OTL Log File Part 2
========== Custom Scans ==========
< %systemroot%\Fonts\*.com >
[2006/11/02 07:37:12 | 000,026,040 | ---- | M] () -- C:\Windows\Fonts\GlobalMonospace.CompositeFont
[2006/11/02 07:37:12 | 000,026,489 | ---- | M] () -- C:\Windows\Fonts\GlobalSansSerif.CompositeFont
[2006/11/02 07:37:12 | 000,029,779 | ---- | M] () -- C:\Windows\Fonts\GlobalSerif.CompositeFont
[2009/09/13 15:33:35 | 000,037,665 | ---- | M] () -- C:\Windows\Fonts\GlobalUserInterface.CompositeFont
< %systemroot%\Fonts\*.dll >
< %systemroot%\Fonts\*.ini >
[2006/09/18 16:37:34 | 000,000,065 | ---- | M] () -- C:\Windows\Fonts\desktop.ini
< %systemroot%\Fonts\*.ini2 >
< %systemroot%\Fonts\*.exe >
< %systemroot%\system32\spool\prtprocs\w32x86\*.* >
[2009/04/20 13:23:48 | 000,315,904 | ---- | M] (Hewlett-Packard Corporation) -- C:\Windows\System32\spool\prtprocs\w32x86\hpfpp70w.dll
[2006/11/02 07:35:48 | 000,022,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\spool\prtprocs\w32x86\jnwppr.dll
[2006/10/26 22:56:12 | 000,033,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\spool\prtprocs\w32x86\msonpppr.dll
< %systemroot%\REPAIR\*.bak1 >
< %systemroot%\REPAIR\*.ini >
< %systemroot%\system32\*.jpg >
< %systemroot%\*.jpg >
< %systemroot%\*.png >
< %systemroot%\*.scr >
[2006/10/19 12:00:56 | 000,187,392 | ---- | M] () -- C:\Windows\Acer(Normal).scr
[2006/10/19 12:00:56 | 000,187,392 | ---- | M] () -- C:\Windows\Acer(Wide).scr
[2010/09/23 00:32:56 | 000,301,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\WLXPGSS.SCR
< %systemroot%\*._sy >
< %APPDATA%\Adobe\Update\*.* >
< %ALLUSERSPROFILE%\Favorites\*.* >
< %APPDATA%\Microsoft\*.* >
< %PROGRAMFILES%\*.* >
[2008/01/20 21:43:21 | 000,000,174 | -HS- | M] () -- C:\Program Files\desktop.ini
< %APPDATA%\Update\*.* >
< %PROGRAMFILES%\bak. /s >
< %systemroot%\system32\bak. /s >
< %ALLUSERSPROFILE%\Start Menu\*.lnk /x >
< %systemroot%\system32\config\systemprofile\*.dat /x >
< %systemroot%\*.config >
< %systemroot%\system32\*.db >
< %APPDATA%\Microsoft\Internet Explorer\Quick Launch\*.lnk /x >
[2010/05/25 22:51:05 | 000,000,286 | -HS- | M] () -- C:\Users\Office Depot\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\desktop.ini
< %USERPROFILE%\Desktop\*.exe >
[2011/04/06 00:47:37 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Users\Office Depot\Desktop\OTL.exe
[1 C:\Users\Office Depot\Desktop\*.tmp files -> C:\Users\Office Depot\Desktop\*.tmp -> ]
< %PROGRAMFILES%\Common Files\*.* >
< %systemroot%\*.src >
< %systemroot%\install\*.* >
< %systemroot%\system32\DLL\*.* >
< %systemroot%\system32\HelpFiles\*.* >
< %systemroot%\system32\rundll\*.* >
< %systemroot%\winn32\*.* >
< %systemroot%\Java\*.* >
< %systemroot%\system32\test\*.* >
< %systemroot%\system32\Rundll32\*.* >
< %systemroot%\AppPatch\Custom\*.* >
< %APPDATA%\Roaming\Microsoft\Windows\Recent\*.lnk /x >
< %PROGRAMFILES%\PC-Doctor\Downloads\*.* >
< %PROGRAMFILES%\Internet Explorer\*.tmp >
< %PROGRAMFILES%\Internet Explorer\*.dat >
< %USERPROFILE%\My Documents\*.exe >
< %USERPROFILE%\*.exe >
[2010/07/19 11:41:22 | 001,063,320 | ---- | M] (Citrix Online, a division of Citrix Systems, Inc.) -- C:\Users\Office Depot\gotomypc_533.exe
[2011/02/25 09:02:44 | 001,062,984 | ---- | M] (Citrix Online, a division of Citrix Systems, Inc.) -- C:\Users\Office Depot\gotomypc_540.exe
< %systemroot%\ADDINS\*.* >
< %systemroot%\assembly\*.bak2 >
< %systemroot%\Config\*.* >
< %systemroot%\REPAIR\*.bak2 >
< %systemroot%\SECURITY\Database\*.sdb /x >
[2009/09/14 00:02:12 | 000,008,192 | ---- | M] () -- C:\Windows\security\database\edb.chk
[2009/09/14 00:01:42 | 001,048,576 | ---- | M] () -- C:\Windows\security\database\edb.log
[2009/09/14 00:01:42 | 001,048,576 | ---- | M] () -- C:\Windows\security\database\edbres00001.jrs
[2009/09/14 00:01:42 | 001,048,576 | ---- | M] () -- C:\Windows\security\database\edbres00002.jrs
[2009/09/14 00:01:42 | 001,048,576 | ---- | M] () -- C:\Windows\security\database\edbtmp.log
[2009/09/14 00:01:42 | 001,056,768 | ---- | M] () -- C:\Windows\security\database\tmp.edb
< %systemroot%\SYSTEM\*.bak2 >
< %systemroot%\Web\*.bak2 >
< %systemroot%\Driver Cache\*.* >
< %PROGRAMFILES%\Mozilla Firefox\*.exe >
[2010/12/03 14:35:07 | 000,107,480 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\crashreporter.exe
[2010/12/03 14:35:08 | 000,912,344 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
[2010/12/03 14:35:08 | 000,016,856 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\plugin-container.exe
[2010/12/03 14:35:08 | 000,245,208 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\updater.exe
< %ProgramFiles%\Microsoft Common\*.* >
< %ProgramFiles%\TinyProxy. >
< %USERPROFILE%\Favorites\*.url /x >
[2008/04/20 12:35:29 | 000,000,402 | -HS- | M] () -- C:\Users\Office Depot\Favorites\desktop.ini
[2011/04/01 18:55:16 | 000,000,450 | ---- | M] () -- C:\Users\Office Depot\Favorites\NCH Audio and Telephony Software Page.lnk
< %systemroot%\system32\*.bk >
< %systemroot%\*.te >
< %systemroot%\system32\system32\*.* >
< %ALLUSERSPROFILE%\*.dat /x >
[2011/04/04 23:15:07 | 000,009,610 | -HS- | M] () -- C:\ProgramData\c1v7b2004pcko3q46sg5by81ek78o4q
[2010/01/21 22:42:52 | 000,001,581 | ---- | M] () -- C:\ProgramData\hpzinstall.log
[2011/04/04 15:30:25 | 000,009,920 | -HS- | M] () -- C:\ProgramData\j638u7q3443b5j
[2010/09/29 19:52:38 | 000,000,098 | ---- | M] () -- C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc
[2011/04/01 20:51:55 | 000,000,258 | RHS- | M] () -- C:\ProgramData\ntuser.pol
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
[2009/03/08 06:31:42 | 000,348,160 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\System32\dxtmsft.dll
[2009/03/08 06:31:37 | 000,216,064 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\System32\dxtrans.dll
[2010/12/18 01:22:10 | 000,184,320 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\System32\iepeers.dll
< %systemroot%\system32\*.exe /lockedfiles >
< %systemroot%\Tasks\*.job /lockedfiles >
< %systemroot%\system32\drivers\*.sys /lockedfiles >
< %systemroot%\System32\config\*.sav >
[2008/01/20 22:14:18 | 016,846,848 | ---- | M] () -- C:\Windows\System32\config\COMPONENTS.SAV
[2008/01/20 22:14:08 | 000,106,496 | ---- | M] () -- C:\Windows\System32\config\DEFAULT.SAV
[2008/01/20 22:14:18 | 000,020,480 | ---- | M] () -- C:\Windows\System32\config\SECURITY.SAV
[2006/11/02 05:34:08 | 010,133,504 | ---- | M] () -- C:\Windows\System32\config\SOFTWARE.SAV
[2006/11/02 05:34:08 | 001,826,816 | ---- | M] () -- C:\Windows\System32\config\SYSTEM.SAV
< %systemroot%\system32\*.sys >
[2006/11/02 02:09:42 | 000,009,029 | ---- | M] () -- C:\Windows\System32\ANSI.SYS
[2009/04/11 01:32:46 | 000,245,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\clfs.sys
[2006/11/02 02:09:45 | 000,027,097 | ---- | M] () -- C:\Windows\System32\country.sys
[2006/11/02 02:09:41 | 000,004,768 | ---- | M] () -- C:\Windows\System32\HIMEM.SYS
[2006/11/02 02:09:44 | 000,042,809 | ---- | M] () -- C:\Windows\System32\KEY01.SYS
[2006/11/02 02:09:44 | 000,042,537 | ---- | M] () -- C:\Windows\System32\KEYBOARD.SYS
[2006/11/02 02:09:29 | 000,027,866 | ---- | M] () -- C:\Windows\System32\NTDOS.SYS
[2006/11/02 02:09:35 | 000,029,146 | ---- | M] () -- C:\Windows\System32\NTDOS404.SYS
[2006/11/02 02:09:38 | 000,029,370 | ---- | M] () -- C:\Windows\System32\NTDOS411.SYS
[2006/11/02 02:09:40 | 000,029,274 | ---- | M] () -- C:\Windows\System32\NTDOS412.SYS
[2006/11/02 02:09:31 | 000,029,146 | ---- | M] () -- C:\Windows\System32\NTDOS804.SYS
[2006/11/02 02:09:20 | 000,033,952 | ---- | M] () -- C:\Windows\System32\NTIO.SYS
[2006/11/02 02:09:23 | 000,034,672 | ---- | M] () -- C:\Windows\System32\NTIO404.SYS
[2006/11/02 02:09:24 | 000,035,776 | ---- | M] () -- C:\Windows\System32\NTIO411.SYS
[2006/11/02 02:09:26 | 000,035,536 | ---- | M] () -- C:\Windows\System32\NTIO412.SYS
[2006/11/02 02:09:22 | 000,034,672 | ---- | M] () -- C:\Windows\System32\NTIO804.SYS
[2010/12/31 08:57:01 | 002,039,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
< %systemroot%\system32\drivers\*.dll >
[2008/08/30 03:56:14 | 000,053,248 | ---- | M] (ATI Technologies Inc.) -- C:\Windows\System32\drivers\ati2erec.dll
[2009/10/07 01:23:08 | 000,013,584 | ---- | M] () -- C:\Windows\System32\drivers\iKeyLFT2.dll
< %systemroot%\system32\drivers\*.ini >
< %systemroot%\system32\drivers\*.exe >
< %systemroot%\system32\Spool\prtprocs\w32x86\*.dll >
[2009/04/20 13:23:48 | 000,315,904 | ---- | M] (Hewlett-Packard Corporation) -- C:\Windows\System32\spool\prtprocs\w32x86\hpfpp70w.dll
[2006/11/02 07:35:48 | 000,022,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\spool\prtprocs\w32x86\jnwppr.dll
[2006/10/26 22:56:12 | 000,033,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\spool\prtprocs\w32x86\msonpppr.dll
< %SYSTEMDRIVE%\*.* >
[2006/09/18 16:43:36 | 000,000,024 | ---- | M] () -- C:\autoexec.bat
[2009/04/11 01:36:36 | 000,333,257 | RHS- | M] () -- C:\bootmgr
[2008/02/26 01:24:03 | 000,008,192 | R-S- | M] () -- C:\BOOTSECT.BAK
[2010/07/04 01:06:06 | 000,020,657 | ---- | M] () -- C:\ComboFix.txt
[2006/09/18 16:43:37 | 000,000,010 | ---- | M] () -- C:\config.sys
[2011/04/06 20:21:31 | 1878,515,712 | -HS- | M] () -- C:\hiberfil.sys
[2008/07/25 00:44:40 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2010/07/20 00:39:31 | 000,000,183 | ---- | M] () -- C:\LogiSetup.log
[2007/06/28 03:44:50 | 000,000,512 | ---- | M] () -- C:\MDR.iss
[2008/07/25 00:44:40 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2011/04/06 20:21:30 | 2192,326,656 | -HS- | M] () -- C:\pagefile.sys
[2008/04/20 12:35:12 | 000,000,471 | ---- | M] () -- C:\RHDSetup.log
[2010/07/04 00:20:08 | 000,000,429 | ---- | M] () -- C:\rkill.log
[2009/01/22 01:41:06 | 000,000,232 | -H-- | M] () -- C:\sqmdata00.sqm
[2009/01/22 01:41:10 | 000,000,232 | -H-- | M] () -- C:\sqmdata01.sqm
[2009/01/22 01:41:13 | 000,000,232 | -H-- | M] () -- C:\sqmdata02.sqm
[2009/01/22 01:41:14 | 000,000,232 | -H-- | M] () -- C:\sqmdata03.sqm
[2009/01/22 01:41:18 | 000,000,232 | -H-- | M] () -- C:\sqmdata04.sqm
[2009/01/22 01:43:33 | 000,000,232 | -H-- | M] () -- C:\sqmdata05.sqm
[2009/01/22 01:43:55 | 000,000,232 | -H-- | M] () -- C:\sqmdata06.sqm
[2009/01/22 01:44:36 | 000,000,232 | -H-- | M] () -- C:\sqmdata07.sqm
[2009/01/22 01:44:44 | 000,000,232 | -H-- | M] () -- C:\sqmdata08.sqm
[2009/01/22 01:44:59 | 000,000,232 | -H-- | M] () -- C:\sqmdata09.sqm
[2009/01/22 01:45:24 | 000,000,232 | -H-- | M] () -- C:\sqmdata10.sqm
[2009/01/22 01:46:19 | 000,000,232 | -H-- | M] () -- C:\sqmdata11.sqm
[2009/01/22 01:48:01 | 000,000,232 | -H-- | M] () -- C:\sqmdata12.sqm
[2009/01/22 01:50:34 | 000,000,232 | -H-- | M] () -- C:\sqmdata13.sqm
[2009/01/22 01:40:52 | 000,000,232 | -H-- | M] () -- C:\sqmdata14.sqm
[2009/01/22 01:40:54 | 000,000,232 | -H-- | M] () -- C:\sqmdata15.sqm
[2009/01/22 01:40:56 | 000,000,232 | -H-- | M] () -- C:\sqmdata16.sqm
[2009/01/22 01:40:59 | 000,000,232 | -H-- | M] () -- C:\sqmdata17.sqm
[2009/01/22 01:41:02 | 000,000,232 | -H-- | M] () -- C:\sqmdata18.sqm
[2009/01/22 01:41:04 | 000,000,232 | -H-- | M] () -- C:\sqmdata19.sqm
[2009/01/22 01:41:06 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt00.sqm
[2009/01/22 01:41:10 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt01.sqm
[2009/01/22 01:41:13 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt02.sqm
[2009/01/22 01:41:14 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt03.sqm
[2009/01/22 01:41:18 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt04.sqm
[2009/01/22 01:43:33 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt05.sqm
[2009/01/22 01:43:55 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt06.sqm
[2009/01/22 01:44:36 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt07.sqm
[2009/01/22 01:44:44 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt08.sqm
[2009/01/22 01:44:59 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt09.sqm
[2009/01/22 01:45:24 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt10.sqm
[2009/01/22 01:46:19 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt11.sqm
[2009/01/22 01:48:01 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt12.sqm
[2009/01/22 01:50:34 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt13.sqm
[2009/01/22 01:40:52 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt14.sqm
[2009/01/22 01:40:54 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt15.sqm
[2009/01/22 01:40:56 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt16.sqm
[2009/01/22 01:40:59 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt17.sqm
[2009/01/22 01:41:02 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt18.sqm
[2009/01/22 01:41:04 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt19.sqm
[2008/07/25 23:20:52 | 000,000,152 | ---- | M] () -- C:\YServer.txt
< %PROGRAMFILES%\*. >
[2010/01/21 22:59:22 | 000,000,000 | ---D | M] -- C:\Program Files\7-Zip
[2008/02/26 03:10:23 | 000,000,000 | ---D | M] -- C:\Program Files\Acer Arcade Live
[2008/03/20 02:33:06 | 000,000,000 | ---D | M] -- C:\Program Files\Acer Assist
[2009/01/24 20:02:50 | 000,000,000 | ---D | M] -- C:\Program Files\Acer GameZone
[2008/03/20 02:39:39 | 000,000,000 | ---D | M] -- C:\Program Files\Acer Inc
[2008/03/20 02:33:05 | 000,000,000 | ---D | M] -- C:\Program Files\Acer Registration
[2008/02/26 02:56:14 | 000,000,000 | ---D | M] -- C:\Program Files\Activation Assistant for the 2007 Microsoft Office suites
[2010/10/11 15:30:35 | 000,000,000 | ---D | M] -- C:\Program Files\Adobe
[2009/09/18 23:01:42 | 000,000,000 | ---D | M] -- C:\Program Files\Agogo FLV to DVD Converter
[2008/07/31 23:04:31 | 000,000,000 | ---D | M] -- C:\Program Files\AIM
[2008/08/01 00:33:16 | 000,000,000 | ---D | M] -- C:\Program Files\AIM+
[2010/08/01 09:38:58 | 000,000,000 | ---D | M] -- C:\Program Files\AIM7
[2008/08/01 20:36:27 | 000,000,000 | ---D | M] -- C:\Program Files\AOL
[2008/07/31 23:25:47 | 000,000,000 | ---D | M] -- C:\Program Files\AOL 9.0
[2009/11/25 04:21:33 | 000,000,000 | ---D | M] -- C:\Program Files\AOL 9.1
[2008/07/25 00:25:33 | 000,000,000 | ---D | M] -- C:\Program Files\AOL Pictures
[2011/01/06 01:14:00 | 000,000,000 | ---D | M] -- C:\Program Files\Apple Software Update
[2009/07/04 17:48:21 | 000,000,000 | ---D | M] -- C:\Program Files\Apricorn
[2008/03/20 02:34:21 | 000,000,000 | ---D | M] -- C:\Program Files\ATI
[2008/03/20 02:36:05 | 000,000,000 | ---D | M] -- C:\Program Files\ATI Technologies
[2010/10/16 15:29:24 | 000,000,000 | ---D | M] -- C:\Program Files\AVG
[2010/12/27 14:28:41 | 000,000,000 | ---D | M] -- C:\Program Files\BearShare Applications
[2008/12/20 01:23:42 | 000,000,000 | ---D | M] -- C:\Program Files\Belarc
[2010/12/30 20:23:02 | 000,000,000 | ---D | M] -- C:\Program Files\Bonjour
[2011/02/18 13:28:53 | 000,000,000 | ---D | M] -- C:\Program Files\Common Files
[2011/01/17 14:53:38 | 000,000,000 | ---D | M] -- C:\Program Files\Content Manager
[2009/06/13 15:48:59 | 000,000,000 | ---D | M] -- C:\Program Files\CoreFTP
[2009/05/05 23:14:47 | 000,000,000 | ---D | M] -- C:\Program Files\Coupons
[2009/02/03 00:13:15 | 000,000,000 | ---D | M] -- C:\Program Files\CyberLink
[2008/03/20 02:37:13 | 000,000,000 | ---D | M] -- C:\Program Files\DIFX
[2010/01/02 20:06:12 | 000,000,000 | ---D | M] -- C:\Program Files\dvdSanta
[2009/08/08 14:51:54 | 000,000,000 | ---D | M] -- C:\Program Files\Edge Computer Consulting, Inc
[2010/07/04 09:29:12 | 000,000,000 | ---D | M] -- C:\Program Files\ESET
[2008/02/26 03:11:12 | 000,000,000 | ---D | M] -- C:\Program Files\eSobi
[2009/01/24 20:03:03 | 000,000,000 | ---D | M] -- C:\Program Files\GamesBar
[2010/12/15 23:02:35 | 000,000,000 | ---D | M] -- C:\Program Files\Google
[2010/04/16 20:21:25 | 000,000,000 | ---D | M] -- C:\Program Files\HP
[2008/08/15 20:36:39 | 000,000,000 | ---D | M] -- C:\Program Files\HTC
[2010/11/02 22:45:29 | 000,000,000 | -H-D | M] -- C:\Program Files\InstallShield Installation Information
[2011/02/10 04:29:55 | 000,000,000 | ---D | M] -- C:\Program Files\Internet Explorer
[2011/03/20 13:44:40 | 000,000,000 | ---D | M] -- C:\Program Files\iPod
[2011/03/20 13:46:47 | 000,000,000 | ---D | M] -- C:\Program Files\iTunes
[2011/01/14 11:22:37 | 000,000,000 | ---D | M] -- C:\Program Files\Java
[2010/10/12 21:09:04 | 000,000,000 | ---D | M] -- C:\Program Files\LG Electronics
[2010/10/04 16:34:51 | 000,000,000 | ---D | M] -- C:\Program Files\LimeWire
[2008/07/23 19:07:59 | 000,000,000 | ---D | M] -- C:\Program Files\Linksys EasyLink Advisor
[2010/09/29 23:39:29 | 000,000,000 | ---D | M] -- C:\Program Files\Logitech
[2010/04/10 19:03:55 | 000,000,000 | ---D | M] -- C:\Program Files\Lotto Buster
[2011/04/01 16:05:05 | 000,000,000 | ---D | M] -- C:\Program Files\Malwarebytes' Anti-Malware
[2008/09/20 14:38:53 | 000,000,000 | ---D | M] -- C:\Program Files\Maxtor
[2010/10/23 14:49:21 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft
[2008/09/15 20:01:34 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft ActiveSync
[2006/11/02 07:37:34 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Games
[2010/08/25 00:53:45 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft IntelliPoint
[2010/08/25 00:50:05 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft IntelliType Pro
[2009/01/07 22:35:24 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Office
[2011/03/16 03:21:22 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Silverlight
[2008/07/26 13:41:45 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft SQL Server Compact Edition
[2009/10/15 03:02:56 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Works
[2010/06/25 03:02:17 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft.NET
[2008/03/20 02:28:35 | 000,000,000 | ---D | M] -- C:\Program Files\Motorola
[2010/08/11 03:30:23 | 000,000,000 | ---D | M] -- C:\Program Files\Movie Maker
[2011/04/03 19:41:40 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox
[2006/11/02 07:37:34 | 000,000,000 | ---D | M] -- C:\Program Files\MSBuild
[2009/01/07 22:35:03 | 000,000,000 | ---D | M] -- C:\Program Files\MSECache
[2008/07/23 19:08:01 | 000,000,000 | ---D | M] -- C:\Program Files\MSXML 4.0
[2010/11/29 11:55:58 | 000,000,000 | ---D | M] -- C:\Program Files\NCH Software
[2009/01/25 01:20:27 | 000,000,000 | ---D | M] -- C:\Program Files\NCH Swift Sound
[2008/02/26 02:51:06 | 000,000,000 | ---D | M] -- C:\Program Files\NewTech Infosystems
[2010/10/12 21:28:11 | 000,000,000 | ---D | M] -- C:\Program Files\PANTECH
[2010/10/07 00:10:09 | 000,000,000 | ---D | M] -- C:\Program Files\PCFriendly
[2010/12/17 02:44:17 | 000,000,000 | ---D | M] -- C:\Program Files\QuickTime
[2010/04/06 22:33:15 | 000,000,000 | ---D | M] -- C:\Program Files\Real
[2010/08/11 13:53:40 | 000,000,000 | ---D | M] -- C:\Program Files\RealArcade
[2008/04/20 12:34:08 | 000,000,000 | ---D | M] -- C:\Program Files\Realtek
[2006/11/02 07:37:34 | 000,000,000 | ---D | M] -- C:\Program Files\Reference Assemblies
[2010/10/12 20:58:24 | 000,000,000 | ---D | M] -- C:\Program Files\Research In Motion
[2010/10/12 21:03:13 | 000,000,000 | ---D | M] -- C:\Program Files\Samsung
[2010/11/02 22:45:16 | 000,000,000 | ---D | M] -- C:\Program Files\Seagate
[2011/02/18 13:28:53 | 000,000,000 | R--D | M] -- C:\Program Files\Skype
[2010/02/10 22:38:09 | 000,000,000 | ---D | M] -- C:\Program Files\SmartDVDCreatorPro
[2010/09/29 19:50:08 | 000,000,000 | ---D | M] -- C:\Program Files\Soluto
[2008/07/22 15:40:05 | 000,000,000 | ---D | M] -- C:\Program Files\supportdotcom
[2010/10/20 08:54:29 | 000,000,000 | ---D | M] -- C:\Program Files\SystemRequirementsLab
[2009/11/18 00:49:47 | 000,000,000 | ---D | M] -- C:\Program Files\TechSmith
[2011/03/09 09:12:47 | 000,000,000 | ---D | M] -- C:\Program Files\TurboTax
[2008/06/01 14:11:44 | 000,000,000 | ---D | M] -- C:\Program Files\Ubisoft
[2006/11/02 08:01:55 | 000,000,000 | -H-D | M] -- C:\Program Files\Uninstall Information
[2010/10/12 21:54:07 | 000,000,000 | ---D | M] -- C:\Program Files\V CAST Media Manager
[2010/11/04 23:32:04 | 000,000,000 | ---D | M] -- C:\Program Files\Winamp
[2009/09/13 23:52:50 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Calendar
[2009/09/13 23:52:47 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Collaboration
[2009/09/13 23:52:39 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Defender
[2009/09/13 23:52:46 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Journal
[2010/10/23 14:28:31 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Live
[2011/02/10 04:29:55 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Mail
[2010/10/17 08:41:38 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Media Player
[2006/11/02 07:37:34 | 000,000,000 | ---D | M] -- C:\Program Files\Windows NT
[2009/09/13 23:52:44 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Photo Gallery
[2009/11/17 04:21:42 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Portable Devices
[2009/09/13 23:52:47 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Sidebar
[2010/10/12 20:57:07 | 000,000,000 | ---D | M] -- C:\Program Files\Xiph.Org
[2008/07/25 23:20:43 | 000,000,000 | ---D | M] -- C:\Program Files\Yahoo!
[2008/03/20 02:37:24 | 000,000,000 | ---D | M] -- C:\Program Files\YUAN
< %appdata%\*.* >
[2010/07/21 16:17:39 | 000,106,776 | ---- | M] () -- C:\Users\Office Depot\AppData\Roaming\GDIPFONTCACHEV1.DAT
[2010/02/26 09:27:22 | 000,000,088 | ---- | M] () -- C:\Users\Office Depot\AppData\Roaming\usb.inf
[2008/08/16 23:44:18 | 000,001,028 | ---- | M] () -- C:\Users\Office Depot\AppData\Roaming\WavCodec.wff
[2009/01/24 13:23:50 | 000,000,132 | ---- | M] () -- C:\Users\Office Depot\AppData\Roaming\wklnhst.dat
< MD5 for: AGP440.SYS >
[2008/01/20 21:23:01 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\ERDNT\cache\AGP440.sys
[2008/01/20 21:23:01 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\System32\drivers\AGP440.sys
[2008/01/20 21:23:01 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_51b95d75\AGP440.sys
[2008/01/20 21:23:01 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_f750e484\AGP440.sys
[2008/01/20 21:23:01 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.0.6001.18000_none_ba12ed3bbeb0d97a\AGP440.sys
[2008/01/20 21:23:01 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.0.6002.18005_none_bbfe6647bbd2a4c6\AGP440.sys
[2006/11/02 04:49:52 | 000,053,864 | ---- | M] (Microsoft Corporation) MD5=EF23439CDD587F64C2C1B8825CEAD7D8 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_920a2c1f\AGP440.sys
< MD5 for: ATAPI.SYS >
[2009/04/11 01:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B880BC4 -- C:\Windows\ERDNT\cache\atapi.sys
[2009/04/11 01:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B880BC4 -- C:\Windows\System32\drivers\atapi.sys
[2009/04/11 01:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B880BC4 -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_b12d8e84\atapi.sys
[2009/04/11 01:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B880BC4 -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6002.18005_none_df23a1261eab99e8\atapi.sys
[2008/01/20 21:23:00 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=2D9C903DC76A66813D350A562DE40ED9 -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_cc18792d\atapi.sys
[2008/01/20 21:23:00 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=2D9C903DC76A66813D350A562DE40ED9 -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6001.18000_none_dd38281a2189ce9c\atapi.sys
[2006/11/02 04:49:36 | 000,019,048 | ---- | M] (Microsoft Corporation) MD5=4F4FCB8B6EA06784FB6D475B7EC7300F -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_c6c2e699\atapi.sys
< MD5 for: CNGAUDIT.DLL >
[2006/11/02 04:46:03 | 000,011,776 | ---- | M] (Microsoft Corporation) MD5=7F15B4953378C8B5161D65C26D5FED4D -- C:\Windows\ERDNT\cache\cngaudit.dll
[2006/11/02 04:46:03 | 000,011,776 | ---- | M] (Microsoft Corporation) MD5=7F15B4953378C8B5161D65C26D5FED4D -- C:\Windows\System32\cngaudit.dll
[2006/11/02 04:46:03 | 000,011,776 | ---- | M] (Microsoft Corporation) MD5=7F15B4953378C8B5161D65C26D5FED4D -- C:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.0.6000.16386_none_e62d292932a96ce6\cngaudit.dll
< MD5 for: DISK.SYS >
[2009/04/11 01:32:31 | 000,053,736 | ---- | M] (Microsoft Corporation) MD5=5D4AEFC3386920236A548271F8F1AF6A -- C:\Windows\System32\drivers\disk.sys
[2009/04/11 01:32:31 | 000,053,736 | ---- | M] (Microsoft Corporation) MD5=5D4AEFC3386920236A548271F8F1AF6A -- C:\Windows\System32\DriverStore\FileRepository\disk.inf_5c850fad\disk.sys
[2009/04/11 01:32:31 | 000,053,736 | ---- | M] (Microsoft Corporation) MD5=5D4AEFC3386920236A548271F8F1AF6A -- C:\Windows\winsxs\x86_disk.inf_31bf3856ad364e35_6.0.6002.18005_none_fbb1faf0714e4ea6\disk.sys
[2008/01/20 21:23:20 | 000,055,352 | ---- | M] (Microsoft Corporation) MD5=64109E623ABD6955C8FB110B592E68B7 -- C:\Windows\System32\DriverStore\FileRepository\disk.inf_90722180\disk.sys
[2008/01/20 21:23:20 | 000,055,352 | ---- | M] (Microsoft Corporation) MD5=64109E623ABD6955C8FB110B592E68B7 -- C:\Windows\winsxs\x86_disk.inf_31bf3856ad364e35_6.0.6001.18000_none_f9c681e4742c835a\disk.sys
[2006/11/02 04:49:51 | 000,052,840 | ---- | M] (Microsoft Corporation) MD5=841AF4C4D41D3E3B2F244E976B0F7963 -- C:\Windows\System32\DriverStore\FileRepository\disk.inf_e0b0b355\disk.sys
< MD5 for: IASTORV.SYS >
[2008/01/20 21:23:23 | 000,235,064 | ---- | M] (Intel Corporation) MD5=54155EA1B0DF185878E0FC9EC3AC3A14 -- C:\Windows\System32\drivers\iaStorV.sys
[2008/01/20 21:23:23 | 000,235,064 | ---- | M] (Intel Corporation) MD5=54155EA1B0DF185878E0FC9EC3AC3A14 -- C:\Windows\System32\DriverStore\FileRepository\iastorv.inf_c9df7691\iaStorV.sys
[2008/01/20 21:23:23 | 000,235,064 | ---- | M] (Intel Corporation) MD5=54155EA1B0DF185878E0FC9EC3AC3A14 -- C:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.0.6001.18000_none_af11527887c7fa8f\iaStorV.sys
[2006/11/02 04:51:25 | 000,232,040 | ---- | M] (Intel Corporation) MD5=C957BF4B5D80B46C5017BF0101E6C906 -- C:\Windows\System32\DriverStore\FileRepository\iastorv.inf_37cdafa4\iaStorV.sys
< MD5 for: NETLOGON.DLL >
[2009/04/11 01:28:23 | 000,592,896 | ---- | M] (Microsoft Corporation) MD5=95DAECF0FB120A7B5DA679CC54E37DDE -- C:\Windows\ERDNT\cache\netlogon.dll
[2009/04/11 01:28:23 | 000,592,896 | ---- | M] (Microsoft Corporation) MD5=95DAECF0FB120A7B5DA679CC54E37DDE -- C:\Windows\System32\netlogon.dll
[2009/04/11 01:28:23 | 000,592,896 | ---- | M] (Microsoft Corporation) MD5=95DAECF0FB120A7B5DA679CC54E37DDE -- C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.0.6002.18005_none_ffa3304f351bb3a3\netlogon.dll
[2008/01/20 21:24:05 | 000,592,384 | ---- | M] (Microsoft Corporation) MD5=A8EFC0B6E75B789F7FD3BA5025D4E37F -- C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.0.6001.18000_none_fdb7b74337f9e857\netlogon.dll
< MD5 for: NVSTOR.SYS >
[2006/11/02 04:50:13 | 000,040,040 | ---- | M] (NVIDIA Corporation) MD5=9E0BA19A28C498A6D323D065DB76DFFC -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_733654ff\nvstor.sys
[2008/01/20 21:23:21 | 000,045,112 | ---- | M] (NVIDIA Corporation) MD5=ABED0C09758D1D97DB0042DBB2688177 -- C:\Windows\System32\drivers\nvstor.sys
[2008/01/20 21:23:21 | 000,045,112 | ---- | M] (NVIDIA Corporation) MD5=ABED0C09758D1D97DB0042DBB2688177 -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_31c3d71d\nvstor.sys
[2008/01/20 21:23:21 | 000,045,112 | ---- | M] (NVIDIA Corporation) MD5=ABED0C09758D1D97DB0042DBB2688177 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.0.6001.18000_none_39dac327befea467\nvstor.sys
< MD5 for: SCECLI.DLL >
[2008/01/20 21:24:50 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=28B84EB538F7E8A0FE8B9299D591E0B9 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.0.6001.18000_none_380de25bd91b6f12\scecli.dll
[2009/04/11 01:28:24 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=8FC182167381E9915651267044105EE1 -- C:\Windows\ERDNT\cache\scecli.dll
[2009/04/11 01:28:24 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=8FC182167381E9915651267044105EE1 -- C:\Windows\System32\scecli.dll
[2009/04/11 01:28:24 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=8FC182167381E9915651267044105EE1 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.0.6002.18005_none_39f95b67d63d3a5e\scecli.dll
< MD5 for: USBSTOR.SYS >
[2008/01/20 21:23:24 | 000,055,296 | ---- | M] (Microsoft Corporation) MD5=87BA6B83C5D19B69160968D07D6E2982 -- C:\Windows\System32\DriverStore\FileRepository\usbstor.inf_b9f18584\USBSTOR.SYS
[2008/01/20 21:23:24 | 000,055,296 | ---- | M] (Microsoft Corporation) MD5=87BA6B83C5D19B69160968D07D6E2982 -- C:\Windows\winsxs\x86_usbstor.inf_31bf3856ad364e35_6.0.6001.18000_none_48864eb697d31b43\USBSTOR.SYS
[2009/04/10 23:42:55 | 000,065,536 | ---- | M] (Microsoft Corporation) MD5=BE3DA31C191BC222D9AD503C5224F2AD -- C:\Windows\System32\drivers\USBSTOR.SYS
[2009/04/10 23:42:55 | 000,065,536 | ---- | M] (Microsoft Corporation) MD5=BE3DA31C191BC222D9AD503C5224F2AD -- C:\Windows\System32\DriverStore\FileRepository\usbstor.inf_72a6a3e5\USBSTOR.SYS
[2009/04/10 23:42:55 | 000,065,536 | ---- | M] (Microsoft Corporation) MD5=BE3DA31C191BC222D9AD503C5224F2AD -- C:\Windows\winsxs\x86_usbstor.inf_31bf3856ad364e35_6.0.6002.18005_none_4a71c7c294f4e68f\USBSTOR.SYS
[2006/11/02 03:55:05 | 000,054,784 | ---- | M] (Microsoft Corporation) MD5=FDBAABF07244C60B0F4E0A6E71A107C6 -- C:\Windows\System32\DriverStore\FileRepository\usbstor.inf_bb2778a0\USBSTOR.SYS
< HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs >
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install\\LastSuccessTime: 2011-03-24 08:01:37
========== Alternate Data Streams ==========
@Alternate Data Stream - 127 bytes -> C:\ProgramData\TEMP:9AB56A06
@Alternate Data Stream - 121 bytes -> C:\ProgramData\TEMP:DFC5A2B2
@Alternate Data Stream - 115 bytes -> C:\ProgramData\TEMP:A8ADE5D8
@Alternate Data Stream - 112 bytes -> C:\ProgramData\TEMP:4F636E25
@Alternate Data Stream - 108 bytes -> C:\ProgramData\TEMP:861A898F
@Alternate Data Stream - 107 bytes -> C:\ProgramData\TEMP:131C0EE9
< End of report >