Hi, thanks so much for your reply. These are these result for OTL.txt
OTL logfile created on: 9/10/2010 10:23:43 p.m. - Run 1
OTL by OldTimer - Version 3.2.14.1 Folder = C:\Users\PG\Desktop\Downloads
Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00001409 | Country: New Zealand | Language: ENZ | Date Format: d/MM/yyyy
1,014.00 Mb Total Physical Memory | 496.00 Mb Available Physical Memory | 49.00% Memory free
2.00 Gb Paging File | 2.00 Gb Available in Paging File | 69.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 31.38 Gb Total Space | 20.60 Gb Free Space | 65.63% Space Free | Partition Type: NTFS
Drive D: | 98.01 Gb Total Space | 93.08 Gb Free Space | 94.97% Space Free | Partition Type: FAT32
Drive E: | 98.04 Gb Total Space | 97.95 Gb Free Space | 99.91% Space Free | Partition Type: NTFS
Drive F: | 70.63 Gb Total Space | 70.54 Gb Free Space | 99.87% Space Free | Partition Type: NTFS
Drive G: | 1.88 Gb Total Space | 1.88 Gb Free Space | 100.00% Space Free | Partition Type: FAT32
Drive H: | 465.76 Gb Total Space | 9.42 Gb Free Space | 2.02% Space Free | Partition Type: NTFS
I: Drive not present or media not loaded
Computer Name: PG-PC
Current User Name: PG
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: On
Skip Microsoft Files: On
File Age = 90 Days
Output = Standard
Quick Scan
========== Processes (SafeList) ==========
PRC - [2010/10/09 22:14:29 | 000,576,512 | ---- | M] (OldTimer Tools) -- C:\Users\PG\Desktop\Downloads\OTL.exe
PRC - [2010/09/21 18:40:50 | 000,977,976 | ---- | M] (Google Inc.) -- C:\Users\PG\AppData\Local\Google\Chrome\Application\chrome.exe
PRC - [2010/06/11 21:56:42 | 000,976,872 | ---- | M] (AsusTek Computer Inc.) -- C:\Program Files\Asus\LiveUpdate\LiveUpdate.exe
PRC - [2010/04/16 18:36:42 | 000,026,480 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Live\Contacts\wlcomm.exe
PRC - [2009/11/19 14:05:42 | 000,284,160 | ---- | M] (ASUSTek) -- C:\Program Files\ASUS\LivCam\LivCam.exe
PRC - [2009/11/02 02:32:42 | 000,172,050 | -HS- | M] () -- C:\Windows\System32\wuauolts.exe
PRC - [2009/10/26 14:30:00 | 000,413,688 | ---- | M] (ASUSTeK Computer Inc.) -- C:\Program Files\EeePC\SHE\SuperHybridEngine.exe
PRC - [2009/10/16 21:43:28 | 001,021,424 | ---- | M] (ASUSTeK Computer Inc.) -- C:\Program Files\EeePC\HotkeyService\HotkeyService.exe
PRC - [2009/09/29 18:28:44 | 007,744,032 | ---- | M] (Realtek Semiconductor) -- C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
PRC - [2009/09/11 11:41:02 | 000,100,328 | ---- | M] (ASUSTeK Computer Inc.) -- C:\Program Files\EeePC\HotkeyService\HotKeyMon.exe
PRC - [2009/08/18 17:35:56 | 000,219,136 | ---- | M] () -- C:\Windows\System32\AsusService.exe
PRC - [2009/07/20 17:47:14 | 000,083,240 | ---- | M] (Synaptics Incorporated) -- C:\Program Files\Synaptics\SynTP\SynAsusAcpi.exe
PRC - [2009/07/14 14:14:42 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2009/07/14 14:14:24 | 000,157,184 | ---- | M] (Microsoft Corporation) -- c:\program files\windows defender\MpCmdRun.exe
PRC - [2009/07/14 14:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\Explorer.EXE
PRC - [2009/07/14 14:14:15 | 000,271,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\conhost.exe
PRC - [2009/06/04 19:03:32 | 000,186,904 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
PRC - [2009/06/04 19:03:06 | 000,354,840 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
PRC - [2009/01/14 17:53:02 | 000,226,656 | ---- | M] (Microsoft Corp.) -- C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
========== Modules (SafeList) ==========
MOD - [2010/10/09 22:14:29 | 000,576,512 | ---- | M] (OldTimer Tools) -- C:\Users\PG\Desktop\Downloads\OTL.exe
MOD - [2010/10/09 19:47:58 | 000,017,920 | -HS- | M] () -- C:\Windows\System32\iajsd.dll
MOD - [2009/07/14 14:16:15 | 000,099,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sspicli.dll
MOD - [2009/07/14 14:16:13 | 000,092,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sechost.dll
MOD - [2009/07/14 14:16:13 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\samcli.dll
MOD - [2009/07/14 14:16:12 | 000,031,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\profapi.dll
MOD - [2009/07/14 14:16:03 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netutils.dll
MOD - [2009/07/14 14:15:35 | 000,288,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KernelBase.dll
MOD - [2009/07/14 14:15:13 | 000,067,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dwmapi.dll
MOD - [2009/07/14 14:15:11 | 000,064,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\devobj.dll
MOD - [2009/07/14 14:15:07 | 000,036,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cryptbase.dll
MOD - [2009/07/14 14:15:02 | 000,145,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cfgmgr32.dll
MOD - [2009/07/14 14:14:10 | 000,095,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msscript.ocx
MOD - [2009/07/14 14:03:50 | 001,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc\comctl32.dll
========== Win32 Services (SafeList) ==========
SRV - File not found [Unknown | Stopped] -- -- (MSDTC)
SRV - [2010/04/28 07:44:02 | 000,704,872 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Live\Family Safety\fsssvc.exe -- (fsssvc)
SRV - [2009/08/18 17:35:56 | 000,219,136 | ---- | M] () [Auto | Running] -- C:\Windows\System32\AsusService.exe -- (AsusService)
SRV - [2009/07/14 14:16:21 | 000,185,856 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\wwansvc.dll -- (WwanSvc)
SRV - [2009/07/14 14:16:17 | 000,151,552 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\wbiosrvc.dll -- (WbioSrvc)
SRV - [2009/07/14 14:16:17 | 000,119,808 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\umpo.dll -- (Power)
SRV - [2009/07/14 14:16:16 | 000,037,376 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\themeservice.dll -- (Themes)
SRV - [2009/07/14 14:16:15 | 000,053,760 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sppuinotify.dll -- (sppuinotify)
SRV - [2009/07/14 14:16:13 | 000,043,520 | ---- | M] (Microsoft Corporation) [Unknown | Running] -- C:\Windows\System32\RpcEpMap.dll -- (RpcEptMapper)
SRV - [2009/07/14 14:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009/07/14 14:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
SRV - [2009/07/14 14:16:12 | 000,269,824 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\pnrpsvc.dll -- (PNRPsvc)
SRV - [2009/07/14 14:16:12 | 000,269,824 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\pnrpsvc.dll -- (p2pimsvc)
SRV - [2009/07/14 14:16:12 | 000,165,376 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\provsvc.dll -- (HomeGroupProvider)
SRV - [2009/07/14 14:16:12 | 000,020,480 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\pnrpauto.dll -- (PNRPAutoReg)
SRV - [2009/07/14 14:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2009/07/14 14:15:36 | 000,194,560 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\ListSvc.dll -- (HomeGroupListener)
SRV - [2009/07/14 14:15:21 | 000,797,696 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\FntCache.dll -- (FontCache)
SRV - [2009/07/14 14:15:11 | 000,253,440 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\dhcpcore.dll -- (Dhcp)
SRV - [2009/07/14 14:15:10 | 000,218,624 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\defragsvc.dll -- (defragsvc)
SRV - [2009/07/14 14:14:59 | 000,076,800 | ---- | M] (Microsoft Corporation) [Unknown | Stopped] -- C:\Windows\System32\bdesvc.dll -- (BDESVC)
SRV - [2009/07/14 14:14:58 | 000,088,064 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\AxInstSv.dll -- (AxInstSV) ActiveX Installer (AxInstSV)
SRV - [2009/07/14 14:14:53 | 000,027,648 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\appidsvc.dll -- (AppIDSvc)
SRV - [2009/07/14 14:14:29 | 003,179,520 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\sppsvc.exe -- (sppsvc)
SRV - [2009/06/04 19:03:06 | 000,354,840 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe -- (IAANTMON) Intel(R)
SRV - [2009/01/14 17:53:02 | 000,226,656 | ---- | M] (Microsoft Corp.) [Auto | Running] -- C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe -- (SeaPort)
========== Driver Services (SafeList) ==========
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Users\PG\AppData\Local\Temp\catchme.sys -- (catchme)
DRV - [2010/05/08 08:40:06 | 002,710,592 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\BCMWL6.SYS -- (BCM43XX)
DRV - [2010/04/28 07:44:02 | 000,054,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\fssfltr.sys -- (fssfltr)
DRV - [2009/09/29 18:16:02 | 002,776,672 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\RTKVHDA.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2009/07/27 23:06:46 | 000,051,712 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\L1C62x86.sys -- (L1C) NDIS Miniport Driver for Atheros AR8131/AR8132 PCI-E Ethernet Controller (NDIS 6.20)
DRV - [2009/07/20 17:48:32 | 000,213,552 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\SynTP.sys -- (SynTP)
DRV - [2009/07/20 17:29:40 | 000,013,880 | ---- | M] ( ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\kbfiltr.sys -- (kbfiltr)
DRV - [2009/07/14 14:26:21 | 000,015,952 | ---- | M] (CMD Technology, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\cmdide.sys -- (cmdide)
DRV - [2009/07/14 14:26:17 | 000,297,552 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\adpahci.sys -- (adpahci)
DRV - [2009/07/14 14:26:15 | 000,422,976 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\adp94xx.sys -- (adp94xx)
DRV - [2009/07/14 14:26:15 | 000,159,312 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\amdsbs.sys -- (amdsbs)
DRV - [2009/07/14 14:26:15 | 000,146,512 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\adpu320.sys -- (adpu320)
DRV - [2009/07/14 14:26:15 | 000,086,608 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\arcsas.sys -- (arcsas)
DRV - [2009/07/14 14:26:15 | 000,079,952 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\amdsata.sys -- (amdsata)
DRV - [2009/07/14 14:26:15 | 000,076,368 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\arc.sys -- (arc)
DRV - [2009/07/14 14:26:15 | 000,023,616 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\amdxata.sys -- (amdxata)
DRV - [2009/07/14 14:26:15 | 000,014,400 | ---- | M] (Acer Laboratories Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\aliide.sys -- (aliide)
DRV - [2009/07/14 14:20:44 | 000,142,416 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\nvstor.sys -- (nvstor)
DRV - [2009/07/14 14:20:44 | 000,117,312 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\nvraid.sys -- (nvraid)
DRV - [2009/07/14 14:20:44 | 000,044,624 | ---- | M] (IBM Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\nfrd960.sys -- (nfrd960)
DRV - [2009/07/14 14:20:37 | 000,089,168 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\lsi_sas.sys -- (LSI_SAS)
DRV - [2009/07/14 14:20:36 | 000,332,352 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\iaStorV.sys -- (iaStorV)
DRV - [2009/07/14 14:20:36 | 000,235,584 | ---- | M] (LSI Corporation, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\MegaSR.sys -- (MegaSR)
DRV - [2009/07/14 14:20:36 | 000,133,200 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\ksecpkg.sys -- (KSecPkg)
DRV - [2009/07/14 14:20:36 | 000,096,848 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\lsi_scsi.sys -- (LSI_SCSI)
DRV - [2009/07/14 14:20:36 | 000,095,824 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\lsi_fc.sys -- (LSI_FC)
DRV - [2009/07/14 14:20:36 | 000,054,864 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\lsi_sas2.sys -- (LSI_SAS2)
DRV - [2009/07/14 14:20:36 | 000,041,040 | ---- | M] (Intel Corp./ICP vortex GmbH) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\iirsp.sys -- (iirsp)
DRV - [2009/07/14 14:20:36 | 000,030,800 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\megasas.sys -- (megasas)
DRV - [2009/07/14 14:20:36 | 000,013,904 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\hwpolicy.sys -- (hwpolicy)
DRV - [2009/07/14 14:20:28 | 000,453,712 | ---- | M] (Emulex) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\elxstor.sys -- (elxstor)
DRV - [2009/07/14 14:20:28 | 000,070,720 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\djsvs.sys -- (aic78xx)
DRV - [2009/07/14 14:20:28 | 000,067,152 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\HpSAMD.sys -- (HpSAMD)
DRV - [2009/07/14 14:20:28 | 000,046,160 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\fsdepends.sys -- (FsDepends)
DRV - [2009/07/14 14:19:11 | 000,141,904 | ---- | M] (VIA Technologies Inc.,Ltd) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\vsmraid.sys -- (vsmraid)
DRV - [2009/07/14 14:19:10 | 000,175,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\vmbus.sys -- (vmbus)
DRV - [2009/07/14 14:19:10 | 000,159,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\vhdmp.sys -- (vhdmp)
DRV - [2009/07/14 14:19:10 | 000,040,896 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\vmstorfl.sys -- (storflt)
DRV - [2009/07/14 14:19:10 | 000,032,832 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\vdrvroot.sys -- (vdrvroot)
DRV - [2009/07/14 14:19:10 | 000,028,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\storvsc.sys -- (storvsc)
DRV - [2009/07/14 14:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\wimmount.sys -- (WIMMount)
DRV - [2009/07/14 14:19:10 | 000,016,976 | ---- | M] (VIA Technologies, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\viaide.sys -- (viaide)
DRV - [2009/07/14 14:19:04 | 001,383,488 | ---- | M] (QLogic Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\ql2300.sys -- (ql2300)
DRV - [2009/07/14 14:19:04 | 000,173,648 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\rdyboost.sys -- (rdyboost)
DRV - [2009/07/14 14:19:04 | 000,106,064 | ---- | M] (QLogic Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\ql40xx.sys -- (ql40xx)
DRV - [2009/07/14 14:19:04 | 000,077,888 | ---- | M] (Silicon Integrated Systems) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\sisraid4.sys -- (SiSRaid4)
DRV - [2009/07/14 14:19:04 | 000,043,088 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\pcw.sys -- (pcw)
DRV - [2009/07/14 14:19:04 | 000,040,016 | ---- | M] (Silicon Integrated Systems Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\SiSRaid2.sys -- (SiSRaid2)
DRV - [2009/07/14 14:19:04 | 000,021,072 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\stexstor.sys -- (stexstor)
DRV - [2009/07/14 14:17:54 | 000,369,568 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\cng.sys -- (CNG)
DRV - [2009/07/14 13:57:25 | 000,272,128 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\Brserid.sys -- (Brserid) Brother MFC Serial Port Interface Driver (WDM)
DRV - [2009/07/14 13:02:41 | 000,018,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\rdpbus.sys -- (rdpbus)
DRV - [2009/07/14 13:01:41 | 000,007,168 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\RDPREFMP.sys -- (RDPREFMP)
DRV - [2009/07/14 12:55:00 | 000,049,152 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\agilevpn.sys -- (RasAgileVpn) WAN Miniport (IKEv2)
DRV - [2009/07/14 12:53:51 | 000,009,728 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\wfplwf.sys -- (WfpLwf)
DRV - [2009/07/14 12:52:44 | 000,027,136 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ndiscap.sys -- (NdisCap)
DRV - [2009/07/14 12:52:04 | 000,048,128 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\vwififlt.sys -- (vwififlt)
DRV - [2009/07/14 12:52:02 | 000,019,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\vwifibus.sys -- (vwifibus)
DRV - [2009/07/14 12:52:00 | 000,163,328 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\1394ohci.sys -- (1394ohci)
DRV - [2009/07/14 12:51:35 | 000,008,192 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\umpass.sys -- (UmPass)
DRV - [2009/07/14 12:51:08 | 000,004,096 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\mshidkmdf.sys -- (mshidkmdf)
DRV - [2009/07/14 12:46:55 | 000,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\MTConfig.sys -- (MTConfig)
DRV - [2009/07/14 12:45:26 | 000,031,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\CompositeBus.sys -- (CompositeBus)
DRV - [2009/07/14 12:36:52 | 000,050,176 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\appid.sys -- (AppID)
DRV - [2009/07/14 12:33:50 | 000,026,624 | ---- | M] (Microsoft Corporation) [Kernel | Unknown | Stopped] -- C:\Windows\System32\drivers\scfilter.sys -- (scfilter)
DRV - [2009/07/14 12:28:47 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\vms3cap.sys -- (s3cap)
DRV - [2009/07/14 12:28:45 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\VMBusHID.sys -- (VMBusHID)
DRV - [2009/07/14 12:24:05 | 000,032,256 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\discache.sys -- (discache)
DRV - [2009/07/14 12:19:21 | 000,021,504 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\HidBatt.sys -- (HidBatt)
DRV - [2009/07/14 12:16:36 | 000,009,728 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\acpipmi.sys -- (AcpiPmi)
DRV - [2009/07/14 12:11:04 | 000,052,736 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\amdppm.sys -- (AmdPPM)
DRV - [2009/07/14 11:54:14 | 000,026,624 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\hcw85cir.sys -- (hcw85cir)
DRV - [2009/07/14 11:53:33 | 000,012,160 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\BrUsbMdm.sys -- (BrUsbMdm)
DRV - [2009/07/14 11:53:33 | 000,011,904 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\BrUsbSer.sys -- (BrUsbSer)
DRV - [2009/07/14 11:53:32 | 000,062,336 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\BrSerWdm.sys -- (BrSerWdm)
DRV - [2009/07/14 11:53:28 | 000,013,568 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\BrFiltLo.sys -- (BrFiltLo)
DRV - [2009/07/14 11:53:28 | 000,005,248 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\BrFiltUp.sys -- (BrFiltUp)
DRV - [2009/07/14 11:02:49 | 000,229,888 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\b57nd60x.sys -- (b57nd60x)
DRV - [2009/07/14 11:02:48 | 003,100,160 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\evbdx.sys -- (ebdrv)
DRV - [2009/07/14 11:02:48 | 000,430,080 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\bxvbdx.sys -- (b06bdrv)
DRV - [2009/07/06 10:48:02 | 000,011,448 | ---- | M] () [Kernel | System | Running] -- C:\Windows\System32\drivers\AsUpIO.sys -- (AsUpIO)
DRV - [2009/06/04 18:43:16 | 000,330,264 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\iaStor.sys -- (iaStor)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-nz
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = FB 31 80 AE 63 67 CB 01 [binary data]
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
O1 HOSTS File: ([2010/10/09 19:48:19 | 000,004,432 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 www.iq123.com
O1 - Hosts: 127.0.0.1 www.yijidh.com
O1 - Hosts: 127.0.0.1 www.250dh.cn
O1 - Hosts: 127.0.0.1 www.223.la
O1 - Hosts: 127.0.0.1 www.kuku123.com
O1 - Hosts: 127.0.0.1 www.930930.com
O1 - Hosts: 127.0.0.1 www.7999.com
O1 - Hosts: 127.0.0.1 www.9123.com
O1 - Hosts: 127.0.0.1 www.hao123e.com
O1 - Hosts: 127.0.0.1 www.020.com
O1 - Hosts: 127.0.0.1 www.sosote.com
O1 - Hosts: 127.0.0.1 www.uu108.com
O1 - Hosts: 127.0.0.1 www.yao.la
O1 - Hosts: 127.0.0.1 www.youxi777.com
O1 - Hosts: 127.0.0.1 www.1616.net
O1 - Hosts: 127.0.0.1 www.1188.com
O1 - Hosts: 127.0.0.1 www.9605.com
O1 - Hosts: 127.0.0.1 05505.cn
O1 - Hosts: 127.0.0.1 7055.net
O1 - Hosts: 127.0.0.1 www.0056.com
O1 - Hosts: 127.0.0.1 www.6655.com
O1 - Hosts: 127.0.0.1 www.1166.com
O1 - Hosts: 127.0.0.1 www.5kip.com
O1 - Hosts: 127.0.0.1 www.114xia.com
O1 - Hosts: 127.0.0.1 www.pp55.com
O1 - Hosts: 155 more lines...
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (Search Helper) - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll (Microsoft Corp.)
O2 - BHO: (Windows Live Toolbar Helper) - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKCU\..\Toolbar\WebBrowser: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O4 - HKLM..\Run: [HotkeyMon] C:\Windows\System32\AsusSender.exe (ASUSTek Computer Inc.)
O4 - HKLM..\Run: [HotkeyService] C:\Windows\System32\AsusSender.exe (ASUSTek Computer Inc.)
O4 - HKLM..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe (Intel Corporation)
O4 - HKLM..\Run: [LivCam] C:\Program Files\ASUS\LivCam\LivCam.exe (ASUSTek)
O4 - HKLM..\Run: [LiveUpdate] C:\Windows\System32\AsusSender.exe (ASUSTek Computer Inc.)
O4 - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [SuperHybridEngine] C:\Windows\System32\AsusSender.exe (ASUSTek Computer Inc.)
O4 - HKLM..\Run: [SynAsusAcpi] C:\Program Files\Synaptics\SynTP\SynAsusAcpi.exe (Synaptics Incorporated)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O9 - Extra Button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll (Microsoft Corporation)
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O27 - HKLM IFEO\360rpt.exe: Debugger - ntsd -d File not found
O27 - HKLM IFEO\360Safe.exe: Debugger - ntsd -d File not found
O27 - HKLM IFEO\360safebox.exe: Debugger - ntsd -d File not found
O27 - HKLM IFEO\360tray.exe: Debugger - ntsd -d File not found
O27 - HKLM IFEO\alogserv.exe: Debugger - ntsd -d File not found
O27 - HKLM IFEO\avconsol.exe: Debugger - ntsd -d File not found
O27 - HKLM IFEO\avsynmgr.exe: Debugger - ntsd -d File not found
O27 - HKLM IFEO\CCenter.exe: Debugger - ntsd -d File not found
O27 - HKLM IFEO\ccRegVfy.exe: Debugger - ntsd -d File not found
O27 - HKLM IFEO\DSMain.exe: Debugger - ntsd -d File not found
O27 - HKLM IFEO\FYFireWall.exe: Debugger - ntsd -d File not found
O27 - HKLM IFEO\KavPFW.exe: Debugger - ntsd -d File not found
O27 - HKLM IFEO\KAVPlus.EXE: Debugger - ntsd -d File not found
O27 - HKLM IFEO\KAVStart.exe: Debugger - ntsd -d File not found
O27 - HKLM IFEO\KAVSvc.EXE: Debugger - ntsd -d File not found
O27 - HKLM IFEO\KMailMon.EXE: Debugger - ntsd -d File not found
O27 - HKLM IFEO\knownsvr.exe: Debugger - ntsd -d File not found
O27 - HKLM IFEO\KPfwSvc.EXE: Debugger - ntsd -d File not found
O27 - HKLM IFEO\KPopMon.EXE: Debugger - ntsd -d File not found
O27 - HKLM IFEO\KULANSyn.EXE: Debugger - ntsd -d File not found
O27 - HKLM IFEO\KWatch.EXE: Debugger - ntsd -d File not found
O27 - HKLM IFEO\KWatchUI.EXE: Debugger - ntsd -d File not found
O27 - HKLM IFEO\Navapsvc.exe: Debugger - ntsd -d File not found
O27 - HKLM IFEO\NPFMntor.exe: Debugger - ntsd -d File not found
O27 - HKLM IFEO\pfw.exe: Debugger - ntsd -d File not found
O27 - HKLM IFEO\ras.exe: Debugger - ntsd -d File not found
O27 - HKLM IFEO\Rav.exe: Debugger - ntsd -d File not found
O27 - HKLM IFEO\RavMon.exe: Debugger - ntsd -d File not found
O27 - HKLM IFEO\RavMonD.exe: Debugger - ntsd -d File not found
O27 - HKLM IFEO\RavTask.exe: Debugger - ntsd -d File not found
O27 - HKLM IFEO\RAVTIMER.EXE: Debugger - ntsd -d File not found
O27 - HKLM IFEO\rfwmain.exe: Debugger - ntsd -d File not found
O27 - HKLM IFEO\rfwsrv.exe: Debugger - ntsd -d File not found
O27 - HKLM IFEO\RsMain.exe: Debugger - ntsd -d File not found
O27 - HKLM IFEO\rsnetsvr.exe: Debugger - ntsd -d File not found
O27 - HKLM IFEO\RsTray.exe: Debugger - ntsd -d File not found
O27 - HKLM IFEO\rstry.exe: Debugger - ntsd -d File not found
O27 - HKLM IFEO\rtvscan.exe: Debugger - ntsd -d File not found
O27 - HKLM IFEO\safeboxTray.exe: Debugger - ntsd -d File not found
O27 - HKLM IFEO\ScanFrm.exe: Debugger - ntsd -d File not found
O27 - HKLM IFEO\vptray.exe: Debugger - ntsd -d File not found
O27 - HKLM IFEO\vshwin32.exe: Debugger - ntsd -d File not found
O27 - HKLM IFEO\vsmon.exe: Debugger - ntsd -d File not found
O27 - HKLM IFEO\vsstat.exe: Debugger - ntsd -d File not found
O27 - HKLM IFEO\webscanx.exe: Debugger - ntsd -d File not found
O28 - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - Reg Error: Key error. File not found
O30 - LSA: Security Packages - (pku2u) - C:\Windows\System32\pku2u.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/06/11 10:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2010/10/09 19:47:59 | 000,000,143 | -HS- | M] () - C:\AutoRun.inf -- [ NTFS ]
O32 - AutoRun File - [2010/10/09 19:48:00 | 000,000,143 | -HS- | M] () - D:\AutoRun.inf -- [ FAT32 ]
O32 - AutoRun File - [2010/10/09 19:47:59 | 000,000,143 | -HS- | M] () - E:\AutoRun.inf -- [ NTFS ]
O32 - AutoRun File - [2010/10/09 19:47:59 | 000,000,143 | -HS- | M] () - F:\AutoRun.inf -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
NetSvcs: FastUserSwitchingCompatibility - File not found
NetSvcs: Ias - File not found
NetSvcs: Nla - File not found
NetSvcs: Ntmssvc - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: SRService - File not found
NetSvcs: Wmi - C:\Windows\System32\wmi.dll (Microsoft Corporation)
NetSvcs: WmdmPmSp - File not found
NetSvcs: LogonHours - File not found
NetSvcs: PCAudit - File not found
NetSvcs: helpsvc - File not found
NetSvcs: uploadmgr - File not found
NetSvcs: Themes - C:\Windows\System32\themeservice.dll (Microsoft Corporation)
NetSvcs: BDESVC - C:\Windows\System32\bdesvc.dll (Microsoft Corporation)
Drivers32: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.siren - C:\Windows\System32\sirenacm.dll (Microsoft Corporation)
Drivers32: MSVideo8 - C:\Windows\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\Windows\System32\iccvid.dll (Radius Inc.)
========== Files/Folders - Created Within 90 Days ==========
[2010/10/10 07:18:30 | 000,000,000 | ---D | C] -- C:\Windows\Panther
[2010/10/10 07:18:16 | 000,000,000 | ---D | C] -- C:\Boot
[2010/10/09 19:41:08 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2010/10/09 19:41:05 | 000,000,000 | ---D | C] -- C:\Windows\temp
[2010/10/09 19:41:05 | 000,000,000 | ---D | C] -- C:\Users\PG\AppData\Local\temp
[2010/10/09 19:26:39 | 000,212,480 | ---- | C] (SteelWerX) -- C:\Windows\SWXCACLS.exe
[2010/10/09 19:26:31 | 000,000,000 | ---D | C] -- C:\32788R22FWJFW
[2010/10/09 19:10:50 | 000,161,792 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe
[2010/10/09 19:10:50 | 000,136,704 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe
[2010/10/09 19:10:50 | 000,031,232 | ---- | C] (NirSoft) -- C:\Windows\NIRCMD.exe
[2010/10/09 19:10:39 | 000,000,000 | ---D | C] -- C:\Windows\ERDNT
[2010/10/09 19:10:13 | 000,000,000 | ---D | C] -- C:\Qoobox
[2010/10/09 17:40:50 | 000,000,000 | ---D | C] -- C:\Users\PG\AppData\Roaming\vlc
[2010/10/09 17:40:18 | 000,000,000 | ---D | C] -- C:\Program Files\VideoLAN
[2010/10/09 17:24:54 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Silverlight
[2010/10/09 17:24:44 | 000,000,000 | ---D | C] -- C:\Windows\System32\DRVSTORE
[2010/10/09 17:24:10 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Sync Framework
[2010/10/09 17:22:44 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft SQL Server Compact Edition
[2010/10/09 17:21:44 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft
[2010/10/09 17:21:22 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Live SkyDrive
[2010/10/09 17:21:00 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Live
[2010/10/09 17:20:47 | 000,000,000 | ---D | C] -- C:\Windows\PCHEALTH
[2010/10/09 17:04:02 | 000,000,000 | ---D | C] -- C:\Users\PG\Tracing
[2010/10/09 17:04:00 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\microsoft
[2010/10/09 16:49:54 | 000,000,000 | ---D | C] -- C:\Users\PG\Desktop\Windows Loader
[2010/10/09 16:46:15 | 000,000,000 | ---D | C] -- C:\Users\PG\AppData\Local\Windows Live
[2010/10/09 16:46:15 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Windows Live
[2010/10/09 16:43:17 | 000,000,000 | ---D | C] -- C:\Users\PG\Desktop\Downloads
[2010/10/09 16:42:24 | 000,000,000 | ---D | C] -- C:\Users\PG\AppData\Roaming\Macromedia
[2010/10/09 16:42:23 | 000,000,000 | ---D | C] -- C:\Users\PG\AppData\Roaming\Adobe
[2010/10/09 16:41:16 | 000,000,000 | ---D | C] -- C:\Users\PG\AppData\Local\Google
[2010/10/09 16:40:49 | 000,000,000 | ---D | C] -- C:\Users\PG\AppData\Local\Deployment
[2010/10/09 16:40:49 | 000,000,000 | ---D | C] -- C:\Users\PG\AppData\Local\Apps
[2010/10/09 16:36:36 | 000,000,000 | ---D | C] -- C:\Users\PG\AppData\Local\ElevatedDiagnostics
[2010/10/09 16:26:55 | 000,000,000 | ---D | C] -- C:\ProgramData\AzureWave
[2010/10/09 16:07:25 | 000,000,000 | ---D | C] -- C:\Program Files\Downloaded Installations
[2010/10/09 16:05:44 | 001,221,632 | ---- | C] (Atheros Communications, Inc.) -- C:\Windows\System32\athr.sys
[2010/10/09 16:05:44 | 000,000,000 | ---D | C] -- C:\Program Files\Atheros
[2010/10/09 16:04:48 | 000,000,000 | ---D | C] -- C:\ProgramData\Atheros
[2010/10/09 16:03:50 | 000,000,000 | ---D | C] -- C:\ProgramData\Ralink Driver
[2010/10/09 15:59:04 | 000,000,000 | ---D | C] -- C:\Program Files\Synaptics
[2010/10/09 15:57:27 | 000,000,000 | ---D | C] -- C:\Program Files\ASUS
[2010/10/09 15:55:07 | 000,000,000 | ---D | C] -- C:\Windows\System32\Atheros_L1e
[2010/10/09 15:53:04 | 000,035,304 | ---- | C] (ASUSTek Computer Inc.) -- C:\Windows\System32\AsusSender.exe
[2010/10/09 15:53:03 | 000,000,000 | ---D | C] -- C:\Program Files\EeePC
[2010/10/09 15:51:13 | 000,000,000 | ---D | C] -- C:\Users\PG\AppData\Roaming\E-Cam
[2010/10/09 15:51:06 | 000,000,000 | ---D | C] -- C:\Program Files\E-Cam
[2010/10/09 15:50:01 | 000,053,248 | ---- | C] (Windows XP Bundled build C-Centric Single User) -- C:\Windows\System32\CSVer.dll
[2010/10/09 15:47:08 | 000,000,000 | ---D | C] -- C:\Intel
[2010/10/09 15:47:00 | 000,000,000 | ---D | C] -- C:\Program Files\Intel
[2010/10/09 15:46:59 | 000,000,000 | ---D | C] -- C:\Users\PG\AppData\Roaming\InstallShield
[2010/10/09 15:46:12 | 000,000,000 | ---D | C] -- C:\Windows\System32\RTCOM
[2010/10/09 15:45:48 | 001,784,352 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\WavesLib.dll
[2010/10/09 15:45:48 | 000,339,968 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\System32\SRSTSXT.dll
[2010/10/09 15:45:48 | 000,185,776 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\System32\SRSTSHD.dll
[2010/10/09 15:45:48 | 000,167,936 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\System32\SRSHP360.dll
[2010/10/09 15:45:48 | 000,135,168 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\System32\SRSWOW.dll
[2010/10/09 15:45:47 | 001,933,312 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\MaxxAudioEQ.dll
[2010/10/09 15:45:47 | 000,347,648 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RTEEP32A.dll
[2010/10/09 15:45:47 | 000,306,176 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\MaxxAudioAPO20.dll
[2010/10/09 15:45:47 | 000,290,304 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RP3DHT32.dll
[2010/10/09 15:45:47 | 000,290,304 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RP3DAA32.dll
[2010/10/09 15:45:47 | 000,164,864 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RTEED32A.dll
[2010/10/09 15:45:47 | 000,126,976 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\MaxxAudioAPO.dll
[2010/10/09 15:45:47 | 000,073,216 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RTEEL32A.dll
[2010/10/09 15:45:47 | 000,059,392 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RTEEG32A.dll
[2010/10/09 15:45:46 | 000,280,576 | ---- | C] (Fortemedia Corporation) -- C:\Windows\System32\FMAPO.dll
[2010/10/09 15:45:46 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek
[2010/10/09 15:45:42 | 000,000,000 | -H-D | C] -- C:\Program Files\Temp
[2010/10/09 15:45:36 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield
[2010/10/09 15:45:05 | 000,178,688 | ---- | C] (Huawei Technologies Co., Ltd.) -- C:\Windows\System32\drivers\ewusbnet.sys
[2010/10/09 15:45:05 | 000,102,912 | ---- | C] (Huawei Technologies Co., Ltd.) -- C:\Windows\System32\drivers\ewusbmdm.sys
[2010/10/09 15:45:05 | 000,100,736 | ---- | C] (Huawei Technologies Co., Ltd.) -- C:\Windows\System32\drivers\ewusbdev.sys
[2010/10/09 15:45:05 | 000,023,424 | ---- | C] (Huawei Tech. Co., Ltd.) -- C:\Windows\System32\drivers\ewdcsc.sys
[2010/10/09 15:44:23 | 000,000,000 | -HSD | C] -- C:\Windows\Installer
[2010/10/09 15:44:21 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Avanquest software Shared
[2010/10/09 15:44:19 | 000,000,000 | ---D | C] -- C:\Program Files\3G Connection Manager
[2010/10/09 15:44:18 | 000,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information
[2010/10/09 15:44:18 | 000,000,000 | ---D | C] -- C:\ProgramData\BVRP Software
[2010/10/09 15:41:53 | 000,213,552 | ---- | C] (Synaptics Incorporated) -- C:\Windows\System32\drivers\SynTP.sys
[2010/10/09 15:41:53 | 000,161,064 | ---- | C] (Synaptics Incorporated) -- C:\Windows\System32\SynTPAPI.dll
[2010/10/09 15:41:53 | 000,120,104 | ---- | C] (Synaptics Incorporated) -- C:\Windows\System32\SynTPCo4.dll
[2010/10/09 15:41:52 | 000,206,120 | ---- | C] (Synaptics Incorporated) -- C:\Windows\System32\SynCtrl.dll
[2010/10/09 15:41:52 | 000,169,256 | ---- | C] (Synaptics Incorporated) -- C:\Windows\System32\SynCOM.dll
[2010/10/09 15:41:40 | 000,051,712 | ---- | C] (Atheros Communications, Inc.) -- C:\Windows\System32\drivers\L1C62x86.sys
[2010/10/09 15:41:39 | 000,013,880 | ---- | C] ( ) -- C:\Windows\System32\drivers\kbfiltr.sys
[2010/10/09 15:40:47 | 000,000,000 | ---D | C] -- C:\Users\PG\Desktop\Drivers for Laptop
[2010/10/09 15:29:10 | 000,000,000 | R--D | C] -- C:\Users\PG\Searches
[2010/10/09 15:29:10 | 000,000,000 | -H-D | C] -- C:\Users\PG\Application Data\Microsoft\Internet Explorer\Quick Launch\User Pinned
[2010/10/09 15:28:59 | 000,000,000 | ---D | C] -- C:\Users\PG\AppData\Roaming\Identities
[2010/10/09 15:28:55 | 000,000,000 | R--D | C] -- C:\Users\PG\Contacts
[2010/10/09 15:28:40 | 000,000,000 | ---D | C] -- C:\Users\PG\AppData\Local\VirtualStore
[2010/10/09 15:28:37 | 000,000,000 | -HSD | C] -- C:\Users\PG\AppData\Local\Temporary Internet Files
[2010/10/09 15:28:37 | 000,000,000 | -HSD | C] -- C:\Users\PG\Templates
[2010/10/09 15:28:37 | 000,000,000 | -HSD | C] -- C:\Users\PG\Start Menu
[2010/10/09 15:28:37 | 000,000,000 | -HSD | C] -- C:\Users\PG\SendTo
[2010/10/09 15:28:37 | 000,000,000 | -HSD | C] -- C:\Users\PG\Recent
[2010/10/09 15:28:37 | 000,000,000 | -HSD | C] -- C:\Users\PG\PrintHood
[2010/10/09 15:28:37 | 000,000,000 | -HSD | C] -- C:\Users\PG\NetHood
[2010/10/09 15:28:37 | 000,000,000 | -HSD | C] -- C:\Users\PG\Documents\My Videos
[2010/10/09 15:28:37 | 000,000,000 | -HSD | C] -- C:\Users\PG\Documents\My Pictures
[2010/10/09 15:28:37 | 000,000,000 | -HSD | C] -- C:\Users\PG\Local Settings
[2010/10/09 15:28:37 | 000,000,000 | -HSD | C] -- C:\Users\PG\AppData\Local\History
[2010/10/09 15:28:37 | 000,000,000 | -HSD | C] -- C:\Users\PG\Cookies
[2010/10/09 15:28:37 | 000,000,000 | -HSD | C] -- C:\Users\PG\Application Data
[2010/10/09 15:28:37 | 000,000,000 | -HSD | C] -- C:\Users\PG\AppData\Local\Application Data
[2010/10/09 15:28:36 | 000,000,000 | --SD | C] -- C:\Users\PG\AppData\Roaming\Microsoft
[2010/10/09 15:28:36 | 000,000,000 | R--D | C] -- C:\Users\PG\Videos
[2010/10/09 15:28:36 | 000,000,000 | R--D | C] -- C:\Users\PG\Saved Games
[2010/10/09 15:28:36 | 000,000,000 | R--D | C] -- C:\Users\PG\Pictures
[2010/10/09 15:28:36 | 000,000,000 | R--D | C] -- C:\Users\PG\Music
[2010/10/09 15:28:36 | 000,000,000 | R--D | C] -- C:\Users\PG\Links
[2010/10/09 15:28:36 | 000,000,000 | R--D | C] -- C:\Users\PG\Favorites
[2010/10/09 15:28:36 | 000,000,000 | R--D | C] -- C:\Users\PG\Downloads
[2010/10/09 15:28:36 | 000,000,000 | R--D | C] -- C:\Users\PG\My Documents
[2010/10/09 15:28:36 | 000,000,000 | R--D | C] -- C:\Users\PG\Desktop
[2010/10/09 15:28:36 | 000,000,000 | -HSD | C] -- C:\Users\PG\Documents\My Music
[2010/10/09 15:28:36 | 000,000,000 | -HSD | C] -- C:\Users\PG\My Documents
[2010/10/09 15:28:36 | 000,000,000 | -H-D | C] -- C:\Users\PG\AppData
[2010/10/09 15:28:36 | 000,000,000 | ---D | C] -- C:\Users\PG\AppData\Local\Microsoft
[2010/10/09 15:28:36 | 000,000,000 | ---D | C] -- C:\Users\PG\AppData\Roaming\Media Center Programs
[2010/10/09 15:28:17 | 000,000,000 | ---D | C] -- C:\Recovery
[2010/10/09 10:22:04 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution
[2010/10/09 10:19:55 | 000,000,000 | ---D | C] -- C:\Windows\Prefetch
[2010/10/09 10:19:01 | 000,000,000 | -HSD | C] -- C:\System Volume Information
========== Files - Modified Within 90 Days ==========
[2010/10/10 07:18:18 | 000,008,192 | RHS- | M] () -- C:\BOOTSECT.BAK
[2010/10/09 22:23:50 | 000,786,432 | -HS- | M] () -- C:\Users\PG\NTUSER.DAT
[2010/10/09 22:11:23 | 000,000,896 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1779176046-1231755855-4256573212-1000UA.job
[2010/10/09 22:11:16 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2010/10/09 19:54:53 | 000,018,192 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2010/10/09 19:54:53 | 000,018,192 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2010/10/09 19:53:21 | 000,001,132 | ---- | M] () -- C:\Users\PG\Application Data\Microsoft\Internet Explorer\Quick Launch\Internet Explorer.lnk
[2010/10/09 19:53:21 | 000,001,108 | ---- | M] () -- C:\Users\PG\Desktop\Internet Explorer.lnk
[2010/10/09 19:52:02 | 000,713,888 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI
[2010/10/09 19:52:02 | 000,619,642 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2010/10/09 19:52:02 | 000,107,792 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2010/10/09 19:48:19 | 000,004,432 | ---- | M] () -- C:\Windows\System32\drivers\etc\hosts
[2010/10/09 19:47:59 | 000,000,143 | -HS- | M] () -- C:\Windows\System32\iajsd.sss
[2010/10/09 19:47:59 | 000,000,143 | -HS- | M] () -- C:\AutoRun.inf
[2010/10/09 19:47:58 | 000,017,920 | -HS- | M] () -- C:\Windows\System32\iajsd.dll
[2010/10/09 19:47:57 | 000,000,851 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\iajsd.lnk
[2010/10/09 19:47:43 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2010/10/09 19:47:31 | 797,532,160 | -HS- | M] () -- C:\hiberfil.sys
[2010/10/09 19:46:51 | 000,946,844 | -H-- | M] () -- C:\Users\PG\AppData\Local\IconCache.db
[2010/10/09 19:37:08 | 000,000,215 | ---- | M] () -- C:\Windows\system.ini
[2010/10/09 17:40:36 | 000,001,028 | ---- | M] () -- C:\Users\Public\Desktop\VLC media player.lnk
[2010/10/09 16:51:50 | 000,000,020 | RHS- | M] () -- C:\win7.ld
[2010/10/09 16:51:49 | 000,410,654 | RHS- | M] () -- C:\QYJWH
[2010/10/09 16:46:01 | 000,000,844 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1779176046-1231755855-4256573212-1000Core.job
[2010/10/09 16:42:06 | 000,002,263 | ---- | M] () -- C:\Users\PG\Desktop\Google Chrome.lnk
[2010/10/09 16:40:50 | 000,057,560 | ---- | M] () -- C:\Users\PG\AppData\Local\GDIPFONTCACHEV1.DAT
[2010/10/09 16:40:08 | 000,001,411 | ---- | M] () -- C:\Users\PG\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2010/10/09 16:26:03 | 000,001,769 | ---- | M] () -- C:\Windows\Language_trs.ini
[2010/10/09 16:23:58 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2010/10/09 16:00:34 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_Kernel_SynTP_01007.Wdf
[2010/10/09 15:59:14 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_Kernel_SynTP_01009.Wdf
[2010/10/09 15:51:39 | 000,001,779 | ---- | M] () -- C:\Users\Public\Desktop\E-Cam.lnk
[2010/10/09 15:49:31 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2010/10/09 15:49:31 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2010/10/09 15:30:30 | 000,524,288 | -HS- | M] () -- C:\Users\PG\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TMContainer00000000000000000002.regtrans-ms
[2010/10/09 15:30:30 | 000,524,288 | -HS- | M] () -- C:\Users\PG\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TMContainer00000000000000000001.regtrans-ms
[2010/10/09 15:30:30 | 000,065,536 | -HS- | M] () -- C:\Users\PG\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TM.blf
[2010/10/09 15:28:37 | 000,000,020 | -HS- | M] () -- C:\Users\PG\ntuser.ini
[2010/10/09 10:25:25 | 000,266,808 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2010/10/09 10:24:01 | 000,042,045 | ---- | M] () -- C:\Windows\System32\license.rtf
========== Files Created - No Company Name ==========
[2010/10/10 07:18:18 | 000,008,192 | RHS- | C] () -- C:\BOOTSECT.BAK
[2010/10/10 07:18:17 | 000,383,562 | RHS- | C] () -- C:\bootmgr
[2010/10/09 19:43:12 | 000,000,143 | -HS- | C] () -- C:\AutoRun.inf
[2010/10/09 19:43:05 | 000,172,050 | -HS- | C] () -- C:\Windows\System32\wuauolts.exe
[2010/10/09 19:10:50 | 000,256,512 | ---- | C] () -- C:\Windows\PEV.exe
[2010/10/09 19:10:50 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2010/10/09 19:10:50 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2010/10/09 19:10:50 | 000,077,312 | ---- | C] () -- C:\Windows\MBR.exe
[2010/10/09 19:10:50 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2010/10/09 17:40:36 | 000,001,028 | ---- | C] () -- C:\Users\Public\Desktop\VLC media player.lnk
[2010/10/09 17:38:51 | 000,001,108 | ---- | C] () -- C:\Users\PG\Desktop\Internet Explorer.lnk
[2010/10/09 16:51:50 | 000,000,020 | RHS- | C] () -- C:\win7.ld
[2010/10/09 16:51:49 | 000,410,654 | RHS- | C] () -- C:\QYJWH
[2010/10/09 16:45:57 | 000,006,144 | ---- | C] () -- C:\Windows\System32\drivers\ASUSHWIO.SYS
[2010/10/09 16:42:06 | 000,002,263 | ---- | C] () -- C:\Users\PG\Desktop\Google Chrome.lnk
[2010/10/09 16:41:18 | 000,000,896 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1779176046-1231755855-4256573212-1000UA.job
[2010/10/09 16:41:17 | 000,000,844 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1779176046-1231755855-4256573212-1000Core.job
[2010/10/09 16:40:08 | 000,001,411 | ---- | C] () -- C:\Users\PG\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2010/10/09 16:24:36 | 000,001,132 | ---- | C] () -- C:\Users\PG\Application Data\Microsoft\Internet Explorer\Quick Launch\Internet Explorer.lnk
[2010/10/09 16:24:28 | 000,172,050 | -HS- | C] () -- C:\QGS.exe
[2010/10/09 16:24:26 | 000,000,143 | -HS- | C] () -- C:\Windows\System32\iajsd.sss
[2010/10/09 16:24:25 | 000,017,920 | -HS- | C] () -- C:\Windows\System32\iajsd.dll
[2010/10/09 16:24:24 | 000,172,050 | -HS- | C] () -- C:\Program Files\mosss.exe
[2010/10/09 16:24:24 | 000,000,851 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\iajsd.lnk
[2010/10/09 16:23:58 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2010/10/09 16:05:44 | 000,293,373 | ---- | C] () -- C:\Windows\System32\netathr.inf
[2010/10/09 16:05:44 | 000,049,563 | ---- | C] () -- C:\Windows\System32\athrext.cat
[2010/10/09 16:03:51 | 000,013,931 | ---- | C] () -- C:\Windows\System32\RaCoInst.dat
[2010/10/09 16:01:55 | 000,011,448 | ---- | C] () -- C:\Windows\System32\drivers\AsUpIO.sys
[2010/10/09 16:00:34 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_Kernel_SynTP_01007.Wdf
[2010/10/09 15:59:14 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_Kernel_SynTP_01009.Wdf
[2010/10/09 15:53:04 | 000,219,136 | ---- | C] () -- C:\Windows\System32\AsusService.exe
[2010/10/09 15:53:04 | 000,021,864 | ---- | C] () -- C:\Windows\AsAcpiSvrLang.ini
[2010/10/09 15:51:39 | 000,001,779 | ---- | C] () -- C:\Users\Public\Desktop\E-Cam.lnk
[2010/10/09 15:49:31 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS
[2010/10/09 15:49:31 | 000,000,000 | RHS- | C] () -- C:\IO.SYS
[2010/10/09 15:43:41 | 000,001,769 | ---- | C] () -- C:\Windows\Language_trs.ini
[2010/10/09 15:28:37 | 000,000,020 | -HS- | C] () -- C:\Users\PG\ntuser.ini
[2010/10/09 15:28:36 | 000,524,288 | -HS- | C] () -- C:\Users\PG\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TMContainer00000000000000000002.regtrans-ms
[2010/10/09 15:28:36 | 000,524,288 | -HS- | C] () -- C:\Users\PG\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TMContainer00000000000000000001.regtrans-ms
[2010/10/09 15:28:36 | 000,262,144 | -HS- | C] () -- C:\Users\PG\ntuser.dat.LOG1
[2010/10/09 15:28:36 | 000,065,536 | -HS- | C] () -- C:\Users\PG\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TM.blf
[2010/10/09 15:28:36 | 000,000,290 | ---- | C] () -- C:\Users\PG\Application Data\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk
[2010/10/09 15:28:36 | 000,000,272 | ---- | C] () -- C:\Users\PG\Application Data\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk
[2010/10/09 15:28:36 | 000,000,000 | -HS- | C] () -- C:\Users\PG\ntuser.dat.LOG2
[2010/10/09 15:28:35 | 000,786,432 | -HS- | C] () -- C:\Users\PG\NTUSER.DAT
[2010/10/09 10:19:01 | 797,532,160 | -HS- | C] () -- C:\hiberfil.sys
[2009/07/14 12:51:43 | 000,073,728 | ---- | C] () -- C:\Windows\System32\BthpanContextHandler.dll
[2009/07/14 12:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\System32\BWContextHandler.dll
========== LOP Check ==========
[2010/10/09 15:51:13 | 000,000,000 | ---D | M] -- C:\Users\PG\AppData\Roaming\E-Cam
[2009/07/14 17:53:46 | 000,002,654 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
========== Purity Check ==========
========== Custom Scans ==========
< %SYSTEMDRIVE%\*.* >
[2009/06/11 10:42:20 | 000,000,024 | ---- | M] () -- C:\autoexec.bat
[2010/10/09 19:47:59 | 000,000,143 | -HS- | M] () -- C:\AutoRun.inf
[2009/07/14 14:38:58 | 000,383,562 | RHS- | M] () -- C:\bootmgr
[2010/10/10 07:18:18 | 000,008,192 | RHS- | M] () -- C:\BOOTSECT.BAK
[2010/10/09 19:41:03 | 000,012,078 | ---- | M] () -- C:\ComboFix.txt
[2009/06/11 10:42:20 | 000,000,010 | ---- | M] () -- C:\config.sys
[2010/10/09 19:47:31 | 797,532,160 | -HS- | M] () -- C:\hiberfil.sys
[2010/10/09 16:08:18 | 000,082,952 | ---- | M] () -- C:\if.log
[2010/10/09 15:49:31 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2010/10/09 15:49:31 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2010/10/09 20:16:16 | 1358,954,496 | -HS- | M] () -- C:\pagefile.sys
[2009/11/02 02:32:42 | 000,172,050 | -HS- | M] () -- C:\QGS.exe
[2010/10/09 16:51:49 | 000,410,654 | RHS- | M] () -- C:\QYJWH
[2010/10/09 16:51:50 | 000,000,020 | RHS- | M] () -- C:\win7.ld
< %systemroot%\*. /mp /s >
< %systemroot%\System32\config\*.sav >
< HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU >
< HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs >
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install\\LastSuccessTime: 2010-10-09 03:42:07
< End of report >