-26 05:16:52 Computer Name = DB0SBF91 | Source = Application Hang | ID = 1002 -> Description = Hanging application iexplore.exe, version 6.0.2900.5512, hang module hungapp, version 0.0.0.0, hang address 0x00000000. Application [ Error ] 2011-03-26 05:16:53 Computer Name = DB0SBF91 | Source = Application Hang | ID = 1002 -> Description = Hanging application iexplore.exe, version 6.0.2900.5512, hang module hungapp, version 0.0.0.0, hang address 0x00000000. System [ Error ] 2011-03-26 05:21:16 Computer Name = DB0SBF91 | Source = Service Control Manager | ID = 7034 -> Description = The Java Quick Starter service terminated unexpectedly. It has done this 1 time(s). System [ Error ] 2011-03-26 05:21:16 Computer Name = DB0SBF91 | Source = Service Control Manager | ID = 7034 -> Description = The NICCONFIGSVC service terminated unexpectedly. It has done this 1 time(s). System [ Error ] 2011-03-26 05:25:47 Computer Name = DB0SBF91 | Source = Service Control Manager | ID = 7000 -> Description = The General Purpose USB Driver (adildr.sys) service failed to start due to the following error: %%1058 System [ Error ] 2011-03-26 05:25:47 Computer Name = DB0SBF91 | Source = Service Control Manager | ID = 7026 -> Description = The following boot-start or system-start driver(s) failed to load: Lbd System [ Error ] 2011-03-26 05:34:49 Computer Name = DB0SBF91 | Source = Service Control Manager | ID = 7034 -> Description = The Dell Wireless WLAN Tray Service service terminated unexpectedly. It has done this 1 time(s). System [ Error ] 2011-03-26 05:34:49 Computer Name = DB0SBF91 | Source = Service Control Manager | ID = 7034 -> Description = The Java Quick Starter service terminated unexpectedly. It has done this 1 time(s). System [ Error ] 2011-03-26 05:34:49 Computer Name = DB0SBF91 | Source = Service Control Manager | ID = 7034 -> Description = The Seagate Service service terminated unexpectedly. It has done this 1 time(s). System [ Error ] 2011-03-26 05:34:49 Computer Name = DB0SBF91 | Source = Service Control Manager | ID = 7034 -> Description = The NICCONFIGSVC service terminated unexpectedly. It has done this 1 time(s). System [ Error ] 2011-03-26 05:35:54 Computer Name = DB0SBF91 | Source = Service Control Manager | ID = 7000 -> Description = The General Purpose USB Driver (adildr.sys) service failed to start due to the following error: %%1058 System [ Error ] 2011-03-26 05:35:56 Computer Name = DB0SBF91 | Source = Service Control Manager | ID = 7026 -> Description = The following boot-start or system-start driver(s) failed to load: Lbd [Files/Folders - Created Within 30 Days] OTS.exe -> C:\Documents and Settings\X\My Documents\OTS.exe -> [2011-03-26 11:15:45 | 000,645,632 | ---- | C] (OldTimer Tools) Firefox Setup 4.0.exe -> C:\Documents and Settings\X\My Documents\Firefox Setup 4.0.exe -> [2011-03-23 03:10:18 | 013,307,400 | ---- | C] (Mozilla) --------- -> C:\Documents and Settings\X\My Documents\--------- -> [2011-03-21 15:06:41 | 000,000,000 | ---D | C] ------- -> C:\Documents and Settings\X\My Documents\------- -> [2011-03-19 12:42:30 | 000,000,000 | ---D | C] OTL.exe -> C:\Documents and Settings\X\My Documents\OTL.exe -> [2011-03-14 10:03:49 | 000,580,608 | ---- | C] (OldTimer Tools) ArcaVirMicroScan -> C:\Documents and Settings\X\Application Data\ArcaVirMicroScan -> [2011-03-11 17:39:10 | 000,000,000 | ---D | C] f-secure -> C:\Documents and Settings\X\Application Data\f-secure -> [2011-03-11 17:10:30 | 000,000,000 | ---D | C] F-Secure -> C:\Documents and Settings\All Users\Application Data\F-Secure -> [2011-03-11 17:09:34 | 000,000,000 | ---D | C] spoolerlogs -> C:\spoolerlogs -> [2011-03-10 02:08:27 | 000,000,000 | ---D | C] ----- -> C:\Documents and Settings\X\My Documents\----- -> [2011-03-05 16:44:25 | 000,000,000 | ---D | C] _AR programy -> C:\Documents and Settings\X\My Documents\_AR programy -> [2011-02-26 16:56:34 | 000,000,000 | ---D | C] [Files/Folders - Modified Within 30 Days] OTS.exe -> C:\Documents and Settings\X\My Documents\OTS.exe -> [2011-03-26 11:15:50 | 000,645,632 | ---- | M] (OldTimer Tools) 2011-03-26_110608.jpg -> C:\Documents and Settings\X\My Documents\2011-03-26_110608.jpg -> [2011-03-26 11:06:28 | 000,021,533 | ---- | M] () GoogleUpdateTaskMachineUA.job -> C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job -> [2011-03-26 11:01:00 | 000,001,036 | ---- | M] () GoogleUpdateTaskMachineCore.job -> C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job -> [2011-03-26 10:35:59 | 000,001,032 | ---- | M] () bootstat.dat -> C:\WINDOWS\bootstat.dat -> [2011-03-26 10:35:49 | 000,002,048 | --S- | M] () hiberfil.sys -> C:\hiberfil.sys -> [2011-03-26 10:35:48 | 527,892,480 | -HS- | M] () raport.html -> C:\Documents and Settings\X\My Documents\raport.html -> [2011-03-26 03:24:14 | 000,032,422 | ---- | M] () F66EE488CB.sys -> C:\WINDOWS\System32\F66EE488CB.sys -> [2011-03-25 23:48:31 | 000,000,152 | RHS- | M] () KGyGaAvL.sys -> C:\WINDOWS\System32\KGyGaAvL.sys -> [2011-03-25 23:48:30 | 000,007,518 | -HS- | M] () opr000TE -> C:\Documents and Settings\X\My Documents\opr000TE -> [2011-03-22 22:10:15 | 000,075,845 | ---- | M] () opr000PO -> C:\Documents and Settings\X\My Documents\opr000PO -> [2011-03-22 22:03:13 | 000,523,027 | ---- | M] () opr000PN -> C:\Documents and Settings\X\My Documents\opr000PN -> [2011-03-22 22:03:10 | 000,424,358 | ---- | M] () opr000OX -> C:\Documents and Settings\X\My Documents\opr000OX -> [2011-03-22 22:02:43 | 000,496,601 | ---- | M] () opr000OW -> C:\Documents and Settings\X\My Documents\opr000OW -> [2011-03-22 22:02:43 | 000,433,043 | ---- | M] () opr000PM -> C:\Documents and Settings\X\My Documents\opr000PM -> [2011-03-22 22:02:40 | 000,072,593 | ---- | M] () opr000OL -> C:\Documents and Settings\X\My Documents\opr000OL -> [2011-03-22 22:02:39 | 000,517,823 | ---- | M] () opr000OM -> C:\Documents and Settings\X\My Documents\opr000OM -> [2011-03-22 22:02:39 | 000,492,603 | ---- | M] () 1469271623.jpeg -> C:\Documents and Settings\X\My Documents\1469271623.jpeg -> [2011-03-22 21:38:56 | 000,072,593 | ---- | M] () opr0000Q -> C:\Documents and Settings\X\My Documents\opr0000Q -> [2011-03-22 21:23:57 | 000,258,124 | ---- | M] () opr00001a -> C:\Documents and Settings\X\My Documents\opr00001a -> [2011-03-22 21:23:45 | 000,420,463 | ---- | M] () opr00002 -> C:\Documents and Settings\X\My Documents\opr00002 -> [2011-03-22 21:23:44 | 000,279,782 | ---- | M] () opr0045L -> C:\Documents and Settings\X\My Documents\opr0045L -> [2011-03-22 20:28:22 | 000,012,708 | ---- | M] () opr003WH -> C:\Documents and Settings\X\My Documents\opr003WH -> [2011-03-22 20:23:38 | 000,064,022 | ---- | M] () opr003WG -> C:\Documents and Settings\X\My Documents\opr003WG -> [2011-03-22 20:23:34 | 000,129,852 | ---- | M] () opr003WB -> C:\Documents and Settings\X\My Documents\opr003WB -> [2011-03-22 20:23:28 | 000,044,486 | ---- | M] () opr003MA -> C:\Documents and Settings\X\My Documents\opr003MA -> [2011-03-22 20:15:51 | 000,041,261 | ---- | M] () opr003GC -> C:\Documents and Settings\X\My Documents\opr003GC -> [2011-03-22 20:12:03 | 000,014,051 | ---- | M] () opr00322 -> C:\Documents and Settings\X\My Documents\opr00322 -> [2011-03-22 19:59:22 | 000,050,228 | ---- | M] () QTFont.qfn -> C:\WINDOWS\QTFont.qfn -> [2011-03-22 12:59:43 | 000,054,156 | -H-- | M] () opr000KV -> C:\Documents and Settings\X\My Documents\opr000KV -> [2011-03-22 11:56:50 | 000,169,141 | ---- | M] () opr000KU -> C:\Documents and Settings\X\My Documents\opr000KU -> [2011-03-22 11:56:48 | 000,169,702 | ---- | M] () opr000KT -> C:\Documents and Settings\X\My Documents\opr000KT -> [2011-03-22 11:56:47 | 000,123,850 | ---- | M] () opr000KS -> C:\Documents and Settings\X\My Documents\opr000KS -> [2011-03-22 11:56:46 | 000,181,735 | ---- | M] () opr000KR -> C:\Documents and Settings\X\My Documents\opr000KR -> [2011-03-22 11:56:44 | 000,163,520 | ---- | M] () opr000KB -> C:\Documents and Settings\X\My Documents\opr000KB -> [2011-03-22 11:56:43 | 000,140,369 | ---- | M] () opr000K6 -> C:\Documents and Settings\X\My Documents\opr000K6 -> [2011-03-22 11:56:42 | 000,175,266 | ---- | M] () opr000KA -> C:\Documents and Settings\X\My Documents\opr000KA -> [2011-03-22 11:56:41 | 000,138,731 | ---- | M] () opr000K5 -> C:\Documents and Settings\X\My Documents\opr000K5 -> [2011-03-22 11:56:39 | 000,176,977 | ---- | M] () opr000JN -> C:\Documents and Settings\X\My Documents\opr000JN -> [2011-03-22 11:56:36 | 000,212,513 | ---- | M] () opr000K4 -> C:\Documents and Settings\X\My Documents\opr000K4 -> [2011-03-22 11:56:36 | 000,140,466 | ---- | M] () opr000K3 -> C:\Documents and Settings\X\My Documents\opr000K3 -> [2011-03-22 11:56:36 | 000,116,654 | ---- | M] () opr000K2 -> C:\Documents and Settings\X\My Documents\opr000K2 -> [2011-03-22 11:56:34 | 000,163,202 | ---- | M] () opr000JM -> C:\Documents and Settings\X\My Documents\opr000JM -> [2011-03-22 11:56:32 | 000,205,774 | ---- | M] () opr000JO -> C:\Documents and Settings\X\My Documents\opr000JO -> [2011-03-22 11:56:32 | 000,176,785 | ---- | M] () opr000JK -> C:\Documents and Settings\X\My Documents\opr000JK -> [2011-03-22 11:56:28 | 000,222,322 | ---- | M] () opr000JJ -> C:\Documents and Settings\X\My Documents\opr000JJ -> [2011-03-22 11:56:25 | 000,165,960 | ---- | M] () opr000JI -> C:\Documents and Settings\X\My Documents\opr000JI -> [2011-03-22 11:56:24 | 000,149,485 | ---- | M] () opr000JL -> C:\Documents and Settings\X\My Documents\opr000JL -> [2011-03-22 11:56:24 | 000,098,075 | ---- | M] () opr000IO -> C:\Documents and Settings\X\My Documents\opr000IO -> [2011-03-22 11:56:20 | 000,154,790 | ---- | M] () opr000IM -> C:\Documents and Settings\X\My Documents\opr000IM -> [2011-03-22 11:56:19 | 000,144,952 | ---- | M] () opr000IL -> C:\Documents and Settings\X\My Documents\opr000IL -> [2011-03-22 11:56:18 | 000,194,196 | ---- | M] () opr000IN -> C:\Documents and Settings\X\My Documents\opr000IN -> [2011-03-22 11:56:18 | 000,121,570 | ---- | M] () opr000II -> C:\Documents and Settings\X\My Documents\opr000II -> [2011-03-22 11:56:15 | 000,113,823 | ---- | M] () opr000IK -> C:\Documents and Settings\X\My Documents\opr000IK -> [2011-03-22 11:56:15 | 000,110,526 | ---- | M] () opr000IJ -> C:\Documents and Settings\X\My Documents\opr000IJ -> [2011-03-22 11:56:15 | 000,096,271 | ---- | M] () opr000IF -> C:\Documents and Settings\X\My Documents\opr000IF -> [2011-03-22 11:56:11 | 000,157,691 | ---- | M] () opr000IE -> C:\Documents and Settings\X\My Documents\opr000IE -> [2011-03-22 11:56:11 | 000,152,550 | ---- | M] () opr000IH -> C:\Documents and Settings\X\My Documents\opr000IH -> [2011-03-22 11:56:11 | 000,136,613 | ---- | M] () opr000IG -> C:\Documents and Settings\X\My Documents\opr000IG -> [2011-03-22 11:56:11 | 000,135,825 | ---- | M] () opr000F4 -> C:\Documents and Settings\X\My Documents\opr000F4 -> [2011-03-22 11:55:57 | 000,121,421 | ---- | M] () opr000B6 -> C:\Documents and Settings\X\My Documents\opr000B6 -> [2011-03-22 11:55:38 | 000,085,698 | ---- | M] () opr00070 -> C:\Documents and Settings\X\My Documents\opr00070 -> [2011-03-22 11:55:19 | 000,257,442 | ---- | M] () opr0006W -> C:\Documents and Settings\X\My Documents\opr0006W -> [2011-03-22 11:55:18 | 000,449,713 | ---- | M] () opr0006Y -> C:\Documents and Settings\X\My Documents\opr0006Y -> [2011-03-22 11:55:18 | 000,280,258 | ---- | M] () pwyly[1].gif -> C:\Documents and Settings\X\My Documents\pwyly[1].gif -> [2011-03-21 19:08:59 | 000,333,395 | ---- | M] () opr0010Q -> C:\Documents and Settings\X\My Documents\opr0010Q -> [2011-03-21 17:52:46 | 000,084,882 | ---- | M] () opr000RH -> C:\Documents and Settings\X\My Documents\opr000RH -> [2011-03-21 15:51:40 | 000,085,698 | ---- | M] () bledy.rtf -> C:\Documents and Settings\X\My Documents\bledy.rtf -> [2011-03-21 13:35:44 | 000,002,866 | ---- | M] () opr0009D -> C:\Documents and Settings\X\My Documents\opr0009D -> [2011-03-21 13:12:20 | 000,140,369 | ---- | M] () opr0009C -> C:\Documents and Settings\X\My Documents\opr0009C -> [2011-03-21 13:12:19 | 000,138,731 | ---- | M] () opr00094 -> C:\Documents and Settings\X\My Documents\opr00094 -> [2011-03-21 13:12:17 | 000,181,735 | ---- | M] () opr00092 -> C:\Documents and Settings\X\My Documents\opr00092 -> [2011-03-21 13:12:17 | 000,140,466 | ---- | M] () opr00093 -> C:\Documents and Settings\X\My Documents\opr00093 -> [2011-03-21 13:12:17 | 000,123,850 | ---- | M] () opr0008Z -> C:\Documents and Settings\X\My Documents\opr0008Z -> [2011-03-21 13:12:16 | 000,212,513 | ---- | M] () opr00091 -> C:\Documents and Settings\X\My Documents\opr00091 -> [2011-03-21 13:12:14 | 000,169,141 | ---- | M] () opr00090 -> C:\Documents and Settings\X\My Documents\opr00090 -> [2011-03-21 13:12:13 | 000,163,520 | ---- | M] () opr0008N -> C:\Documents and Settings\X\My Documents\opr0008N -> [2011-03-21 13:12:11 | 000,176,785 | ---- | M] () opr0008Y -> C:\Documents and Settings\X\My Documents\opr0008Y -> [2011-03-21 13:12:10 | 000,176,977 | ---- | M] () opr0008X -> C:\Documents and Settings\X\My Documents\opr0008X -> [2011-03-21 13:12:09 | 000,169,702 | ---- | M] () opr0008O -> C:\Documents and Settings\X\My Documents\opr0008O -> [2011-03-21 13:12:08 | 000,149,485 | ---- | M] () opr0008M -> C:\Documents and Settings\X\My Documents\opr0008M -> [2011-03-21 13:12:05 | 000,163,202 | ---- | M] () opr0008I -> C:\Documents and Settings\X\My Documents\opr0008I -> [2011-03-21 13:12:03 | 000,194,196 | ---- | M] () opr0008L -> C:\Documents and Settings\X\My Documents\opr0008L -> [2011-03-21 13:12:03 | 000,175,266 | ---- | M] () opr0008J -> C:\Documents and Settings\X\My Documents\opr0008J -> [2011-03-21 13:12:02 | 000,165,960 | ---- | M] () opr0007L -> C:\Documents and Settings\X\My Documents\opr0007L -> [2011-03-21 13:12:00 | 000,222,322 | ---- | M] () opr0008K -> C:\Documents and Settings\X\My Documents\opr0008K -> [2011-03-21 13:11:59 | 000,116,654 | ---- | M] () opr0007M -> C:\Documents and Settings\X\My Documents\opr0007M -> [2011-03-21 13:11:57 | 000,205,774 | ---- | M] () opr0007F -> C:\Documents and Settings\X\My Documents\opr0007F -> [2011-03-21 13:11:53 | 000,157,691 | ---- | M] () opr0007I -> C:\Documents and Settings\X\My Documents\opr0007I -> [2011-03-21 13:11:53 | 000,121,570 | ---- | M] () opr0007J -> C:\Documents and Settings\X\My Documents\opr0007J -> [2011-03-21 13:11:53 | 000,098,075 | ---- | M] () opr0007H -> C:\Documents and Settings\X\My Documents\opr0007H -> [2011-03-21 13:11:51 | 000,154,790 | ---- | M] () opr0007G -> C:\Documents and Settings\X\My Documents\opr0007G -> [2011-03-21 13:11:51 | 000,144,952 | ---- | M] () opr0006H -> C:\Documents and Settings\X\My Documents\opr0006H -> [2011-03-21 13:11:46 | 000,113,823 | ---- | M] () opr0006J -> C:\Documents and Settings\X\My Documents\opr0006J -> [2011-03-21 13:11:46 | 000,110,526 | ---- | M] () opr0006G -> C:\Documents and Settings\X\My Documents\opr0006G -> [2011-03-21 13:11:44 | 000,096,271 | ---- | M] () opr0006E -> C:\Documents and Settings\X\My Documents\opr0006E -> [2011-03-21 13:11:41 | 000,152,550 | ---- | M] () opr0006F -> C:\Documents and Settings\X\My Documents\opr0006F -> [2011-03-21 13:11:41 | 000,135,825 | ---- | M] () opr0006D -> C:\Documents and Settings\X\My Documents\opr0006D -> [2011-03-21 13:11:40 | 000,136,613 | ---- | M] () opr00042 -> C:\Documents and Settings\X\My Documents\opr00042 -> [2011-03-21 13:11:24 | 000,027,679 | ---- | M] () opr00019 -> C:\Documents and Settings\X\My Documents\opr00019 -> [2011-03-21 13:11:20 | 000,256,207 | ---- | M] () opr00018 -> C:\Documents and Settings\X\My Documents\opr00018 -> [2011-03-21 13:11:16 | 000,280,942 | ---- | M] () opr00001 -> C:\Documents and Settings\X\My Documents\opr00001 -> [2011-03-21 13:11:12 | 000,386,251 | ---- | M] () bledy2.rtf -> C:\Documents and Settings\X\My Documents\bledy2.rtf -> [2011-03-21 12:58:14 | 000,005,443 | ---- | M] () 497094.text -> C:\Documents and Settings\X\My Documents\497094.text -> [2011-03-21 12:56:27 | 000,130,905 | ---- | M] () 497091.text -> C:\Documents and Settings\X\My Documents\497091.text -> [2011-03-21 12:53:57 | 000,019,621 | ---- | M] () DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini -> C:\Documents and Settings\X\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini -> [2011-03-21 11:43:01 | 000,111,616 | ---- | M] () Mini032111-01.dmp -> C:\Documents and Settings\X\My Documents\Mini032111-01.dmp -> [2011-03-21 01:22:58 | 000,065,536 | ---- | M] () MEMORY.DMP -> C:\WINDOWS\MEMORY.DMP -> [2011-03-21 01:22:29 | 119,250,944 | ---- | M] () r47tocbb.exe -> C:\Documents and Settings\X\My Documents\r47tocbb.exe -> [2011-03-20 23:20:38 | 000,301,568 | ---- | M] () OTL.exe -> C:\Documents and Settings\X\My Documents\OTL.exe -> [2011-03-20 22:51:41 | 000,580,608 | ---- | M] (OldTimer Tools) ArcaVirMicroScan.lnk -> C:\Documents and Settings\X\Desktop\ArcaVirMicroScan.lnk -> [2011-03-11 18:28:24 | 000,001,315 | ---- | M] () housecall.guid.cache -> C:\Documents and Settings\X\Local Settings\Application Data\housecall.guid.cache -> [2011-03-11 16:06:51 | 000,000,036 | ---- | M] () grel.rtf -> C:\Documents and Settings\X\My Documents\grel.rtf -> [2011-03-10 13:26:26 | 000,005,927 | ---- | M] () imsins.BAK -> C:\WINDOWS\imsins.BAK -> [2011-03-10 02:16:51 | 000,001,374 | ---- | M] () Skype.lnk -> C:\Documents and Settings\All Users\Desktop\Skype.lnk -> [2011-03-09 12:32:05 | 000,002,267 | ---- | M] () sp.rtf -> C:\Documents and Settings\X\My Documents\sp.rtf -> [2011-03-06 22:34:03 | 000,006,150 | ---- | M] () WORDPAD.INI -> C:\WINDOWS\WORDPAD.INI -> [2011-03-01 18:46:47 | 000,000,754 | ---- | M] () [Files - No Company Name] 2011-03-26_110608.jpg -> C:\Documents and Settings\X\My Documents\2011-03-26_110608.jpg -> [2011-03-26 11:06:28 | 000,021,533 | ---- | C] () opr000TE -> C:\Documents and Settings\X\My Documents\opr000TE -> [2011-03-22 22:10:15 | 000,075,845 | ---- | C] () opr000PO -> C:\Documents and Settings\X\My Documents\opr000PO -> [2011-03-22 22:02:41 | 000,523,027 | ---- | C] () opr000PN -> C:\Documents and Settings\X\My Documents\opr000PN -> [2011-03-22 22:02:39 | 000,424,358 | ---- | C] () opr000PM -> C:\Documents and Settings\X\My Documents\opr000PM -> [2011-03-22 22:02:33 | 000,072,593 | ---- | C] () opr000OX -> C:\Documents and Settings\X\My Documents\opr000OX -> [2011-03-22 22:02:08 | 000,496,601 | ---- | C] () opr000OW -> C:\Documents and Settings\X\My Documents\opr000OW -> [2011-03-22 22:02:08 | 000,433,043 | ---- | C] () opr000OM -> C:\Documents and Settings\X\My Documents\opr000OM -> [2011-03-22 22:02:03 | 000,492,603 | ---- | C] () opr000OL -> C:\Documents and Settings\X\My Documents\opr000OL -> [2011-03-22 22:01:56 | 000,517,823 | ---- | C] () 1469271623.jpeg -> C:\Documents and Settings\X\My Documents\1469271623.jpeg -> [2011-03-22 21:38:48 | 000,072,593 | ---- | C] () opr0000Q -> C:\Documents and Settings\X\My Documents\opr0000Q -> [2011-03-22 21:23:45 | 000,258,124 | ---- | C] () opr00002 -> C:\Documents and Settings\X\My Documents\opr00002 -> [2011-03-22 21:23:25 | 000,279,782 | ---- | C] () opr00001a -> C:\Documents and Settings\X\My Documents\opr00001a -> [2011-03-22 21:23:20 | 000,420,463 | ---- | C] () opr0045L -> C:\Documents and Settings\X\My Documents\opr0045L -> [2011-03-22 20:28:22 | 000,012,708 | ---- | C] () opr003WH -> C:\Documents and Settings\X\My Documents\opr003WH -> [2011-03-22 20:23:38 | 000,064,022 | ---- | C] () opr003WG -> C:\Documents and Settings\X\My Documents\opr003WG -> [2011-03-22 20:23:34 | 000,129,852 | ---- | C] () opr003WB -> C:\Documents and Settings\X\My Documents\opr003WB -> [2011-03-22 20:23:28 | 000,044,486 | ---- | C] () opr003MA -> C:\Documents and Settings\X\My Documents\opr003MA -> [2011-03-22 20:15:51 | 000,041,261 | ---- | C] () opr003GC -> C:\Documents and Settings\X\My Documents\opr003GC -> [2011-03-22 20:12:03 | 000,014,051 | ---- | C] () opr00322 -> C:\Documents and Settings\X\My Documents\opr00322 -> [2011-03-22 19:59:22 | 000,050,228 | ---- | C] () opr000KV -> C:\Documents and Settings\X\My Documents\opr000KV -> [2011-03-22 11:56:48 | 000,169,141 | ---- | C] () opr000KU -> C:\Documents and Settings\X\My Documents\opr000KU -> [2011-03-22 11:56:45 | 000,169,702 | ---- | C] () opr000KT -> C:\Documents and Settings\X\My Documents\opr000KT -> [2011-03-22 11:56:45 | 000,123,850 | ---- | C] () opr000KS -> C:\Documents and Settings\X\My Documents\opr000KS -> [2011-03-22 11:56:43 | 000,181,735 | ---- | C] () opr000KR -> C:\Documents and Settings\X\My Documents\opr000KR -> [2011-03-22 11:56:42 | 000,163,520 | ---- | C] () opr000KB -> C:\Documents and Settings\X\My Documents\opr000KB -> [2011-03-22 11:56:39 | 000,140,369 | ---- | C] () opr000KA -> C:\Documents and Settings\X\My Documents\opr000KA -> [2011-03-22 11:56:39 | 000,138,731 | ---- | C] () opr000K6 -> C:\Documents and Settings\X\My Documents\opr000K6 -> [2011-03-22 11:56:38 | 000,175,266 | ---- | C] () opr000K5 -> C:\Documents and Settings\X\My Documents\opr000K5 -> [2011-03-22 11:56:36 | 000,176,977 | ---- | C] () opr000K4 -> C:\Documents and Settings\X\My Documents\opr000K4 -> [2011-03-22 11:56:34 | 000,140,466 | ---- | C] () opr000K3 -> C:\Documents and Settings\X\My Documents\opr000K3 -> [2011-03-22 11:56:34 | 000,116,654 | ---- | C] () opr000K2 -> C:\Documents and Settings\X\My Documents\opr000K2 -> [2011-03-22 11:56:30 | 000,163,202 | ---- | C] () opr000JO -> C:\Documents and Settings\X\My Documents\opr000JO -> [2011-03-22 11:56:28 | 000,176,785 | ---- | C] () opr000JN -> C:\Documents and Settings\X\My Documents\opr000JN -> [2011-03-22 11:56:27 | 000,212,513 | ---- | C] () opr000JM -> C:\Documents and Settings\X\My Documents\opr000JM -> [2011-03-22 11:56:27 | 000,205,774 | ---- | C] () opr000JL -> C:\Documents and Settings\X\My Documents\opr000JL -> [2011-03-22 11:56:22 | 000,098,075 | ---- | C] () opr000JK -> C:\Documents and Settings\X\My Documents\opr000JK -> [2011-03-22 11:56:21 | 000,222,322 | ---- | C] () opr000JJ -> C:\Documents and Settings\X\My Documents\opr000JJ -> [2011-03-22 11:56:20 | 000,165,960 | ---- | C] () opr000JI -> C:\Documents and Settings\X\My Documents\opr000JI -> [2011-03-22 11:56:20 | 000,149,485 | ---- | C] () opr000IO -> C:\Documents and Settings\X\My Documents\opr000IO -> [2011-03-22 11:56:17 | 000,154,790 | ---- | C] () opr000IN -> C:\Documents and Settings\X\My Documents\opr000IN -> [2011-03-22 11:56:17 | 000,121,570 | ---- | C] () opr000IM -> C:\Documents and Settings\X\My Documents\opr000IM -> [2011-03-22 11:56:16 | 000,144,952 | ---- | C] () opr000IL -> C:\Documents and Settings\X\My Documents\opr000IL -> [2011-03-22 11:56:13 | 000,194,196 | ---- | C] () opr000II -> C:\Documents and Settings\X\My Documents\opr000II -> [2011-03-22 11:56:13 | 000,113,823 | ---- | C] () opr000IK -> C:\Documents and Settings\X\My Documents\opr000IK -> [2011-03-22 11:56:13 | 000,110,526 | ---- | C] () opr000IJ -> C:\Documents and Settings\X\My Documents\opr000IJ -> [2011-03-22 11:56:13 | 000,096,271 | ---- | C] () opr000IH -> C:\Documents and Settings\X\My Documents\opr000IH -> [2011-03-22 11:56:08 | 000,136,613 | ---- | C] () opr000IG -> C:\Documents and Settings\X\My Documents\opr000IG -> [2011-03-22 11:56:08 | 000,135,825 | ---- | C] () opr000IF -> C:\Documents and Settings\X\My Documents\opr000IF -> [2011-03-22 11:56:07 | 000,157,691 | ---- | C] () opr000IE -> C:\Documents and Settings\X\My Documents\opr000IE -> [2011-03-22 11:56:07 | 000,152,550 | ---- | C] () opr000F4 -> C:\Documents and Settings\X\My Documents\opr000F4 -> [2011-03-22 11:55:56 | 000,121,421 | ---- | C] () opr000B6 -> C:\Documents and Settings\X\My Documents\opr000B6 -> [2011-03-22 11:55:37 | 000,085,698 | ---- | C] () opr00070 -> C:\Documents and Settings\X\My Documents\opr00070 -> [2011-03-22 11:55:16 | 000,257,442 | ---- | C] () opr0006Y -> C:\Documents and Settings\X\My Documents\opr0006Y -> [2011-03-22 11:55:13 | 000,280,258 | ---- | C] () opr0006W -> C:\Documents and Settings\X\My Documents\opr0006W -> [2011-03-22 11:55:11 | 000,449,713 | ---- | C] () pwyly[1].gif -> C:\Documents and Settings\X\My Documents\pwyly[1].gif -> [2011-03-21 19:08:57 | 000,333,395 | ---- | C] () opr0010Q -> C:\Documents and Settings\X\My Documents\opr0010Q -> [2011-03-21 17:52:46 | 000,084,882 | ---- | C] () opr000RH -> C:\Documents and Settings\X\My Documents\opr000RH -> [2011-03-21 15:51:39 | 000,085,698 | ---- | C] () opr0009D -> C:\Documents and Settings\X\My Documents\opr0009D -> [2011-03-21 13:12:19 | 000,140,369 | ---- | C] () opr0009C -> C:\Documents and Settings\X\My Documents\opr0009C -> [2011-03-21 13:12:18 | 000,138,731 | ---- | C] () opr00094 -> C:\Documents and Settings\X\My Documents\opr00094 -> [2011-03-21 13:12:15 | 000,181,735 | ---- | C] () opr00093 -> C:\Documents and Settings\X\My Documents\opr00093 -> [2011-03-21 13:12:15 | 000,123,850 | ---- | C] () opr00092 -> C:\Documents and Settings\X\My Documents\opr00092 -> [2011-03-21 13:12:14 | 000,140,466 | ---- | C] () opr00091 -> C:\Documents and Settings\X\My Documents\opr00091 -> [2011-03-21 13:12:12 | 000,169,141 | ---- | C] () opr00090 -> C:\Documents and Settings\X\My Documents\opr00090 -> [2011-03-21 13:12:11 | 000,163,520 | ---- | C] () opr0008Z -> C:\Documents and Settings\X\My Documents\opr0008Z -> [2011-03-21 13:12:10 | 000,212,513 | ---- | C] () opr0008Y -> C:\Documents and Settings\X\My Documents\opr0008Y -> [2011-03-21 13:12:07 | 000,176,977 | ---- | C] () opr0008X -> C:\Documents and Settings\X\My Documents\opr0008X -> [2011-03-21 13:12:07 | 000,169,702 | ---- | C] () opr0008N -> C:\Documents and Settings\X\My Documents\opr0008N -> [2011-03-21 13:12:05 | 000,176,785 | ---- | C] () opr0008O -> C:\Documents and Settings\X\My Documents\opr0008O -> [2011-03-21 13:12:05 | 000,149,485 | ---- | C] () opr0008M -> C:\Documents and Settings\X\My Documents\opr0008M -> [2011-03-21 13:12:02 | 000,163,202 | ---- | C] () opr0008L -> C:\Documents and Settings\X\My Documents\opr0008L -> [2011-03-21 13:12:01 | 000,175,266 | ---- | C] () opr0008K -> C:\Documents and Settings\X\My Documents\opr0008K -> [2011-03-21 13:11:58 | 000,116,654 | ---- | C] () opr0008I -> C:\Documents and Settings\X\My Documents\opr0008I -> [2011-03-21 13:11:57 | 000,194,196 | ---- | C] () opr0008J -> C:\Documents and Settings\X\My Documents\opr0008J -> [2011-03-21 13:11:57 | 000,165,960 | ---- | C] () opr0007L -> C:\Documents and Settings\X\My Documents\opr0007L -> [2011-03-21 13:11:54 | 000,222,322 | ---- | C] () opr0007M -> C:\Documents and Settings\X\My Documents\opr0007M -> [2011-03-21 13:11:54 | 000,205,774 | ---- | C] () opr0007J -> C:\Documents and Settings\X\My Documents\opr0007J -> [2011-03-21 13:11:52 | 000,098,075 | ---- | C] () opr0007I -> C:\Documents and Settings\X\My Documents\opr0007I -> [2011-03-21 13:11:51 | 000,121,570 | ---- | C] () opr0007H -> C:\Documents and Settings\X\My Documents\opr0007H -> [2011-03-21 13:11:49 | 000,154,790 | ---- | C] () opr0007G -> C:\Documents and Settings\X\My Documents\opr0007G -> [2011-03-21 13:11:48 | 000,144,952 | ---- | C] () opr0007F -> C:\Documents and Settings\X\My Documents\opr0007F -> [2011-03-21 13:11:47 | 000,157,691 | ---- | C] () opr0006J -> C:\Documents and Settings\X\My Documents\opr0006J -> [2011-03-21 13:11:45 | 000,110,526 | ---- | C] () opr0006H -> C:\Documents and Settings\X\My Documents\opr0006H -> [2011-03-21 13:11:44 | 000,113,823 | ---- | C] () opr0006G -> C:\Documents and Settings\X\My Documents\opr0006G -> [2011-03-21 13:11:43 | 000,096,271 | ---- | C] () opr0006F -> C:\Documents and Settings\X\My Documents\opr0006F -> [2011-03-21 13:11:40 | 000,135,825 | ---- | C] () opr0006E -> C:\Documents and Settings\X\My Documents\opr0006E -> [2011-03-21 13:11:39 | 000,152,550 | ---- | C] () opr0006D -> C:\Documents and Settings\X\My Documents\opr0006D -> [2011-03-21 13:11:38 | 000,136,613 | ---- | C] () opr00042 -> C:\Documents and Settings\X\My Documents\opr00042 -> [2011-03-21 13:11:24 | 000,027,679 | ---- | C] () opr00019 -> C:\Documents and Settings\X\My Documents\opr00019 -> [2011-03-21 13:11:18 | 000,256,207 | ---- | C] () opr00018 -> C:\Documents and Settings\X\My Documents\opr00018 -> [2011-03-21 13:11:12 | 000,280,942 | ---- | C] () opr00001 -> C:\Documents and Settings\X\My Documents\opr00001 -> [2011-03-21 13:11:04 | 000,386,251 | ---- | C] () bledy2.rtf -> C:\Documents and Settings\X\My Documents\bledy2.rtf -> [2011-03-21 12:58:14 | 000,005,443 | ---- | C] () 497094.text -> C:\Documents and Settings\X\My Documents\497094.text -> [2011-03-21 12:56:27 | 000,130,905 | ---- | C] () 497091.text -> C:\Documents and Settings\X\My Documents\497091.text -> [2011-03-21 12:53:57 | 000,019,621 | ---- | C] () Mini032111-01.dmp -> C:\Documents and Settings\X\My Documents\Mini032111-01.dmp -> [2011-03-21 01:23:37 | 000,065,536 | ---- | C] () r47tocbb.exe -> C:\Documents and Settings\X\My Documents\r47tocbb.exe -> [2011-03-20 23:20:35 | 000,301,568 | ---- | C] () bledy.rtf -> C:\Documents and Settings\X\My Documents\bledy.rtf -> [2011-03-19 12:38:39 | 000,002,866 | ---- | C] () ArcaVirMicroScan.lnk -> C:\Documents and Settings\X\Desktop\ArcaVirMicroScan.lnk -> [2011-03-11 18:28:23 | 000,001,315 | ---- | C] () housecall.guid.cache -> C:\Documents and Settings\X\Local Settings\Application Data\housecall.guid.cache -> [2011-03-11 16:06:51 | 000,000,036 | ---- | C] () grel.rtf -> C:\Documents and Settings\X\My Documents\grel.rtf -> [2011-03-07 22:57:58 | 000,005,927 | ---- | C] () sp.rtf -> C:\Documents and Settings\X\My Documents\sp.rtf -> [2011-03-06 17:40:27 | 000,006,150 | ---- | C] () MSVCRT10.DLL -> C:\WINDOWS\System32\MSVCRT10.DLL -> [2010-07-10 14:29:02 | 000,210,944 | ---- | C] () ProCite5.INI -> C:\WINDOWS\ProCite5.INI -> [2010-06-23 09:28:08 | 000,000,000 | ---- | C] () mlfcache.dat -> C:\WINDOWS\System32\mlfcache.dat -> [2010-04-05 18:36:31 | 000,028,596 | -H-- | C] () naglos.INI -> C:\WINDOWS\naglos.INI -> [2010-01-13 13:17:55 | 000,000,020 | ---- | C] () ezsidmv.dat -> C:\WINDOWS\System32\ezsidmv.dat -> [2009-10-30 11:12:00 | 000,000,056 | -H-- | C] () adidsl.ini -> C:\WINDOWS\adidsl.ini -> [2009-04-17 18:55:28 | 000,000,169 | ---- | C] () Fast800.ini -> C:\WINDOWS\Fast800.ini -> [2009-04-17 18:55:28 | 000,000,021 | ---- | C] () adirasx64.exe -> C:\WINDOWS\adirasx64.exe -> [2009-04-17 18:55:18 | 000,253,008 | ---- | C] () adiras.exe -> C:\WINDOWS\adiras.exe -> [2009-04-17 18:55:18 | 000,194,128 | ---- | C] () IPDETECT.EXE -> C:\WINDOWS\System32\IPDETECT.EXE -> [2009-04-17 18:55:16 | 000,127,456 | ---- | C] () autoclk.exe -> C:\WINDOWS\autoclk.exe -> [2009-04-17 18:55:14 | 000,176,128 | ---- | C] () L1E9P2.BIN -> C:\WINDOWS\System32\drivers\L1E9P2.BIN -> [2009-04-17 18:55:14 | 000,152,126 | ---- | C] () coclassfast.dll -> C:\WINDOWS\System32\coclassfast.dll -> [2009-04-17 18:55:13 | 000,200,704 | ---- | C] () enddisk32.exe -> C:\WINDOWS\enddisk32.exe -> [2009-04-17 18:55:13 | 000,024,576 | ---- | C] () ADADIX16.DLL -> C:\WINDOWS\System32\ADADIX16.DLL -> [2009-04-17 18:55:12 | 000,046,892 | ---- | C] () L1E4I2.BIN -> C:\WINDOWS\System32\drivers\L1E4I2.BIN -> [2009-04-17 18:55:11 | 000,152,308 | ---- | C] () L1E4I1.BIN -> C:\WINDOWS\System32\drivers\L1E4I1.BIN -> [2009-04-17 18:55:11 | 000,152,306 | ---- | C] () L1E4I0.BIN -> C:\WINDOWS\System32\drivers\L1E4I0.BIN -> [2009-04-17 18:55:11 | 000,152,306 | ---- | C] () L1E4P2.BIN -> C:\WINDOWS\System32\drivers\L1E4P2.BIN -> [2009-04-17 18:55:11 | 000,152,146 | ---- | C] () L1E4P1.BIN -> C:\WINDOWS\System32\drivers\L1E4P1.BIN -> [2009-04-17 18:55:11 | 000,152,145 | ---- | C] () L1E4P0.BIN -> C:\WINDOWS\System32\drivers\L1E4P0.BIN -> [2009-04-17 18:55:11 | 000,152,145 | ---- | C] () L1E9P1.BIN -> C:\WINDOWS\System32\drivers\L1E9P1.BIN -> [2009-04-17 18:55:11 | 000,152,126 | ---- | C] () L1E9P0.BIN -> C:\WINDOWS\System32\drivers\L1E9P0.BIN -> [2009-04-17 18:55:11 | 000,152,126 | ---- | C] () L1E9I2.BIN -> C:\WINDOWS\System32\drivers\L1E9I2.BIN -> [2009-04-17 18:55:11 | 000,152,126 | ---- | C] () L1E9I1.BIN -> C:\WINDOWS\System32\drivers\L1E9I1.BIN -> [2009-04-17 18:55:11 | 000,152,126 | ---- | C] () L1E9I0.BIN -> C:\WINDOWS\System32\drivers\L1E9I0.BIN -> [2009-04-17 18:55:11 | 000,152,126 | ---- | C] () L1E4D2.BIN -> C:\WINDOWS\System32\drivers\L1E4D2.BIN -> [2009-04-17 18:55:11 | 000,152,036 | ---- | C] () L1E4D0.BIN -> C:\WINDOWS\System32\drivers\L1E4D0.BIN -> [2009-04-17 18:55:11 | 000,152,034 | ---- | C] () L1E4D1.BIN -> C:\WINDOWS\System32\drivers\L1E4D1.BIN -> [2009-04-17 18:55:09 | 000,152,034 | ---- | C] () fpga.bin -> C:\WINDOWS\System32\drivers\fpga.bin -> [2009-04-17 18:55:09 | 000,022,395 | ---- | C] () Disktool.INI -> C:\WINDOWS\Disktool.INI -> [2009-01-27 12:03:47 | 000,007,207 | R--- | C] () fwupgrade.ini -> C:\WINDOWS\fwupgrade.ini -> [2009-01-27 12:03:47 | 000,006,399 | R--- | C] () PlaySnd.INI -> C:\WINDOWS\PlaySnd.INI -> [2009-01-27 12:03:47 | 000,003,677 | R--- | C] () PICSDK.ini -> C:\WINDOWS\System32\PICSDK.ini -> [2008-11-15 11:49:07 | 000,000,097 | ---- | C] () EPPICPrinterDB.dat -> C:\WINDOWS\System32\EPPICPrinterDB.dat -> [2008-11-15 11:49:06 | 000,111,932 | ---- | C] () EPPICPattern131.dat -> C:\WINDOWS\System32\EPPICPattern131.dat -> [2008-11-15 11:49:06 | 000,031,053 | ---- | C] () EPPICPattern121.dat -> C:\WINDOWS\System32\EPPICPattern121.dat -> [2008-11-15 11:49:06 | 000,027,417 | ---- | C] () EPPICPattern1.dat -> C:\WINDOWS\System32\EPPICPattern1.dat -> [2008-11-15 11:49:06 | 000,026,154 | ---- | C] () EPPICPattern3.dat -> C:\WINDOWS\System32\EPPICPattern3.dat -> [2008-11-15 11:49:06 | 000,024,903 | ---- | C] () EPPICPattern5.dat -> C:\WINDOWS\System32\EPPICPattern5.dat -> [2008-11-15 11:49:06 | 000,021,390 | ---- | C] () EPPICPattern2.dat -> C:\WINDOWS\System32\EPPICPattern2.dat -> [2008-11-15 11:49:06 | 000,020,148 | ---- | C] () EPPICPattern4.dat -> C:\WINDOWS\System32\EPPICPattern4.dat -> [2008-11-15 11:49:06 | 000,011,811 | ---- | C] () EPPICPattern6.dat -> C:\WINDOWS\System32\EPPICPattern6.dat -> [2008-11-15 11:49:06 | 000,004,943 | ---- | C] () EPPICPresetData_DU.dat -> C:\WINDOWS\System32\EPPICPresetData_DU.dat -> [2008-11-15 11:49:06 | 000,001,146 | ---- | C] () EPPICPresetData_PT.dat -> C:\WINDOWS\System32\EPPICPresetData_PT.dat -> [2008-11-15 11:49:06 | 000,001,139 | ---- | C] () EPPICPresetData_BP.dat -> C:\WINDOWS\System32\EPPICPresetData_BP.dat -> [2008-11-15 11:49:06 | 000,001,139 | ---- | C] () EPPICPresetData_ES.dat -> C:\WINDOWS\System32\EPPICPresetData_ES.dat -> [2008-11-15 11:49:06 | 000,001,136 | ---- | C] () EPPICPresetData_FR.dat -> C:\WINDOWS\System32\EPPICPresetData_FR.dat -> [2008-11-15 11:49:06 | 000,001,129 | ---- | C] () EPPICPresetData_CF.dat -> C:\WINDOWS\System32\EPPICPresetData_CF.dat -> [2008-11-15 11:49:06 | 000,001,129 | ---- | C] () EPPICPresetData_IT.dat -> C:\WINDOWS\System32\EPPICPresetData_IT.dat -> [2008-11-15 11:49:06 | 000,001,120 | ---- | C] () EPPICPresetData_GE.dat -> C:\WINDOWS\System32\EPPICPresetData_GE.dat -> [2008-11-15 11:49:06 | 000,001,107 | ---- | C] () EPPICPresetData_EN.dat -> C:\WINDOWS\System32\EPPICPresetData_EN.dat -> [2008-11-15 11:49:06 | 000,001,104 | ---- | C] () xvidcore.dll -> C:\WINDOWS\System32\xvidcore.dll -> [2008-03-23 17:40:25 | 000,755,027 | ---- | C] () OggDS.dll -> C:\WINDOWS\System32\OggDS.dll -> [2008-03-23 17:30:58 | 000,237,568 | ---- | C] () vorbisenc.dll -> C:\WINDOWS\System32\vorbisenc.dll -> [2008-03-23 17:30:51 | 000,921,600 | ---- | C] () vorbis.dll -> C:\WINDOWS\System32\vorbis.dll -> [2008-03-23 17:30:23 | 000,188,416 | ---- | C] () ogg.dll -> C:\WINDOWS\System32\ogg.dll -> [2008-03-23 17:30:17 | 000,045,056 | ---- | C] () cpuinf32.dll -> C:\WINDOWS\System32\cpuinf32.dll -> [2008-03-23 17:29:17 | 000,009,216 | ---- | C] () bdoscandel.exe -> C:\WINDOWS\bdoscandel.exe -> [2008-01-09 15:01:48 | 000,053,248 | ---- | C] () bdoscandellang.ini -> C:\WINDOWS\bdoscandellang.ini -> [2008-01-09 15:01:48 | 000,000,453 | ---- | C] () ZPORT4AS.dll -> C:\WINDOWS\System32\ZPORT4AS.dll -> [2007-05-12 13:26:45 | 000,011,776 | ---- | C] () WORDPAD.INI -> C:\WINDOWS\WORDPAD.INI -> [2006-12-14 19:38:23 | 000,000,754 | ---- | C] () STImgBrowser.INI -> C:\WINDOWS\STImgBrowser.INI -> [2006-09-12 15:07:19 | 000,000,739 | ---- | C] () msoffice.ini -> C:\WINDOWS\msoffice.ini -> [2006-09-09 08:08:49 | 000,000,002 | ---- | C] () adiras.ini -> C:\WINDOWS\adiras.ini -> [2006-02-26 16:25:14 | 000,000,990 | ---- | C] () DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini -> C:\Documents and Settings\X\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini -> [2006-02-25 17:27:35 | 000,111,616 | ---- | C] () PFP120JPR.{PB -> C:\Documents and Settings\X\Application Data\PFP120JPR.{PB -> [2006-02-21 15:08:42 | 000,061,678 | ---- | C] () PFP120JCM.{PB -> C:\Documents and Settings\X\Application Data\PFP120JCM.{PB -> [2006-02-21 15:08:42 | 000,012,358 | ---- | C] () KGyGaAvL.sys -> C:\WINDOWS\System32\KGyGaAvL.sys -> [2006-02-18 17:46:55 | 000,007,518 | -HS- | C] () F66EE488CB.sys -> C:\WINDOWS\System32\F66EE488CB.sys -> [2006-02-18 17:46:55 | 000,000,152 | RHS- | C] () smscfg.ini -> C:\WINDOWS\smscfg.ini -> [2006-02-06 06:26:38 | 000,000,061 | ---- | C] () UNWISE.EXE -> C:\WINDOWS\UNWISE.EXE -> [2006-02-06 06:18:09 | 000,149,504 | ---- | C] () wininit.ini -> C:\WINDOWS\wininit.ini -> [2006-02-06 06:12:08 | 000,000,138 | ---- | C] () nsreg.dat -> C:\WINDOWS\nsreg.dat -> [2006-02-06 06:10:21 | 000,000,335 | ---- | C] () QSLLPSVCShare -> C:\Documents and Settings\All Users\Application Data\QSLLPSVCShare -> [2006-02-06 06:07:03 | 000,000,004 | -H-- | C] () AegisI5.exe -> C:\WINDOWS\System32\AegisI5.exe -> [2006-02-06 06:06:23 | 000,192,512 | ---- | C] () WLTRYSVC.EXE -> C:\WINDOWS\System32\WLTRYSVC.EXE -> [2006-02-06 06:06:23 | 000,065,536 | ---- | C] () setpwrcg.exe -> C:\WINDOWS\setpwrcg.exe -> [2006-02-06 05:43:16 | 000,049,152 | ---- | C] () OEMINFO.INI -> C:\WINDOWS\System32\OEMINFO.INI -> [2006-02-06 05:42:38 | 000,000,391 | ---- | C] () px.ini -> C:\WINDOWS\System32\px.ini -> [2005-04-10 00:04:54 | 000,000,000 | ---- | C] () xvidvfw.dll -> C:\WINDOWS\System32\xvidvfw.dll -> [2005-04-04 12:52:42 | 000,180,224 | ---- | C] () ADFUUD.SYS -> C:\WINDOWS\System32\drivers\ADFUUD.SYS -> [2004-09-16 13:26:40 | 000,012,634 | ---- | C] () ADFUUD.SYS -> C:\WINDOWS\ADFUUD.SYS -> [2004-09-16 13:26:40 | 000,012,634 | ---- | C] () orun32.ini -> C:\WINDOWS\orun32.ini -> [2004-08-10 20:12:05 | 000,000,780 | ---- | C] () bootstat.dat -> C:\WINDOWS\bootstat.dat -> [2004-08-10 20:07:31 | 000,002,048 | --S- | C] () emptyregdb.dat -> C:\WINDOWS\System32\emptyregdb.dat -> [2004-08-10 20:02:15 | 000,021,640 | ---- | C] () fxsperf.ini -> C:\WINDOWS\System32\fxsperf.ini -> [2004-08-10 20:01:18 | 000,001,793 | ---- | C] () ODBCINST.INI -> C:\WINDOWS\ODBCINST.INI -> [2004-08-10 19:57:52 | 000,004,161 | ---- | C] () FNTCACHE.DAT -> C:\WINDOWS\System32\FNTCACHE.DAT -> [2004-08-10 19:57:15 | 000,194,568 | ---- | C] () secupd.dat -> C:\WINDOWS\System32\secupd.dat -> [2004-08-10 19:51:21 | 000,004,569 | ---- | C] () perfh009.dat -> C:\WINDOWS\System32\perfh009.dat -> [2004-08-10 19:51:20 | 000,442,800 | ---- | C] () perfi009.dat -> C:\WINDOWS\System32\perfi009.dat -> [2004-08-10 19:51:20 | 000,272,128 | ---- | C] () perfc009.dat -> C:\WINDOWS\System32\perfc009.dat -> [2004-08-10 19:51:20 | 000,072,066 | ---- | C] () perfd009.dat -> C:\WINDOWS\System32\perfd009.dat -> [2004-08-10 19:51:20 | 000,028,626 | ---- | C] () oembios.dat -> C:\WINDOWS\System32\oembios.dat -> [2004-08-10 19:51:18 | 000,004,627 | ---- | C] () oembios.bin -> C:\WINDOWS\System32\oembios.bin -> [2004-08-10 19:51:17 | 013,107,200 | ---- | C] () noise.dat -> C:\WINDOWS\System32\noise.dat -> [2004-08-10 19:51:16 | 000,000,741 | ---- | C] () mlang.dat -> C:\WINDOWS\System32\mlang.dat -> [2004-08-10 19:51:12 | 000,673,088 | ---- | C] () mib.bin -> C:\WINDOWS\System32\mib.bin -> [2004-08-10 19:51:11 | 000,046,258 | ---- | C] () dssec.dat -> C:\WINDOWS\System32\dssec.dat -> [2004-08-10 19:51:05 | 000,218,003 | ---- | C] () dcache.bin -> C:\WINDOWS\System32\dcache.bin -> [2004-08-10 19:50:56 | 000,001,804 | ---- | C] () [File - Lop Check] Elcomsoft Password Recovery -> C:\Documents and Settings\All Users\Application Data\Elcomsoft Password Recovery -> [2010-11-21 15:27:06 | 000,000,000 | ---D | M] F-Secure -> C:\Documents and Settings\All Users\Application Data\F-Secure -> [2011-03-11 17:09:34 | 000,000,000 | ---D | M] Juniper Networks -> C:\Documents and Settings\All Users\Application Data\Juniper Networks -> [2010-11-30 21:52:35 | 000,000,000 | ---D | M] OfficeRecovery -> C:\Documents and Settings\All Users\Application Data\OfficeRecovery -> [2009-07-16 19:51:21 | 000,000,000 | ---D | M] Seagate -> C:\Documents and Settings\All Users\Application Data\Seagate -> [2009-07-24 16:12:23 | 000,000,000 | ---D | M] Tarma Installer -> C:\Documents and Settings\All Users\Application Data\Tarma Installer -> [2008-06-15 11:56:08 | 000,000,000 | ---D | M] TEMP -> C:\Documents and Settings\All Users\Application Data\TEMP -> [2008-11-05 08:39:51 | 000,000,000 | ---D | M] ArcaVirMicroScan -> C:\Documents and Settings\X\Application Data\ArcaVirMicroScan -> [2011-03-11 18:28:33 | 000,000,000 | ---D | M] ContentGuard -> C:\Documents and Settings\X\Application Data\ContentGuard -> [2007-01-15 08:51:54 | 000,000,000 | ---D | M] f-secure -> C:\Documents and Settings\X\Application Data\f-secure -> [2011-03-11 17:10:30 | 000,000,000 | ---D | M] FreeFileViewer -> C:\Documents and Settings\X\Application Data\FreeFileViewer -> [2010-09-18 12:37:49 | 000,000,000 | ---D | M] Juniper Networks -> C:\Documents and Settings\X\Application Data\Juniper Networks -> [2010-11-30 21:52:49 | 000,000,000 | ---D | M] Leadertech -> C:\Documents and Settings\X\Application Data\Leadertech -> [2006-04-13 20:21:34 | 000,000,000 | ---D | M] OpenOffice.org -> C:\Documents and Settings\X\Application Data\OpenOffice.org -> [2010-11-15 19:20:26 | 000,000,000 | ---D | M] Opera -> C:\Documents and Settings\X\Application Data\Opera -> [2008-12-09 11:19:21 | 000,000,000 | ---D | M] Panasonic -> C:\Documents and Settings\X\Application Data\Panasonic -> [2008-11-15 11:49:55 | 000,000,000 | ---D | M] Publish or Perish -> C:\Documents and Settings\X\Application Data\Publish or Perish -> [2008-03-09 13:03:51 | 000,000,000 | ---D | M] Snapter Images -> C:\Documents and Settings\X\Application Data\Snapter Images -> [2009-01-07 21:25:34 | 000,000,000 | ---D | M] Tlen.pl -> C:\Documents and Settings\X\Application Data\Tlen.pl -> [2006-11-02 18:28:55 | 000,000,000 | ---D | M] uTorrent -> C:\Documents and Settings\X\Application Data\uTorrent -> [2010-07-10 10:29:38 | 000,000,000 | ---D | M] [File - Purity Scan] [Alternate Data Streams] @Alternate Data Stream - 116 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:D1B5B4F1 @Alternate Data Stream - 127 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:0CE7F3C9 < End of report > [/code]