========== Files - Modified Within 30 Days ==========
[2010/08/27 11:46:07 | 000,002,187 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Safari.lnk
[2010/08/27 11:43:42 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010/08/27 11:43:41 | 004,924,323 | ---- | M] () -- C:\WINDOWS\{00000000-00000000-0000000D-00001102-00000004-20021102}.CDF
[2010/08/27 11:42:18 | 000,000,882 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2010/08/27 11:42:14 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010/08/27 11:42:10 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010/08/27 11:41:04 | 000,031,056 | ---- | M] () -- C:\WINDOWS\System32\BMXStateBkp-{00000000-00000000-0000000D-00001102-00000004-20021102}.rfx
[2010/08/27 11:41:04 | 000,031,056 | ---- | M] () -- C:\WINDOWS\System32\BMXState-{00000000-00000000-0000000D-00001102-00000004-20021102}.rfx
[2010/08/27 11:41:04 | 000,030,168 | ---- | M] () -- C:\WINDOWS\System32\BMXCtrlState-{00000000-00000000-0000000D-00001102-00000004-20021102}.rfx
[2010/08/27 11:41:04 | 000,030,168 | ---- | M] () -- C:\WINDOWS\System32\BMXBkpCtrlState-{00000000-00000000-0000000D-00001102-00000004-20021102}.rfx
[2010/08/27 11:41:04 | 000,001,080 | ---- | M] () -- C:\WINDOWS\System32\settingsbkup.sfm
[2010/08/27 11:41:04 | 000,001,080 | ---- | M] () -- C:\WINDOWS\System32\settings.sfm
[2010/08/27 11:41:04 | 000,000,384 | ---- | M] () -- C:\WINDOWS\System32\DVCStateBkp-{00000000-00000000-0000000D-00001102-00000004-20021102}.dat
[2010/08/27 11:41:04 | 000,000,384 | ---- | M] () -- C:\WINDOWS\System32\DVCState-{00000000-00000000-0000000D-00001102-00000004-20021102}.dat
[2010/08/27 11:40:52 | 011,272,192 | -H-- | M] () -- C:\Documents and Settings\Ranchy\NTUSER.DAT
[2010/08/27 11:40:52 | 000,000,278 | -HS- | M] () -- C:\Documents and Settings\Ranchy\ntuser.ini
[2010/08/27 11:25:32 | 003,829,261 | ---- | M] () -- C:\Documents and Settings\Ranchy\Desktop\ComboFix.exe
[2010/08/27 11:23:48 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Ranchy\Desktop\OTL.com
[2010/08/27 11:21:59 | 004,240,656 | -H-- | M] () -- C:\Documents and Settings\Ranchy\Local Settings\Application Data\IconCache.db
[2010/08/27 10:21:01 | 000,000,886 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2010/08/27 09:01:36 | 064,013,829 | ---- | M] () -- C:\WINDOWS\System32\drivers\Avg\incavi.avm
[2010/08/24 22:56:13 | 000,000,664 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat
[2010/08/15 18:20:57 | 000,002,497 | ---- | M] () -- C:\Documents and Settings\Ranchy\Desktop\Word 2003.lnk
[2010/08/12 21:55:21 | 000,000,792 | ---- | M] () -- C:\Documents and Settings\Ranchy\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Microsoft Office Outlook.lnk
[2010/08/12 21:55:19 | 000,522,560 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2010/08/12 21:55:19 | 000,444,028 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010/08/12 21:55:19 | 000,071,904 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010/08/12 21:55:16 | 000,002,521 | ---- | M] () -- C:\Documents and Settings\Ranchy\Desktop\Outlook 2003.lnk
[2010/08/12 21:37:41 | 001,425,448 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010/08/12 20:08:14 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2010/08/12 20:05:54 | 000,000,702 | ---- | M] () -- C:\WINDOWS\win.ini
[2010/08/04 22:12:43 | 000,002,495 | ---- | M] () -- C:\Documents and Settings\Ranchy\Desktop\Excel 2003.lnk
[5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[3 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
========== Files Created - No Company Name ==========
[2010/08/27 11:49:01 | 003,829,261 | ---- | C] () -- C:\Documents and Settings\Ranchy\Desktop\ComboFix.exe
[2010/08/24 22:56:13 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2009/11/26 22:27:00 | 009,611,520 | ---- | C] () -- C:\WINDOWS\System32\drivers\snp2uvc.sys
[2009/11/26 22:27:00 | 000,028,160 | ---- | C] () -- C:\WINDOWS\System32\drivers\sncduvc.sys
[2009/11/26 22:27:00 | 000,015,497 | ---- | C] () -- C:\WINDOWS\snp2uvc.ini
[2009/08/03 16:07:42 | 000,403,816 | ---- | C] () -- C:\WINDOWS\System32\OGACheckControl.dll
[2009/04/27 00:13:36 | 000,000,314 | ---- | C] () -- C:\WINDOWS\primopdf.ini
[2008/04/24 23:47:58 | 000,028,672 | ---- | C] () -- C:\WINDOWS\System32\doecom.dll
[2008/04/24 23:47:55 | 000,017,920 | ---- | C] () -- C:\WINDOWS\System32\IMPLODE.DLL
[2008/02/23 23:03:28 | 000,000,032 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\ezsid.dat
[2007/06/13 13:44:55 | 000,051,304 | ---- | C] () -- C:\WINDOWS\System32\drivers\atnt40k.sys
[2007/01/27 12:27:02 | 000,000,017 | ---- | C] () -- C:\WINDOWS\ADAMGO.INI
[2006/12/29 18:20:40 | 000,000,214 | ---- | C] () -- C:\WINDOWS\HP_48BitScanUpdatePatch.ini
[2006/10/20 09:18:41 | 000,000,336 | -HS- | C] () -- C:\WINDOWS\System32\xbadd.ini2
[2006/09/30 10:22:22 | 000,005,645 | ---- | C] () -- C:\Documents and Settings\Ranchy\Application Data\GdiplusUpgrade_MSIApproach_Wrapper.log
[2006/09/30 10:22:22 | 000,000,206 | ---- | C] () -- C:\WINDOWS\HPGdiPlus.ini
[2006/09/21 20:57:18 | 000,000,170 | ---- | C] () -- C:\WINDOWS\wininit.ini
[2006/07/04 13:43:10 | 000,000,366 | ---- | C] () -- C:\WINDOWS\hpntwksetup.ini
[2006/03/30 22:34:06 | 000,000,129 | ---- | C] () -- C:\Documents and Settings\Ranchy\Local Settings\Application Data\fusioncache.dat
[2006/03/30 22:02:24 | 000,007,580 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\hpzinstall.log
[2006/03/26 00:56:56 | 000,000,099 | ---- | C] () -- C:\WINDOWS\Quicken.ini
[2006/03/01 18:27:08 | 000,000,021 | ---- | C] () -- C:\WINDOWS\atid.ini
[2005/11/25 20:04:46 | 000,058,880 | ---- | C] () -- C:\Documents and Settings\Ranchy\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2005/08/04 18:36:08 | 000,000,040 | ---- | C] () -- C:\WINDOWS\nero.INI
[2005/07/25 11:21:30 | 000,016,973 | ---- | C] () -- C:\WINDOWS\System32\ZWebAuth.dll
[2005/05/31 22:30:28 | 000,176,235 | ---- | C] () -- C:\WINDOWS\System32\Primomonnt.dll
[2005/05/22 15:45:28 | 000,043,520 | ---- | C] () -- C:\WINDOWS\System32\CmdLineExt03.dll
[2005/03/27 15:46:49 | 000,001,142 | ---- | C] () -- C:\WINDOWS\cdplayer.ini
[2004/09/06 11:17:33 | 000,000,231 | ---- | C] () -- C:\WINDOWS\AC3API.INI
[2004/09/06 11:17:09 | 000,043,080 | ---- | C] () -- C:\WINDOWS\System32\e10kxwdm.ini
[2004/09/06 11:17:09 | 000,000,175 | ---- | C] () -- C:\WINDOWS\System32\ctzapxx.ini
[2004/09/06 11:17:00 | 000,005,515 | ---- | C] () -- C:\WINDOWS\System32\ENSDEF.INI
[2004/09/06 11:17:00 | 000,000,194 | ---- | C] () -- C:\WINDOWS\System32\KILL.INI
[2004/09/06 11:15:41 | 000,000,136 | ---- | C] () -- C:\WINDOWS\SBWIN.INI
[2004/09/06 00:21:54 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ATIMMC.INI
[2004/09/04 19:29:35 | 000,005,824 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS
[2004/09/04 19:29:35 | 000,003,913 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini
[2004/09/04 19:17:22 | 000,000,480 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2003/01/07 15:05:08 | 000,002,695 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI
[2002/09/23 15:39:44 | 000,013,601 | ---- | C] () -- C:\WINDOWS\System32\vctest.ini
[2002/02/27 17:50:00 | 000,197,120 | ---- | C] () -- C:\WINDOWS\System32\patchw32.dll
[2000/03/29 11:48:24 | 000,066,560 | ---- | C] () -- C:\WINDOWS\System32\atiyuv12.dll
[2000/01/31 17:36:16 | 000,056,832 | ---- | C] () -- C:\WINDOWS\System32\Iyvu9_32.dll
========== Custom Scans ==========
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
[3 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
< %systemroot%\system32\*.exe /lockedfiles >
[3 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
< %systemroot%\Tasks\*.job /lockedfiles >
< %systemroot%\system32\drivers\*.sys /lockedfiles >
< %systemroot%\System32\config\*.sav >
[2004/09/04 13:25:32 | 000,094,208 | ---- | M] () -- C:\WINDOWS\system32\config\default.sav
[2004/09/04 13:25:32 | 000,626,688 | ---- | M] () -- C:\WINDOWS\system32\config\software.sav
[2004/09/04 13:25:32 | 000,434,176 | ---- | M] () -- C:\WINDOWS\system32\config\system.sav
< %systemroot%\system32\*.sys >
[2003/03/31 08:00:00 | 000,009,029 | ---- | M] () -- C:\WINDOWS\system32\ansi.sys
[2003/03/31 08:00:00 | 000,027,097 | ---- | M] () -- C:\WINDOWS\system32\country.sys
[2003/03/31 08:00:00 | 000,004,768 | ---- | M] () -- C:\WINDOWS\system32\himem.sys
[2003/03/31 08:00:00 | 000,042,809 | ---- | M] () -- C:\WINDOWS\system32\key01.sys
[2003/03/31 08:00:00 | 000,042,537 | ---- | M] () -- C:\WINDOWS\system32\keyboard.sys
[2003/03/31 08:00:00 | 000,027,866 | ---- | M] () -- C:\WINDOWS\system32\ntdos.sys
[2003/03/31 08:00:00 | 000,029,146 | ---- | M] () -- C:\WINDOWS\system32\ntdos404.sys
[2003/03/31 08:00:00 | 000,029,370 | ---- | M] () -- C:\WINDOWS\system32\ntdos411.sys
[2003/03/31 08:00:00 | 000,029,274 | ---- | M] () -- C:\WINDOWS\system32\ntdos412.sys
[2003/03/31 08:00:00 | 000,029,146 | ---- | M] () -- C:\WINDOWS\system32\ntdos804.sys
[2004/08/03 22:45:10 | 000,033,840 | ---- | M] () -- C:\WINDOWS\system32\ntio.sys
[2004/08/03 22:45:16 | 000,034,560 | ---- | M] () -- C:\WINDOWS\system32\ntio404.sys
[2004/08/03 22:45:12 | 000,035,648 | ---- | M] () -- C:\WINDOWS\system32\ntio411.sys
[2004/08/03 22:45:16 | 000,035,424 | ---- | M] () -- C:\WINDOWS\system32\ntio412.sys
[2004/08/03 22:45:14 | 000,034,560 | ---- | M] () -- C:\WINDOWS\system32\ntio804.sys
[2008/04/13 14:44:59 | 000,017,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\watchdog.sys
[2010/06/23 09:44:04 | 001,851,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\win32k.sys
[3 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
< %systemroot%\system32\drivers\*.dll >
[2008/04/13 20:11:48 | 000,004,255 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\adv01nt5.dll
[2008/04/13 20:11:48 | 000,003,967 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\adv02nt5.dll
[2008/04/13 20:11:48 | 000,003,615 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\adv05nt5.dll
[2008/04/13 20:11:48 | 000,003,647 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\adv07nt5.dll
[2008/04/13 20:11:48 | 000,003,135 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\adv08nt5.dll
[2008/04/13 20:11:48 | 000,003,711 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\adv09nt5.dll
[2008/04/13 20:11:48 | 000,003,775 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\adv11nt5.dll
[2008/04/13 20:11:50 | 000,021,183 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\atv01nt5.dll
[2008/04/13 20:11:50 | 000,011,359 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\atv02nt5.dll
[2008/04/13 20:11:50 | 000,025,471 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\atv04nt5.dll
[2008/04/13 20:11:50 | 000,014,143 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\atv06nt5.dll
[2008/04/13 20:11:50 | 000,017,279 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\atv10nt5.dll
[2008/04/13 20:11:50 | 000,015,423 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\ch7xxnt5.dll
[2008/04/13 20:12:05 | 000,003,901 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\siint5.dll
[2008/04/13 20:12:08 | 000,011,325 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\vchnt5.dll
< %systemroot%\system32\drivers\*.ini >
< %systemroot%\system32\drivers\*.exe >
< %SYSTEMDRIVE%\*.* >
[2006/04/22 18:05:57 | 000,000,786 | ---- | M] () -- C:\administrativeInfo.bak
[2006/04/22 18:05:57 | 000,000,786 | ---- | M] () -- C:\administrativeInfo.dbf
[2006/04/22 18:08:13 | 000,000,425 | ---- | M] () -- C:\albumImagesTable.bak
[2006/04/22 18:08:13 | 000,007,680 | ---- | M] () -- C:\albumImagesTable.cdx
[2006/04/22 18:08:13 | 000,000,425 | ---- | M] () -- C:\albumImagesTable.dbf
[2006/04/22 18:07:38 | 000,000,585 | ---- | M] () -- C:\albumTable.bak
[2006/04/22 18:07:38 | 000,004,608 | ---- | M] () -- C:\albumTable.cdx
[2006/04/22 18:07:38 | 000,000,585 | ---- | M] () -- C:\albumTable.dbf
[2004/09/04 20:27:19 | 000,000,211 | RHS- | M] () -- C:\boot.ini
[2006/04/22 18:01:37 | 000,000,000 | ---- | M] () -- C:\CB_Server_Errors.txt
[2004/09/04 18:55:57 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS
[2005/03/17 15:32:44 | 000,000,057 | ---- | M] () -- C:\DVDPATH.TXT
[2006/04/22 18:09:49 | 000,003,072 | ---- | M] () -- C:\EXIFTable.cdx
[2006/04/22 18:09:18 | 000,000,489 | ---- | M] () -- C:\EXIFTable.dbf
[2004/05/04 11:53:40 | 001,645,320 | ---- | M] (Microsoft Corporation) -- C:\gdiplus.dll
[2006/04/22 18:06:48 | 000,000,937 | ---- | M] () -- C:\imageTable.bak
[2006/04/22 18:06:48 | 000,009,216 | ---- | M] () -- C:\imageTable.cdx
[2006/04/22 18:06:48 | 000,000,937 | ---- | M] () -- C:\imageTable.dbf
[2006/04/22 18:06:43 | 000,000,512 | ---- | M] () -- C:\imageTable.fpk
[2006/04/22 18:06:43 | 000,000,512 | ---- | M] () -- C:\imageTable.fpt
[2005/08/15 09:42:28 | 002,478,024 | ---- | M] () -- C:\install.exe
[2004/09/04 18:55:57 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2008/03/23 20:39:19 | 000,004,271 | -H-- | M] () -- C:\IPH.PH
[2006/04/22 18:09:08 | 000,000,361 | ---- | M] () -- C:\keywordImagesTable.bak
[2006/04/22 18:09:08 | 000,006,144 | ---- | M] () -- C:\keywordImagesTable.cdx
[2006/04/22 18:09:08 | 000,000,361 | ---- | M] () -- C:\keywordImagesTable.dbf
[2006/04/22 18:08:38 | 000,000,457 | ---- | M] () -- C:\keywordTable.bak
[2006/04/22 18:08:38 | 000,004,608 | ---- | M] () -- C:\keywordTable.cdx
[2006/04/22 18:08:38 | 000,000,457 | ---- | M] () -- C:\keywordTable.dbf
[2006/04/22 18:09:13 | 000,000,361 | ---- | M] () -- C:\managedFolderTable.bak
[2006/04/22 18:09:13 | 000,000,361 | ---- | M] () -- C:\managedFolderTable.dbf
[2004/09/04 18:55:57 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2004/09/04 20:24:44 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM
[2009/12/10 01:08:20 | 000,250,048 | RHS- | M] () -- C:\ntldr
[2006/03/15 23:20:48 | 000,305,592 | ---- | M] () -- C:\ODA Application
[2006/03/15 23:02:47 | 000,305,591 | ---- | M] () -- C:\ODA-Application
[2010/08/27 11:42:06 | 1610,612,736 | -HS- | M] () -- C:\pagefile.sys
[2006/04/22 18:07:13 | 000,000,425 | ---- | M] () -- C:\pathnameTable.bak
[2006/04/22 18:07:13 | 000,004,608 | ---- | M] () -- C:\pathnameTable.cdx
[2006/04/22 18:07:13 | 000,000,425 | ---- | M] () -- C:\pathnameTable.dbf
[2006/04/22 18:05:57 | 000,006,144 | ---- | M] () -- C:\ROFImagesTable.cdx
[2006/04/22 18:05:29 | 000,000,360 | ---- | M] () -- C:\ROFImagesTable.dbf
[2006/04/22 18:05:27 | 000,003,072 | ---- | M] () -- C:\ROFTable.cdx
[2006/04/22 18:05:09 | 000,000,392 | ---- | M] () -- C:\ROFTable.dbf
< %PROGRAMFILES%\*. >
[2005/08/08 10:44:30 | 000,000,000 | ---D | M] -- C:\Program Files\3DGroove
[2005/05/31 22:30:23 | 000,000,000 | ---D | M] -- C:\Program Files\ActivePDF
[2005/03/12 20:35:39 | 000,000,000 | ---D | M] -- C:\Program Files\Admilli Service
[2009/08/20 17:37:51 | 000,000,000 | ---D | M] -- C:\Program Files\Adobe
[2004/09/04 19:20:16 | 000,000,000 | ---D | M] -- C:\Program Files\Ahead
[2009/08/20 13:15:38 | 000,000,000 | ---D | M] -- C:\Program Files\Apple Software Update
[2006/02/19 16:26:11 | 000,000,000 | ---D | M] -- C:\Program Files\ATI Multimedia
[2005/08/01 08:32:27 | 000,000,000 | ---D | M] -- C:\Program Files\Audio Conversion Studio
[2005/08/03 09:52:43 | 000,000,000 | ---D | M] -- C:\Program Files\Audio MP3 Maker
[2008/04/13 17:10:14 | 000,000,000 | ---D | M] -- C:\Program Files\Audit Support Center
[2010/06/27 13:56:56 | 000,000,000 | ---D | M] -- C:\Program Files\AVG
[2004/09/08 16:34:33 | 000,000,000 | ---D | M] -- C:\Program Files\AWS
[2009/11/27 10:39:40 | 000,000,000 | ---D | M] -- C:\Program Files\Common Files
[2004/09/04 18:53:48 | 000,000,000 | ---D | M] -- C:\Program Files\ComPlus Applications
[2004/09/06 11:19:36 | 000,000,000 | ---D | M] -- C:\Program Files\Creative
[2010/05/24 22:22:27 | 000,000,000 | ---D | M] -- C:\Program Files\Google
[2006/10/18 22:08:51 | 000,000,000 | ---D | M] -- C:\Program Files\HERACTSTG
[2006/09/30 10:20:30 | 000,000,000 | ---D | M] -- C:\Program Files\Hewlett-Packard
[2006/03/30 22:09:01 | 000,000,000 | ---D | M] -- C:\Program Files\HP
[2009/01/28 20:47:40 | 000,000,000 | ---D | M] -- C:\Program Files\iMesh Applications
[2009/11/26 22:26:54 | 000,000,000 | -H-D | M] -- C:\Program Files\InstallShield Installation Information
[2010/08/12 19:47:44 | 000,000,000 | ---D | M] -- C:\Program Files\Internet Explorer
[2006/03/27 23:33:04 | 000,000,000 | ---D | M] -- C:\Program Files\ItsDeductible2005
[2007/03/31 15:39:32 | 000,000,000 | ---D | M] -- C:\Program Files\ItsDeductible2006
[2009/08/20 16:51:03 | 000,000,000 | ---D | M] -- C:\Program Files\Java
[2007/05/13 13:52:07 | 000,000,000 | ---D | M] -- C:\Program Files\MEDIC
[2009/12/10 23:45:35 | 000,000,000 | ---D | M] -- C:\Program Files\Messenger
[2006/05/04 00:04:00 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft ActiveSync
[2008/03/17 23:08:44 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft CAPICOM 2.1.0.2
[2004/09/04 18:56:13 | 000,000,000 | ---D | M] -- C:\Program Files\microsoft frontpage
[2004/09/04 19:16:35 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Office
[2010/06/12 23:40:45 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Silverlight
[2006/05/04 00:03:46 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Visual Studio
[2008/03/17 23:07:37 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Works
[2006/05/03 22:52:10 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft.NET
[2010/08/12 19:41:48 | 000,000,000 | ---D | M] -- C:\Program Files\Movie Maker
[2010/08/27 08:21:51 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox
[2009/02/13 23:57:27 | 000,000,000 | ---D | M] -- C:\Program Files\MSBuild
[2008/06/06 22:00:20 | 000,000,000 | ---D | M] -- C:\Program Files\MSECache
[2004/09/04 18:53:39 | 000,000,000 | ---D | M] -- C:\Program Files\MSN
[2009/08/20 13:35:41 | 000,000,000 | ---D | M] -- C:\Program Files\MSN Gaming Zone
[2006/11/15 08:33:28 | 000,000,000 | ---D | M] -- C:\Program Files\MSXML 4.0
[2009/02/13 23:53:47 | 000,000,000 | ---D | M] -- C:\Program Files\MSXML 6.0
[2009/11/26 22:30:15 | 000,000,000 | ---D | M] -- C:\Program Files\MySpace
[2009/12/10 01:09:42 | 000,000,000 | ---D | M] -- C:\Program Files\NetMeeting
[2009/08/25 22:29:10 | 000,000,000 | ---D | M] -- C:\Program Files\Nitro PDF
[2010/03/27 15:08:04 | 000,000,000 | ---D | M] -- C:\Program Files\Norton Internet Security
[2010/03/27 15:10:31 | 000,000,000 | ---D | M] -- C:\Program Files\NortonInstaller
[2009/08/20 17:52:39 | 000,000,000 | ---D | M] -- C:\Program Files\NOS
[2004/09/04 18:53:39 | 000,000,000 | ---D | M] -- C:\Program Files\Online Services
[2010/05/11 23:27:43 | 000,000,000 | ---D | M] -- C:\Program Files\Outlook Express
[2008/04/06 13:16:27 | 000,000,000 | ---D | M] -- C:\Program Files\Quicken
[2009/08/20 13:16:18 | 000,000,000 | ---D | M] -- C:\Program Files\QuickTime
[2009/02/13 23:57:18 | 000,000,000 | ---D | M] -- C:\Program Files\Reference Assemblies
[2010/08/02 14:43:49 | 000,000,000 | ---D | M] -- C:\Program Files\Safari
[2010/08/27 11:39:57 | 000,000,000 | ---D | M] -- C:\Program Files\Search Toolbar
[2009/11/27 10:39:50 | 000,000,000 | R--D | M] -- C:\Program Files\Skype
[2005/04/30 23:00:47 | 000,000,000 | ---D | M] -- C:\Program Files\Spybot - Search & Destroy
[2004/09/28 21:48:07 | 000,000,000 | ---D | M] -- C:\Program Files\support.com
[2010/03/27 15:10:17 | 000,000,000 | ---D | M] -- C:\Program Files\Symantec
[2006/03/18 14:14:45 | 000,000,000 | ---D | M] -- C:\Program Files\Three Rings Design
[2005/11/30 23:41:50 | 000,000,000 | ---D | M] -- C:\Program Files\TitanTV
[2010/03/26 22:48:25 | 000,000,000 | ---D | M] -- C:\Program Files\TurboTax
[2004/09/06 00:14:45 | 000,000,000 | -H-D | M] -- C:\Program Files\Uninstall Information
[2009/11/26 22:26:58 | 000,000,000 | ---D | M] -- C:\Program Files\USB2.0 UVC Camera
[2007/01/10 20:25:49 | 000,000,000 | ---D | M] -- C:\Program Files\Viewpoint
[2007/03/25 14:32:21 | 000,000,000 | ---D | M] -- C:\Program Files\Virtools Web Player 3.0
[2009/05/08 22:50:48 | 000,000,000 | ---D | M] -- C:\Program Files\Virtual Earth 3D
[2007/06/13 13:44:47 | 000,000,000 | ---D | M] -- C:\Program Files\WebEx
[2009/08/20 12:06:40 | 000,000,000 | ---D | M] -- C:\Program Files\Winamp
[2009/02/22 13:51:03 | 000,000,000 | ---D | M] -- C:\Program Files\Winamp Remote
[2009/02/22 13:51:06 | 000,000,000 | ---D | M] -- C:\Program Files\Winamp Toolbar
[2008/03/15 23:00:52 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Live
[2004/09/06 00:14:52 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Media Components
[2009/12/10 01:09:40 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Media Player
[2009/12/10 01:09:40 | 000,000,000 | ---D | M] -- C:\Program Files\Windows NT
[2010/03/27 15:08:01 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Sidebar
[2004/09/04 20:08:55 | 000,000,000 | -H-D | M] -- C:\Program Files\WindowsUpdate
[2009/08/20 16:01:52 | 000,000,000 | ---D | M] -- C:\Program Files\WinRAR
[2005/03/17 23:22:55 | 000,000,000 | ---D | M] -- C:\Program Files\WinZip Self-Extractor
[2004/09/04 18:56:13 | 000,000,000 | ---D | M] -- C:\Program Files\xerox
< %appdata%\*.* >
[2004/09/04 14:00:26 | 000,000,062 | -HS- | M] () -- C:\Documents and Settings\Ranchy\Application Data\desktop.ini
[2006/09/30 10:49:09 | 000,005,645 | ---- | M] () -- C:\Documents and Settings\Ranchy\Application Data\GdiplusUpgrade_MSIApproach_Wrapper.log
< MD5 for: AGP440.SYS >
[2004/08/04 01:05:44 | 018,738,937 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:AGP440.sys
[2009/12/10 01:03:29 | 023,852,652 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:AGP440.sys
[2004/08/04 01:05:44 | 018,738,937 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp2.cab:AGP440.sys
[2009/12/10 01:03:29 | 023,852,652 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:AGP440.sys
[2008/04/13 14:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\ServicePackFiles\i386\agp440.sys
[2008/04/13 14:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\system32\drivers\agp440.sys
[2004/08/03 23:07:42 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=2C428FA0C3E3A01ED93C9B2A27D8D4BB -- C:\WINDOWS\$NtServicePackUninstall$\agp440.sys
< MD5 for: ATAPI.SYS >
[2003/03/31 08:00:00 | 010,158,890 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp1.cab:atapi.sys
[2004/08/04 01:05:44 | 018,738,937 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2009/12/10 01:03:29 | 023,852,652 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2004/08/04 01:05:44 | 018,738,937 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp2.cab:atapi.sys
[2009/12/10 01:03:29 | 023,852,652 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:atapi.sys
[2008/04/13 14:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ServicePackFiles\i386\atapi.sys
[2008/04/13 14:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
[2004/08/03 22:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\$NtServicePackUninstall$\atapi.sys
< MD5 for: DISK.SYS >
[2003/03/31 08:00:00 | 010,158,890 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp1.cab:disk.sys
[2004/08/04 01:05:44 | 018,738,937 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:disk.sys
[2009/12/10 01:03:29 | 023,852,652 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:disk.sys
[2004/08/04 01:05:44 | 018,738,937 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp2.cab:disk.sys
[2009/12/10 01:03:29 | 023,852,652 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:disk.sys
[2004/08/03 22:59:56 | 000,036,352 | ---- | M] (Microsoft Corporation) MD5=00CA44E4534865F8A3B64F7C0984BFF0 -- C:\WINDOWS\$NtServicePackUninstall$\disk.sys
[2008/04/13 14:40:47 | 000,036,352 | ---- | M] (Microsoft Corporation) MD5=044452051F3E02E7963599FC8F4F3E25 -- C:\WINDOWS\ServicePackFiles\i386\disk.sys
[2008/04/13 14:40:47 | 000,036,352 | ---- | M] (Microsoft Corporation) MD5=044452051F3E02E7963599FC8F4F3E25 -- C:\WINDOWS\system32\drivers\disk.sys
< MD5 for: EVENTLOG.DLL >
[2008/04/13 20:11:53 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=6D4FEB43EE538FC5428CC7F0565AA656 -- C:\WINDOWS\ServicePackFiles\i386\eventlog.dll
[2008/04/13 20:11:53 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=6D4FEB43EE538FC5428CC7F0565AA656 -- C:\WINDOWS\system32\eventlog.dll
[2004/08/04 00:56:44 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=82B24CB70E5944E6E34662205A2A5B78 -- C:\WINDOWS\$NtServicePackUninstall$\eventlog.dll
< MD5 for: NETLOGON.DLL >
[2008/04/13 20:12:01 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=1B7F071C51B77C272875C3A23E1E4550 -- C:\WINDOWS\ServicePackFiles\i386\netlogon.dll
[2008/04/13 20:12:01 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=1B7F071C51B77C272875C3A23E1E4550 -- C:\WINDOWS\system32\netlogon.dll
[2009/02/06 14:46:09 | 000,408,064 | ---- | M] (Microsoft Corporation) MD5=6C476D33D82F1054849790181E8F7772 -- C:\WINDOWS\$hf_mig$\KB968389\SP2QFE\netlogon.dll
[2009/02/06 14:46:09 | 000,408,064 | ---- | M] (Microsoft Corporation) MD5=6C476D33D82F1054849790181E8F7772 -- C:\WINDOWS\$hf_mig$\KB975467\SP2QFE\netlogon.dll
[2004/08/04 00:56:46 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=96353FCECBA774BB8DA74A1C6507015A -- C:\WINDOWS\$NtServicePackUninstall$\netlogon.dll
< MD5 for: SCECLI.DLL >
[2004/08/04 00:56:46 | 000,180,224 | ---- | M] (Microsoft Corporation) MD5=0F78E27F563F2AAF74B91A49E2ABF19A -- C:\WINDOWS\$NtServicePackUninstall$\scecli.dll
[2008/04/13 20:12:05 | 000,181,248 | ---- | M] (Microsoft Corporation) MD5=A86BB5E61BF3E39B62AB4C7E7085A084 -- C:\WINDOWS\ServicePackFiles\i386\scecli.dll
[2008/04/13 20:12:05 | 000,181,248 | ---- | M] (Microsoft Corporation) MD5=A86BB5E61BF3E39B62AB4C7E7085A084 -- C:\WINDOWS\system32\scecli.dll
< MD5 for: USBSTOR.SYS >
[2003/03/31 08:00:00 | 010,158,890 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp1.cab:usbstor.sys
[2004/08/04 01:05:44 | 018,738,937 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:usbstor.sys
[2009/12/10 01:03:29 | 023,852,652 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:usbstor.sys
[2004/08/04 01:05:44 | 018,738,937 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp2.cab:usbstor.sys
[2009/12/10 01:03:29 | 023,852,652 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:usbstor.sys
[2004/08/03 23:08:48 | 000,026,496 | ---- | M] (Microsoft Corporation) MD5=6CD7B22193718F1D17A47A1CD6D37E75 -- C:\WINDOWS\$NtServicePackUninstall$\usbstor.sys
[2008/04/13 14:45:38 | 000,026,368 | ---- | M] (Microsoft Corporation) MD5=A32426D9B14A089EAA1D922E0C5801A9 -- C:\WINDOWS\ServicePackFiles\i386\usbstor.sys
[2008/04/13 14:45:38 | 000,026,368 | ---- | M] (Microsoft Corporation) MD5=A32426D9B14A089EAA1D922E0C5801A9 -- C:\WINDOWS\system32\drivers\usbstor.sys
< MD5 for: VIASRAID.SYS >
[2003/06/12 14:31:46 | 000,075,904 | ---- | M] (VIA Technologies inc,.ltd) MD5=1493F351E5A4B915FB5BBB735C14004B -- C:\WINDOWS\OemDir\viasraid.sys
[2003/06/12 14:31:46 | 000,075,904 | ---- | M] (VIA Technologies inc,.ltd) MD5=1493F351E5A4B915FB5BBB735C14004B -- C:\WINDOWS\system32\drivers\viasraid.sys
< HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs >
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install\\LastSuccessTime: 2010-08-13 00:10:28
========== Alternate Data Streams ==========
@Alternate Data Stream - 111 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:E66B3874
< End of report >