OTL logfile created on: 2011-03-05 07:29:56 - Run 1
OTL by OldTimer - Version 3.2.22.2     Folder = C:\Users\DeeM\Downloads
 Ultimate Edition  (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
 
3,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 64,00% Memory free
6,00 Gb Paging File | 5,00 Gb Available in Paging File | 82,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 104,34 Gb Total Space | 4,69 Gb Free Space | 4,50% Space Free | Partition Type: NTFS
Drive D: | 361,42 Gb Total Space | 10,26 Gb Free Space | 2,84% Space Free | Partition Type: NTFS
Drive E: | 232,88 Gb Total Space | 2,48 Gb Free Space | 1,07% Space Free | Partition Type: NTFS
Drive M: | 465,76 Gb Total Space | 339,52 Gb Free Space | 72,90% Space Free | Partition Type: NTFS
 
Computer Name: DEEM-BIURO | User Name: DeeM | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
[color=#E56717]========== Processes (SafeList) ==========[/color]
 
PRC - [2011-03-05 07:26:00 | 000,581,120 | ---- | M] (OldTimer Tools) -- C:\Users\DeeM\Downloads\OTL.exe
PRC - [2011-03-03 09:18:57 | 000,912,344 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2011-01-17 19:50:30 | 011,322,880 | ---- | M] (OpenOffice.org) -- C:\Program Files\OpenOffice.org 3\program\soffice.exe
PRC - [2011-01-17 19:50:30 | 011,314,688 | ---- | M] (OpenOffice.org) -- C:\Program Files\OpenOffice.org 3\program\soffice.bin
PRC - [2011-01-07 21:06:12 | 000,803,432 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
PRC - [2011-01-07 19:48:56 | 000,378,984 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
PRC - [2010-11-24 03:21:18 | 000,130,000 | R--- | M] (Symantec Corporation) -- C:\Program Files\Norton 360\Engine\5.0.0.125\ccSvcHst.exe
PRC - [2010-11-09 21:08:58 | 000,146,000 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.exe
PRC - [2010-10-29 00:32:48 | 001,352,272 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Logitech\SetPointP\SetPoint.exe
PRC - [2010-04-01 10:16:20 | 000,357,696 | ---- | M] (DT Soft Ltd) -- C:\Program Files\DAEMON Tools Lite\DTLite.exe
PRC - [2010-04-01 10:16:12 | 000,275,776 | ---- | M] (DT Soft Ltd) -- C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe
PRC - [2010-02-11 12:42:32 | 000,172,328 | ---- | M] (TeamViewer GmbH) -- C:\Program Files\TeamViewer\Version5\TeamViewer_Service.exe
PRC - [2009-10-31 06:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2009-09-04 12:28:56 | 000,065,536 | ---- | M] (PostgreSQL Global Development Group) -- C:\Program Files\PostgreSQL\8.3\bin\pg_ctl.exe
PRC - [2009-09-04 12:27:00 | 003,690,496 | ---- | M] (PostgreSQL Global Development Group) -- C:\Program Files\PostgreSQL\8.3\bin\postgres.exe
PRC - [2009-07-14 02:14:42 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2009-07-14 02:14:15 | 000,271,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\conhost.exe
PRC - [2009-05-08 15:41:36 | 005,750,784 | ---- | M] () -- C:\Program Files\vtigercrm-5.2.0\mysql\bin\mysqld-nt.exe
PRC - [2009-05-08 15:41:36 | 000,020,541 | ---- | M] (Apache Software Foundation) -- C:\Program Files\vtigercrm-5.2.0\apache\bin\Apache.exe
PRC - [2007-06-28 20:44:34 | 002,816,512 | ---- | M] (Jerzy Znamirowski) -- C:\Program Files\TC UP\PLUGINS\Media\HEXelon\hexelon.exe
PRC - [2006-01-24 22:07:00 | 000,061,440 | ---- | M] (Vimicro) -- C:\Windows\VM303_STI.EXE
 
 
[color=#E56717]========== Modules (SafeList) ==========[/color]
 
MOD - [2011-03-05 07:26:00 | 000,581,120 | ---- | M] (OldTimer Tools) -- C:\Users\DeeM\Downloads\OTL.exe
MOD - [2009-07-14 02:03:50 | 001,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc\comctl32.dll
 
 
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
 
SRV - [2011-01-07 19:48:56 | 000,378,984 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2010-11-24 03:21:18 | 000,130,000 | R--- | M] (Symantec Corporation) [Unknown | Running] -- C:\Program Files\Norton 360\Engine\5.0.0.125\ccSvcHst.exe -- (N360)
SRV - [2010-10-28 11:13:30 | 000,293,456 | ---- | M] (Logitech, Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\LogiShrd\Bluetooth\LBTServ.exe -- (LBTServ)
SRV - [2010-04-27 12:43:48 | 000,611,840 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2010-03-16 17:01:22 | 000,132,464 | ---- | M] (Samsung Electronics CO., LTD.) [On_Demand | Stopped] -- C:\Windows\System32\SUPDSvc.exe -- (Samsung UPD Service)
SRV - [2010-02-11 12:42:32 | 000,172,328 | ---- | M] (TeamViewer GmbH) [Auto | Running] -- C:\Program Files\TeamViewer\Version5\TeamViewer_Service.exe -- (TeamViewer5)
SRV - [2010-01-13 00:24:20 | 000,217,088 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\PS3 Media Server\win32\service\wrapper.exe -- (PS3 Media Server)
SRV - [2009-09-04 12:28:56 | 000,065,536 | ---- | M] (PostgreSQL Global Development Group) [Auto | Running] -- C:\Program Files\PostgreSQL\8.3\bin\pg_ctl.exe -- (postgresql-8.3)
SRV - [2009-07-14 02:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009-07-14 02:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
SRV - [2009-07-14 02:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2009-07-14 02:14:30 | 000,009,216 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\regedt32.exe -- (NOD32FiXTemDono)
SRV - [2009-05-08 15:41:36 | 005,750,784 | ---- | M] () [Auto | Running] -- C:\Program Files\vtigercrm-5.2.0\mysql\bin\mysqld-nt.exe -- (vtigercrmMysql520)
SRV - [2009-05-08 15:41:36 | 000,020,541 | ---- | M] (Apache Software Foundation) [Auto | Running] -- C:\Program Files\vtigercrm-5.2.0\apache\bin\Apache.exe -- (vtigercrmApache520)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV - [2011-02-25 22:59:12 | 000,800,376 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\Definitions\BASHDefs\20110225.002\BHDrvx86.sys -- (BHDrvx86)
DRV - [2011-02-23 10:22:08 | 001,360,760 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\Definitions\VirusDefs\20110304.002\NAVEX15.SYS -- (NAVEX15)
DRV - [2011-02-23 10:22:08 | 000,371,248 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys -- (eeCtrl)
DRV - [2011-02-23 10:22:08 | 000,102,448 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys -- (EraserUtilRebootDrv)
DRV - [2011-02-23 10:22:08 | 000,086,008 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\Definitions\VirusDefs\20110304.002\NAVENG.SYS -- (NAVENG)
DRV - [2011-02-23 10:16:47 | 000,126,512 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\SYMEVENT.SYS -- (SymEvent)
DRV - [2011-02-11 16:40:45 | 000,697,328 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\sptd.sys -- (sptd)
DRV - [2011-01-08 04:27:00 | 010,467,656 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2010-12-01 06:24:00 | 000,295,032 | R--- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\system32\drivers\N360\0500000.07D\SYMNETS.SYS -- (SymNetS)
DRV - [2010-11-23 05:08:31 | 000,509,560 | R--- | M] (Symantec Corporation) [File_System | On_Demand | Running] -- C:\Windows\system32\drivers\N360\0500000.07D\SRTSP.SYS -- (SRTSP)
DRV - [2010-11-23 05:08:31 | 000,050,168 | R--- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\system32\drivers\N360\0500000.07D\SRTSPX.SYS -- (SRTSPX) Symantec Real Time Storage Protection (PEL)
DRV - [2010-11-18 03:59:55 | 000,652,336 | R--- | M] (Symantec Corporation) [File_System | Boot | Running] -- C:\Windows\system32\drivers\N360\0500000.07D\SYMEFA.SYS -- (SymEFA)
DRV - [2010-11-16 02:45:33 | 000,136,312 | R--- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\system32\drivers\N360\0500000.07D\Ironx86.SYS -- (SymIRON)
DRV - [2010-11-11 02:46:29 | 000,353,912 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\Definitions\IPSDefs\20110303.001\IDSvix86.sys -- (IDSVix86)
DRV - [2010-10-29 23:11:08 | 000,197,224 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\RtsUStor.sys -- (RSUSBSTOR)
DRV - [2010-10-21 03:28:36 | 000,340,016 | R--- | M] (Symantec Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\drivers\N360\0500000.07D\SYMDS.SYS -- (SymDS)
DRV - [2010-08-24 18:31:02 | 000,037,328 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\LMouFilt.Sys -- (LMouFilt)
DRV - [2010-08-24 18:30:52 | 000,038,864 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\LHidFilt.Sys -- (LHidFilt)
DRV - [2010-02-26 13:32:58 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\usbser_lowerfltj.sys -- (UsbserFilt)
DRV - [2010-02-26 13:32:46 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\usbser_lowerflt.sys -- (upperdev)
DRV - [2010-02-26 13:32:44 | 000,022,528 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ccdcmbo.sys -- (nmwcdc)
DRV - [2010-02-26 13:32:44 | 000,018,176 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ccdcmb.sys -- (nmwcd)
DRV - [2010-02-26 13:21:22 | 000,137,344 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\nmwcdnsu.sys -- (nmwcdnsu)
DRV - [2010-02-26 13:21:22 | 000,008,320 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\nmwcdnsuc.sys -- (nmwcdnsuc)
DRV - [2010-02-24 12:28:31 | 000,023,456 | ---- | M] (Phoenix Technologies) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\DrvAgent32.sys -- (DrvAgent32)
DRV - [2009-10-12 21:15:08 | 000,005,120 | ---- | M] (Samsung Electronics) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\SSPORT.sys -- (SSPORT)
DRV - [2009-10-12 21:15:06 | 000,038,400 | ---- | M] (Samsung Electronics Co., Ltd.) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\DGIVECP.SYS -- (DgiVecp)
DRV - [2009-07-14 02:19:10 | 000,175,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\vmbus.sys -- (vmbus)
DRV - [2009-07-14 02:19:10 | 000,040,896 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\vmstorfl.sys -- (storflt)
DRV - [2009-07-14 02:19:10 | 000,028,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\storvsc.sys -- (storvsc)
DRV - [2009-07-14 00:51:11 | 000,034,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (WinUsb)
DRV - [2009-07-14 00:28:47 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\vms3cap.sys -- (s3cap)
DRV - [2009-07-14 00:28:45 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\VMBusHID.sys -- (VMBusHID)
DRV - [2008-08-26 09:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2006-02-23 00:30:00 | 000,391,300 | ---- | M] (Vimicro Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\usbVM303.sys -- (ZSMC303) VIMICRO USB PC Camera (VC0303)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
 
 
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
 
 
IE - HKU\S-1-5-21-3093594755-15327316-2802845262-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.qooqlle.com/
IE - HKU\S-1-5-21-3093594755-15327316-2802845262-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
 
[color=#E56717]========== FireFox ==========[/color]
 
FF - prefs.js..browser.search.selectedEngine: "qooqlle"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.qooqlle.com/"
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..extensions.enabledItems: SignPlugin@bph.pl:1.4.0.3
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22
FF - prefs.js..extensions.enabledItems: {ef4e370e-d9f0-4e00-b93e-a4f274cfdd5a}:1.4.1
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23
FF - prefs.js..extensions.enabledItems: {BBDA0591-3099-440a-AA10-41764D9DB4DB}:2.0
FF - prefs.js..extensions.enabledItems: {2D3F3651-74B9-4795-BDEC-6DA2F431CB62}:5.5
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.3
FF - prefs.js..extensions.enabledItems: {1BC9BA34-1EED-42ca-A505-6D2F1A935BBB}:2.12.21.1
FF - prefs.js..extensions.enabledItems: {64161300-e22b-11db-8314-0800200c9a66}:0.9.5.8
FF - prefs.js..extensions.enabledItems: rsDownloadHelper@yevgenyandrov.net:1.0
FF - prefs.js..extensions.enabledItems: {DDC359D1-844A-42a7-9AA1-88A850A938A8}:2.0.1
FF - prefs.js..extensions.enabledItems: anticontainer@downthemall.net:0.9.5
FF - prefs.js..network.proxy.backup.ftp: "127.0.0.1"
FF - prefs.js..network.proxy.backup.ftp_port: 9666
FF - prefs.js..network.proxy.backup.gopher: "127.0.0.1"
FF - prefs.js..network.proxy.backup.gopher_port: 9666
FF - prefs.js..network.proxy.backup.socks: "127.0.0.1"
FF - prefs.js..network.proxy.backup.socks_port: 9666
FF - prefs.js..network.proxy.backup.ssl: "127.0.0.1"
FF - prefs.js..network.proxy.backup.ssl_port: 9666
FF - prefs.js..network.proxy.ftp: "127.0.0.1"
FF - prefs.js..network.proxy.ftp_port: 9666
FF - prefs.js..network.proxy.gopher: "127.0.0.1"
FF - prefs.js..network.proxy.gopher_port: 9666
FF - prefs.js..network.proxy.http: "127.0.0.1"
FF - prefs.js..network.proxy.http_port: 9666
FF - prefs.js..network.proxy.share_proxy_settings: true
FF - prefs.js..network.proxy.socks: "127.0.0.1"
FF - prefs.js..network.proxy.socks_port: 9666
FF - prefs.js..network.proxy.ssl: "127.0.0.1"
FF - prefs.js..network.proxy.ssl_port: 9666
FF - prefs.js..network.proxy.type: 0
 
FF - HKLM\software\mozilla\Firefox\Extensions\\{BBDA0591-3099-440a-AA10-41764D9DB4DB}: C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\IPSFFPlgn\ [2011-02-23 10:17:05 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}: C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\coFFPlgn\ [2011-02-23 10:16:06 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.14\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011-03-03 09:19:01 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.14\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011-03-03 09:19:01 | 000,000,000 | ---D | M]
 
[2010-02-17 09:07:35 | 000,000,000 | ---D | M] (No name found) -- C:\Users\DeeM\AppData\Roaming\mozilla\Extensions
[2011-03-05 07:17:00 | 000,000,000 | ---D | M] (No name found) -- C:\Users\DeeM\AppData\Roaming\mozilla\Firefox\Profiles\htjnedii.default\extensions
[2011-02-28 10:49:08 | 000,000,000 | ---D | M] (IE Tab 2 (FF 3.6+)) -- C:\Users\DeeM\AppData\Roaming\mozilla\Firefox\Profiles\htjnedii.default\extensions\{1BC9BA34-1EED-42ca-A505-6D2F1A935BBB}
[2011-03-03 09:21:57 | 000,000,000 | ---D | M] (Speed Dial) -- C:\Users\DeeM\AppData\Roaming\mozilla\Firefox\Profiles\htjnedii.default\extensions\{64161300-e22b-11db-8314-0800200c9a66}
[2011-02-28 10:49:09 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Users\DeeM\AppData\Roaming\mozilla\Firefox\Profiles\htjnedii.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
[2011-03-05 07:16:54 | 000,000,000 | ---D | M] (DownThemAll!) -- C:\Users\DeeM\AppData\Roaming\mozilla\Firefox\Profiles\htjnedii.default\extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}
[2010-12-10 09:24:47 | 000,000,000 | ---D | M] (FoxTab) -- C:\Users\DeeM\AppData\Roaming\mozilla\Firefox\Profiles\htjnedii.default\extensions\{ef4e370e-d9f0-4e00-b93e-a4f274cfdd5a}
[2011-03-05 07:16:53 | 000,000,000 | ---D | M] (DownThemAll! AntiContainer) -- C:\Users\DeeM\AppData\Roaming\mozilla\Firefox\Profiles\htjnedii.default\extensions\anticontainer@downthemall.net
[2011-03-05 07:16:54 | 000,000,000 | ---D | M] (RapidShare DownloadHelper) -- C:\Users\DeeM\AppData\Roaming\mozilla\Firefox\Profiles\htjnedii.default\extensions\rsDownloadHelper@yevgenyandrov.net
[2010-06-29 06:30:55 | 000,000,000 | ---D | M] (BPH Sign Plugin) -- C:\Users\DeeM\AppData\Roaming\mozilla\Firefox\Profiles\htjnedii.default\extensions\SignPlugin@bph.pl
[2011-02-24 07:39:18 | 000,002,039 | ---- | M] () -- C:\Users\DeeM\AppData\Roaming\Mozilla\Firefox\Profiles\htjnedii.default\searchplugins\torrentyorg.xml
[2011-01-16 01:35:40 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2010-06-28 18:30:41 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2010-11-27 21:40:21 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
[2011-01-16 01:35:40 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
[2011-02-23 10:16:06 | 000,000,000 | ---D | M] (Norton Toolbar) -- C:\PROGRAMDATA\NORTON\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\COFFPLGN
[2011-02-23 10:17:05 | 000,000,000 | ---D | M] (Norton IPS) -- C:\PROGRAMDATA\NORTON\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\IPSFFPLGN
[2010-11-12 18:53:06 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
[2009-10-23 15:01:34 | 000,102,400 | ---- | M] (Zylom) -- C:\Program Files\Mozilla Firefox\plugins\npzylomgamesplayer.dll
[2010-01-16 02:08:36 | 000,002,767 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml
[2010-01-16 02:08:36 | 000,001,406 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml
[2010-01-16 02:08:36 | 000,000,917 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml
[2010-01-16 02:08:36 | 000,000,858 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml
[2010-01-16 02:08:36 | 000,001,183 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml
[2010-01-16 02:08:36 | 000,001,683 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml
 
O1 HOSTS File: ([2009-06-10 22:39:37 | 000,000,824 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O2 - BHO: (Symantec NCO BHO) - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Norton 360\Engine\5.0.0.125\CoIEPlg.dll (Symantec Corporation)
O2 - BHO: (Symantec Intrusion Prevention) - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Norton 360\Engine\5.0.0.125\IPS\IPSBHO.dll (Symantec Corporation)
O3 - HKLM\..\Toolbar: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton 360\Engine\5.0.0.125\CoIEPlg.dll (Symantec Corporation)
O3 - HKU\S-1-5-21-3093594755-15327316-2802845262-1001\..\Toolbar\WebBrowser: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton 360\Engine\5.0.0.125\CoIEPlg.dll (Symantec Corporation)
O4 - HKLM..\Run: [BigDog303] C:\Windows\VM303_STI.EXE (Vimicro)
O4 - HKLM..\Run: [EvtMgr6] C:\Program Files\Logitech\SetPointP\SetPoint.exe (Logitech, Inc.)
O4 - HKLM..\Run: [GProton] C:\ProgramData\GProton.exe ()
O4 - HKU\S-1-5-21-3093594755-15327316-2802845262-1001..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - HKU\S-1-5-21-3093594755-15327316-2802845262-1001..\Run: [HEXelon MAX] C:\Program Files\TC UP\Plugins\Media\HEXelon\hexelon.exe (Jerzy Znamirowski)
O4 - HKU\S-1-5-21-3093594755-15327316-2802845262-1001..\Run: [Xvid] C:\Program Files\Xvid\CheckUpdate.exe ()
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-3093594755-15327316-2802845262-1003..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O4 - Startup: C:\Users\DeeM\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.1.lnk = D:\Program Files\OpenOffice.org 3\program\quickstart.exe ()
O4 - Startup: C:\Users\DeeM\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.3.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\Windows\System32\GPhotos.scr (Google Inc.)
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) -  File not found
O20 - Winlogon\Notify\LBTWlgn: DllName - c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll - c:\Program Files\Common Files\LogiShrd\Bluetooth\LBTWLgn.dll (Logitech, Inc.)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009-06-10 22:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2006-09-18 22:43:36 | 000,000,024 | ---- | M] () - D:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2011-02-06 21:53:08 | 000,144,582 | ---- | M] () - D:\AutoMapaSetupLog.txt -- [ NTFS ]
O32 - AutoRun File - [2006-11-29 09:43:59 | 000,000,000 | ---- | M] () - E:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) -  File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
 
NetSvcs: FastUserSwitchingCompatibility -  File not found
NetSvcs: Ias -  File not found
NetSvcs: Nla -  File not found
NetSvcs: Ntmssvc -  File not found
NetSvcs: NWCWorkstation -  File not found
NetSvcs: Nwsapagent -  File not found
NetSvcs: SRService -  File not found
NetSvcs: WmdmPmSp -  File not found
NetSvcs: LogonHours -  File not found
NetSvcs: PCAudit -  File not found
NetSvcs: helpsvc -  File not found
NetSvcs: uploadmgr -  File not found
 
 
SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: HelpSvc - Service
SafeBootMin: NTDS -  File not found
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: sacsvr - Service
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: vmms - Service
SafeBootMin: WinDefend - C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootMin: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootMin: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootMin: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices
 
SafeBootNet: Base - Driver Group
SafeBootNet: Boot Bus Extender - Driver Group
SafeBootNet: Boot file system - Driver Group
SafeBootNet: File system - Driver Group
SafeBootNet: Filter - Driver Group
SafeBootNet: HelpSvc - Service
SafeBootNet: Messenger - Service
SafeBootNet: NDIS Wrapper - Driver Group
SafeBootNet: NetBIOSGroup - Driver Group
SafeBootNet: NetDDEGroup - Driver Group
SafeBootNet: Network - Driver Group
SafeBootNet: NetworkProvider - Driver Group
SafeBootNet: NTDS -  File not found
SafeBootNet: PCI Configuration - Driver Group
SafeBootNet: PNP Filter - Driver Group
SafeBootNet: PNP_TDI - Driver Group
SafeBootNet: Primary disk - Driver Group
SafeBootNet: rdsessmgr - Service
SafeBootNet: sacsvr - Service
SafeBootNet: SCSI Class - Driver Group
SafeBootNet: Streams Drivers - Driver Group
SafeBootNet: System Bus Extender - Driver Group
SafeBootNet: TDI - Driver Group
SafeBootNet: vmms - Service
SafeBootNet: WinDefend - C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SafeBootNet: WudfUsbccidDriver - Driver
SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet: {50DD5230-BA8A-11D1-BF5D-0000F805F530} - Smart card readers
SafeBootNet: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootNet: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootNet: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootNet: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2011-03-03 12:53:07 | 000,000,000 | ---D | C] -- C:\Windows\Minidump
[2011-03-03 01:15:48 | 000,000,000 | ---D | C] -- C:\Users\DeeM\Desktop\list_by_djcrash_e2_HB&Astra
[2011-02-28 22:31:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\vtigercrm-5.2.0
[2011-02-28 22:30:48 | 000,000,000 | ---D | C] -- C:\Program Files\vtigercrm-5.2.0
[2011-02-27 21:50:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Xvid
[2011-02-27 21:50:06 | 000,000,000 | ---D | C] -- C:\Program Files\Xvid
[2011-02-27 19:35:29 | 000,000,000 | ---D | C] -- C:\Users\DeeM\AppData\Roaming\Media Player Classic
[2011-02-23 19:48:59 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\HDX4
[2011-02-23 19:48:59 | 000,000,000 | ---D | C] -- C:\Users\DeeM\AppData\Roaming\Engelmann Media
[2011-02-23 19:48:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Engelmann Media
[2011-02-23 19:48:59 | 000,000,000 | ---D | C] -- C:\Program Files\Engelmann Media
[2011-02-23 19:44:09 | 000,000,000 | ---D | C] -- C:\Users\DeeM\AppData\Roaming\Registry Mechanic
[2011-02-23 10:16:48 | 000,126,512 | ---- | C] (Symantec Corporation) -- C:\Windows\System32\drivers\SYMEVENT.SYS
[2011-02-23 10:16:47 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Symantec Shared
[2011-02-23 10:16:47 | 000,000,000 | ---D | C] -- C:\Program Files\Symantec
[2011-02-23 10:16:32 | 000,652,336 | R--- | C] (Symantec Corporation) -- C:\Windows\System32\drivers\N360\0500000.07D\SymEFA.sys
[2011-02-23 10:16:32 | 000,509,560 | R--- | C] (Symantec Corporation) -- C:\Windows\System32\drivers\N360\0500000.07D\srtsp.sys
[2011-02-23 10:16:32 | 000,340,016 | R--- | C] (Symantec Corporation) -- C:\Windows\System32\drivers\N360\0500000.07D\SymDS.sys
[2011-02-23 10:16:32 | 000,295,032 | R--- | C] (Symantec Corporation) -- C:\Windows\System32\drivers\N360\0500000.07D\symnets.sys
[2011-02-23 10:16:32 | 000,136,312 | R--- | C] (Symantec Corporation) -- C:\Windows\System32\drivers\N360\0500000.07D\Ironx86.sys
[2011-02-23 10:16:32 | 000,050,168 | R--- | C] (Symantec Corporation) -- C:\Windows\System32\drivers\N360\0500000.07D\srtspx.sys
[2011-02-23 10:16:30 | 000,106,928 | ---- | C] (GEAR Software Inc.) -- C:\Windows\System32\GEARAspi.dll
[2011-02-23 10:16:12 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\N360
[2011-02-23 10:16:12 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\N360\0500000.07D
[2011-02-23 10:16:06 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton 360
[2011-02-23 10:16:06 | 000,000,000 | ---D | C] -- C:\Program Files\Norton 360
[2011-02-19 03:46:34 | 000,000,000 | ---D | C] -- C:\ProgramData\TEMP
[2011-02-11 16:40:42 | 000,000,000 | -H-D | C] -- C:\ProgramData\{C408D0B2-D2DE-46C9-9628-D4E335EC4EB6}
[2011-02-11 16:39:49 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\AquaSoft
[2011-02-11 15:56:04 | 000,000,000 | ---D | C] -- C:\Users\DeeM\AppData\Roaming\AquaSoft
[2011-02-11 15:55:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AquaSoft
[2011-02-11 15:55:29 | 000,000,000 | ---D | C] -- C:\Program Files\AquaSoft
[2011-02-11 15:54:57 | 000,000,000 | -H-D | C] -- C:\ProgramData\{49D85E29-3BAC-4553-BEA2-2F43AED72844}
[2011-02-11 15:54:25 | 000,000,000 | ---D | C] -- C:\Users\DeeM\AppData\Local\PackageAware
[2011-02-11 00:11:38 | 000,000,000 | ---D | C] -- C:\Users\DeeM\Documents\Abrosoft FantaMorph
[2011-02-11 00:10:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Abrosoft FantaMorph 5
[2011-02-11 00:10:22 | 000,000,000 | ---D | C] -- C:\Program Files\Abrosoft
[2011-02-10 22:59:44 | 000,000,000 | ---D | C] -- C:\Users\DeeM\AppData\Roaming\SmarThru4
[2011-02-10 22:59:42 | 000,041,984 | ---- | C] (Samsung Electronics Co., Ltd.) -- C:\Windows\System32\drivers\DgivEcpXP.sys
[2011-02-10 22:59:33 | 000,458,752 | ---- | C] (Samsung Software Center) -- C:\Windows\prinst.exe
[2011-02-10 22:59:30 | 000,536,752 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\LTRVW13N.OCX
[2011-02-10 22:59:30 | 000,470,720 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\LTRPR13n.DLL
[2011-02-10 22:59:30 | 000,313,008 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\LTRIO13N.DLL
[2011-02-10 22:59:29 | 001,693,696 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\LTCLR13n.dll
[2011-02-10 22:59:29 | 000,935,088 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\LTR13N.DLL
[2011-02-10 22:59:29 | 000,747,008 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\ltocx13n.ocx
[2011-02-10 22:59:29 | 000,427,008 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\LFCMP13s.DLL
[2011-02-10 22:59:29 | 000,275,456 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\LFJ2K13s.dll
[2011-02-10 22:59:29 | 000,212,480 | ---- | C] (Eastman Kodak) -- C:\Windows\System32\PCDLIB32.DLL
[2011-02-10 22:59:29 | 000,185,856 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\Lfpng13s.dll
[2011-02-10 22:59:29 | 000,172,032 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\lftif13s.dll
[2011-02-10 22:59:29 | 000,131,584 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\lfjbg13s.dll
[2011-02-10 22:59:29 | 000,114,176 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\lffax13s.dll
[2011-02-10 22:59:29 | 000,111,104 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\lfpsd13s.dll
[2011-02-10 22:59:29 | 000,081,920 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\lfeps13s.dll
[2011-02-10 22:59:29 | 000,073,728 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\lffax13n.dll
[2011-02-10 22:59:29 | 000,070,656 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\lfbmp13s.dll
[2011-02-10 22:59:29 | 000,068,096 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\lfiff13s.dll
[2011-02-10 22:59:29 | 000,065,536 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\lfpcx13s.dll
[2011-02-10 22:59:29 | 000,065,536 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\lfani13s.dll
[2011-02-10 22:59:29 | 000,065,024 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\lfclp13s.dll
[2011-02-10 22:59:29 | 000,062,976 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\LFPNM13s.dll
[2011-02-10 22:59:29 | 000,060,928 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\lfimg13s.dll
[2011-02-10 22:59:29 | 000,060,416 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\lfitg13s.dll
[2011-02-10 22:59:29 | 000,059,904 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\lfpcd13s.dll
[2011-02-10 22:59:29 | 000,059,392 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\lfmsp13s.dll
[2011-02-10 22:59:29 | 000,058,880 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\lfavi13s.dll
[2011-02-10 22:59:29 | 000,047,616 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\lfeps13n.dll
[2011-02-10 22:59:29 | 000,044,032 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\lttwn13n.dll
[2011-02-10 22:59:29 | 000,031,744 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\lfclp13n.dll
[2011-02-10 22:59:29 | 000,027,648 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\lfiff13n.dll
[2011-02-10 22:59:29 | 000,026,624 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\lfpcx13n.dll
[2011-02-10 22:59:29 | 000,025,600 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\lfani13n.dll
[2011-02-10 22:59:29 | 000,020,992 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\lfimg13n.dll
[2011-02-10 22:59:29 | 000,019,968 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\lfpcd13n.dll
[2011-02-10 22:59:29 | 000,019,968 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\lfitg13n.dll
[2011-02-10 22:59:29 | 000,018,944 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\lfavi13n.dll
[2011-02-10 22:59:28 | 001,402,368 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\ltdlg13n.dll
[2011-02-10 22:59:28 | 001,009,664 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\Ltwvc13n.dll
[2011-02-10 22:59:28 | 000,446,464 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\ltkrn13n.dll
[2011-02-10 22:59:28 | 000,445,440 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\ltimg13n.dll
[2011-02-10 22:59:28 | 000,408,576 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\LFCMP13n.DLL
[2011-02-10 22:59:28 | 000,271,360 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\LFJ2K13n.dll
[2011-02-10 22:59:28 | 000,269,312 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\LTDIS13n.dll
[2011-02-10 22:59:28 | 000,206,848 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\ltefx13n.dll
[2011-02-10 22:59:28 | 000,181,760 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\Lfpng13n.dll
[2011-02-10 22:59:28 | 000,158,720 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\Ltpnt13n.dll
[2011-02-10 22:59:28 | 000,144,384 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\ltfil13n.DLL
[2011-02-10 22:59:28 | 000,132,096 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\lftif13n.dll
[2011-02-10 22:59:28 | 000,114,176 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\LTOCR13n.dll
[2011-02-10 22:59:28 | 000,108,032 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\LTTLB13n.dll
[2011-02-10 22:59:28 | 000,095,232 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\ltpdg13n.dll
[2011-02-10 22:59:28 | 000,090,112 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\lfjbg13n.dll
[2011-02-10 22:59:28 | 000,069,632 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\ltbar13n.dll
[2011-02-10 22:59:28 | 000,055,808 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\lfpsd13n.dll
[2011-02-10 22:59:28 | 000,051,200 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\ltlst13n.dll
[2011-02-10 22:59:28 | 000,032,256 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\lttmb13n.dll
[2011-02-10 22:59:28 | 000,031,232 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\LFPNM13n.dll
[2011-02-10 22:59:28 | 000,030,208 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\lfbmp13n.dll
[2011-02-10 22:59:28 | 000,018,944 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\lfmsp13n.dll
[2011-02-10 22:59:27 | 000,146,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Mfcoleui.dll
[2011-02-10 22:59:27 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SRC Shared
[2011-02-10 22:59:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\I.R.I.S.  Applications
[2011-02-10 22:59:06 | 000,000,000 | ---D | C] -- C:\Program Files\Readiris10
[2011-02-10 22:58:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SmarThru 4
[2011-02-10 22:58:52 | 000,000,000 | ---D | C] -- C:\Program Files\SmarThru 4
[2011-02-10 22:53:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung SCX-4x21 Series
[2011-02-10 22:52:33 | 000,038,400 | ---- | C] (Samsung Electronics Co., Ltd.) -- C:\Windows\System32\drivers\DGIVECP.SYS
[2011-02-10 22:47:37 | 000,000,000 | R--D | C] -- C:\Users\DeeM\Documents\Scanned Documents
[2011-02-10 22:47:37 | 000,000,000 | ---D | C] -- C:\Users\DeeM\Documents\Fax
[2011-02-10 21:28:42 | 000,000,000 | ---D | C] -- C:\Users\DeeM\AppData\Roaming\AMS Software
[2011-02-10 21:27:37 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Photo Slideshow Creator
[2011-02-10 21:27:13 | 000,000,000 | ---D | C] -- C:\Program Files\Photo Slideshow Creator
[2011-02-10 08:23:22 | 000,000,000 | ---D | C] -- C:\Users\DeeM\Desktop\Sid.Meiers.Civilization.V.Update.7-SKIDROW.7z
[2011-02-08 21:41:32 | 000,000,000 | ---D | C] -- C:\Users\DeeM\AppData\Local\CrashDumps
[2011-02-08 17:34:27 | 147,916,256 | ---- | C] (ULTIMA PRIME) -- C:\Users\DeeM\Desktop\tcup_53_(dobreprogramy.pl).exe
[2011-02-08 14:03:42 | 000,000,000 | --SD | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice.org 3.3
[2011-02-08 10:51:16 | 000,701,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msxml2.dll
[2011-02-08 10:51:16 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msxml4a.dll
[2011-02-08 10:51:16 | 000,038,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msxml2r.dll
[2011-02-08 10:51:16 | 000,021,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msxml2a.dll
[2011-02-08 10:51:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung Printers
[2011-02-08 10:51:15 | 000,000,000 | ---D | C] -- C:\Windows\Samsung
[2011-02-08 10:50:54 | 000,218,112 | ---- | C] (SEC) -- C:\Windows\System32\SIPDUtil.dll
[2011-02-08 10:50:54 | 000,157,552 | ---- | C] (SS) -- C:\Windows\System32\spd__ci.exe
[2011-02-08 10:50:54 | 000,141,680 | ---- | C] (Samsung Electronics CO., LTD.) -- C:\Windows\System32\SUPDSvcA.dll
[2011-02-08 10:50:54 | 000,132,464 | ---- | C] (Samsung Electronics CO., LTD.) -- C:\Windows\System32\SUPDSvc.exe
[2011-02-08 10:50:54 | 000,065,536 | ---- | C] (SS) -- C:\Windows\System32\spd__ci.dll
[2011-02-08 10:50:50 | 000,000,000 | ---D | C] -- C:\Program Files\Samsung
[2011-02-08 10:50:27 | 000,000,000 | ---D | C] -- C:\Windows\System32\sda
[2011-02-08 10:50:18 | 009,888,360 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\System32\RtsUStoricon.dll
[2011-02-08 10:50:18 | 000,313,960 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\System32\RtsUStor.dll
[2011-02-08 10:50:18 | 000,197,224 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\System32\drivers\RtsUStor.sys
[2011-02-08 10:11:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
[2011-02-08 10:09:44 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA Corporation
[2011-02-08 10:09:03 | 015,047,272 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvoglv32.dll
[2011-02-08 10:09:03 | 010,467,656 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\drivers\nvlddmkm.sys
[2011-02-08 10:09:03 | 000,941,160 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvdispco322090.dll
[2011-02-08 10:09:03 | 000,837,736 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvgenco322040.dll
[2011-02-08 10:09:03 | 000,057,960 | ---- | C] (Khronos Group) -- C:\Windows\System32\OpenCL.dll
[2011-02-08 10:09:02 | 004,941,928 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcuda.dll
[2011-02-08 10:09:02 | 002,895,976 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcuvid.dll
[2011-02-08 10:09:02 | 002,251,368 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcuvenc.dll
[2011-02-08 10:09:01 | 013,011,560 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcompiler.dll
[2011-02-08 10:09:01 | 000,010,920 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\drivers\nvBridge.kmd
[2011-02-08 10:08:18 | 000,000,000 | ---D | C] -- C:\NVIDIA
[2011-02-08 10:07:49 | 000,000,000 | ---D | C] -- C:\Users\DeeM\AppData\Roaming\Leadertech
[2011-02-08 10:07:19 | 000,016,400 | ---- | C] (Logitech, Inc.) -- C:\Windows\System32\drivers\LNonPnP.sys
[2011-02-08 10:06:17 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\LogiShrd
[2011-02-08 10:06:14 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
[2011-02-08 10:06:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Logishrd
[2011-02-08 10:06:08 | 000,000,000 | ---D | C] -- C:\Program Files\Logitech
[2011-02-08 10:05:52 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\LogiShrd
[2011-02-08 10:05:29 | 000,000,000 | ---D | C] -- C:\Users\DeeM\AppData\Roaming\Logitech
[2011-02-08 10:05:29 | 000,000,000 | ---D | C] -- C:\Users\DeeM\AppData\Roaming\Logishrd
[2011-02-08 09:46:48 | 000,000,000 | ---D | C] -- C:\Users\DeeM\Documents\DriverGenius
[2011-02-08 09:30:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Genius
[2011-02-08 09:30:32 | 000,000,000 | ---D | C] -- C:\Program Files\DriverGenius
[2 C:\Windows\Fonts\*.tmp files -> C:\Windows\Fonts\*.tmp -> ]
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2011-03-05 07:18:54 | 000,014,016 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011-03-05 07:18:54 | 000,014,016 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011-03-05 07:11:35 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011-03-05 07:11:31 | 2616,057,856 | -HS- | M] () -- C:\hiberfil.sys
[2011-03-04 20:03:44 | 000,687,590 | ---- | M] () -- C:\Windows\System32\perfh015.dat
[2011-03-04 20:03:44 | 000,606,992 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2011-03-04 20:03:44 | 000,131,176 | ---- | M] () -- C:\Windows\System32\perfc015.dat
[2011-03-04 20:03:44 | 000,103,370 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2011-03-04 19:01:01 | 000,000,468 | -H-- | M] () -- C:\Windows\tasks\Norton Security Scan for DeeM.job
[2011-02-28 22:32:03 | 000,000,696 | ---- | M] () -- C:\Windows\tasks\vtigerCRM Email Reminder.job
[2011-02-28 22:32:03 | 000,000,596 | ---- | M] () -- C:\Windows\tasks\vtigerCRM Recurring Invoice.job
[2011-02-28 22:32:03 | 000,000,568 | ---- | M] () -- C:\Windows\tasks\vtigerCRM WorkFlow.job
[2011-02-28 22:32:03 | 000,000,562 | ---- | M] () -- C:\Windows\tasks\vtigerCRM Notification Scheduler.job
[2011-02-28 22:31:58 | 000,002,013 | ---- | M] () -- C:\Users\Public\Desktop\startvTiger.lnk
[2011-02-27 19:34:22 | 007,793,152 | RHS- | M] () -- C:\ProgramData\GProton.exe
[2011-02-23 19:49:00 | 000,001,099 | ---- | M] () -- C:\Users\Public\Desktop\PhotoMizer.lnk
[2011-02-23 10:17:07 | 000,926,336 | ---- | M] () -- C:\Windows\System32\drivers\N360\0500000.07D\Cat.DB
[2011-02-23 10:16:47 | 000,126,512 | ---- | M] (Symantec Corporation) -- C:\Windows\System32\drivers\SYMEVENT.SYS
[2011-02-23 10:16:47 | 000,007,456 | ---- | M] () -- C:\Windows\System32\drivers\SYMEVENT.CAT
[2011-02-23 10:16:47 | 000,000,805 | ---- | M] () -- C:\Windows\System32\drivers\SYMEVENT.INF
[2011-02-23 10:16:40 | 000,002,403 | ---- | M] () -- C:\Users\Public\Desktop\Norton 360.lnk
[2011-02-22 20:39:53 | 000,079,360 | ---- | M] () -- C:\Windows\System32\xvid.ax
[2011-02-22 20:39:05 | 000,240,640 | ---- | M] () -- C:\Windows\System32\xvidvfw.dll
[2011-02-22 20:37:31 | 000,650,752 | ---- | M] () -- C:\Windows\System32\xvidcore.dll
[2011-02-17 20:26:35 | 000,001,193 | ---- | M] () -- C:\Users\DeeM\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.3.lnk
[2011-02-14 21:39:22 | 000,007,168 | ---- | M] () -- C:\Users\DeeM\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011-02-12 03:35:36 | 000,010,319 | ---- | M] () -- C:\Users\DeeM\AppData\Roaming\SmarThruOptions.xml
[2011-02-11 19:01:03 | 002,954,674 | ---- | M] () -- C:\Users\DeeM\Documents\40Iwci.ads
[2011-02-11 18:47:56 | 316,012,252 | ---- | M] () -- C:\Users\DeeM\Documents\diashow.avi
[2011-02-11 16:40:39 | 000,001,067 | ---- | M] () -- C:\Users\Public\Desktop\SlideShow 7 Ultimate.lnk
[2011-02-11 16:21:23 | 002,695,334 | ---- | M] () -- C:\Users\DeeM\Documents\40_Iwka.ads
[2011-02-11 15:55:46 | 000,001,088 | ---- | M] () -- C:\Users\Public\Desktop\SlideShow 6 for YouTube.lnk
[2011-02-11 00:10:40 | 000,001,127 | ---- | M] () -- C:\Users\DeeM\Desktop\Abrosoft FantaMorph 5.lnk
[2011-02-10 22:59:22 | 000,000,124 | ---- | M] () -- C:\Windows\Readiris.ini
[2011-02-10 22:58:55 | 000,000,782 | ---- | M] () -- C:\Users\Public\Desktop\SmarThru 4.lnk
[2011-02-10 21:27:39 | 000,000,993 | ---- | M] () -- C:\Users\Public\Desktop\Photo Slideshow Creator.lnk
[2011-02-10 20:55:52 | 143,337,928 | ---- | M] () -- C:\Users\DeeM\Desktop\Sid.Meiers.Civilization.V.DLC.7z-4.part3.rar
[2011-02-10 20:46:17 | 419,430,400 | ---- | M] () -- C:\Users\DeeM\Desktop\Sid.Meiers.Civilization.V.DLC.7z-4.part1.rar
[2011-02-10 20:16:04 | 419,430,400 | ---- | M] () -- C:\Users\DeeM\Desktop\Sid.Meiers.Civilization.V.DLC.7z-4.part2.rar
[2011-02-10 08:16:10 | 419,430,399 | ---- | M] () -- C:\Users\DeeM\Desktop\Sid.Meiers.Civilization.V.Update.7-SKIDROW.7z.002
[2011-02-10 08:06:20 | 419,430,399 | ---- | M] () -- C:\Users\DeeM\Desktop\Sid.Meiers.Civilization.V.Update.7-SKIDROW.7z.001
[2011-02-10 07:51:32 | 168,429,110 | ---- | M] () -- C:\Users\DeeM\Desktop\Sid.Meiers.Civilization.V.Update.7-SKIDROW.7z.003
[2011-02-08 20:57:32 | 147,916,256 | ---- | M] (ULTIMA PRIME) -- C:\Users\DeeM\Desktop\tcup_53_(dobreprogramy.pl).exe
[2011-02-08 15:13:42 | 000,295,144 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2011-02-08 14:03:42 | 000,001,116 | ---- | M] () -- C:\Users\Public\Desktop\OpenOffice.org 3.3.lnk
[2011-02-08 13:54:49 | 155,489,344 | ---- | M] () -- C:\Users\DeeM\Desktop\OOo_3.3.0_Win_x86_install-wJRE_pl.exe
[2011-02-08 10:07:19 | 000,016,400 | ---- | M] (Logitech, Inc.) -- C:\Windows\System32\drivers\LNonPnP.sys
[2011-02-08 09:30:58 | 000,000,953 | ---- | M] () -- C:\Users\DeeM\Desktop\Driver Genius.lnk
[2011-02-03 13:05:11 | 001,081,473 | ---- | M] () -- C:\Users\DeeM\Desktop\fringWinMob.cab
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2011-02-28 22:32:03 | 000,000,696 | ---- | C] () -- C:\Windows\tasks\vtigerCRM Email Reminder.job
[2011-02-28 22:32:03 | 000,000,596 | ---- | C] () -- C:\Windows\tasks\vtigerCRM Recurring Invoice.job
[2011-02-28 22:32:03 | 000,000,568 | ---- | C] () -- C:\Windows\tasks\vtigerCRM WorkFlow.job
[2011-02-28 22:32:03 | 000,000,562 | ---- | C] () -- C:\Windows\tasks\vtigerCRM Notification Scheduler.job
[2011-02-28 22:31:58 | 000,002,013 | ---- | C] () -- C:\Users\Public\Desktop\startvTiger.lnk
[2011-02-27 21:50:06 | 000,650,752 | ---- | C] () -- C:\Windows\System32\xvidcore.dll
[2011-02-27 21:50:06 | 000,240,640 | ---- | C] () -- C:\Windows\System32\xvidvfw.dll
[2011-02-27 21:50:06 | 000,079,360 | ---- | C] () -- C:\Windows\System32\xvid.ax
[2011-02-27 19:35:08 | 000,165,376 | ---- | C] () -- C:\Windows\System32\unrar.dll
[2011-02-27 19:34:22 | 007,793,152 | RHS- | C] () -- C:\ProgramData\GProton.exe
[2011-02-23 19:49:00 | 000,001,099 | ---- | C] () -- C:\Users\Public\Desktop\PhotoMizer.lnk
[2011-02-23 10:17:01 | 000,926,336 | ---- | C] () -- C:\Windows\System32\drivers\N360\0500000.07D\Cat.DB
[2011-02-23 10:16:48 | 000,007,456 | ---- | C] () -- C:\Windows\System32\drivers\SYMEVENT.CAT
[2011-02-23 10:16:48 | 000,000,805 | ---- | C] () -- C:\Windows\System32\drivers\SYMEVENT.INF
[2011-02-23 10:16:40 | 000,002,403 | ---- | C] () -- C:\Users\Public\Desktop\Norton 360.lnk
[2011-02-23 10:16:20 | 000,003,374 | R--- | C] () -- C:\Windows\System32\drivers\N360\0500000.07D\SymEFA.inf
[2011-02-23 10:16:20 | 000,002,792 | R--- | C] () -- C:\Windows\System32\drivers\N360\0500000.07D\SymDS.inf
[2011-02-23 10:16:20 | 000,001,446 | R--- | C] () -- C:\Windows\System32\drivers\N360\0500000.07D\SymNet.inf
[2011-02-23 10:16:20 | 000,001,389 | R--- | C] () -- C:\Windows\System32\drivers\N360\0500000.07D\srtspx.inf
[2011-02-23 10:16:20 | 000,001,383 | R--- | C] () -- C:\Windows\System32\drivers\N360\0500000.07D\srtsp.inf
[2011-02-23 10:16:20 | 000,000,742 | R--- | C] () -- C:\Windows\System32\drivers\N360\0500000.07D\Iron.inf
[2011-02-23 10:16:12 | 000,007,528 | R--- | C] () -- C:\Windows\System32\drivers\N360\0500000.07D\iron.cat
[2011-02-23 10:16:12 | 000,007,458 | R--- | C] () -- C:\Windows\System32\drivers\N360\0500000.07D\SymNet.cat
[2011-02-23 10:16:12 | 000,007,456 | R--- | C] () -- C:\Windows\System32\drivers\N360\0500000.07D\SymEFA.cat
[2011-02-23 10:16:12 | 000,007,454 | R--- | C] () -- C:\Windows\System32\drivers\N360\0500000.07D\srtspx.cat
[2011-02-23 10:16:12 | 000,007,450 | R--- | C] () -- C:\Windows\System32\drivers\N360\0500000.07D\SymDS.cat
[2011-02-23 10:16:12 | 000,007,450 | R--- | C] () -- C:\Windows\System32\drivers\N360\0500000.07D\srtsp.cat
[2011-02-23 10:16:12 | 000,000,172 | ---- | C] () -- C:\Windows\System32\drivers\N360\0500000.07D\isolate.ini
[2011-02-17 20:26:35 | 000,001,193 | ---- | C] () -- C:\Users\DeeM\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.3.lnk
[2011-02-11 18:58:48 | 002,954,674 | ---- | C] () -- C:\Users\DeeM\Documents\40Iwci.ads
[2011-02-11 18:47:45 | 316,012,252 | ---- | C] () -- C:\Users\DeeM\Documents\diashow.avi
[2011-02-11 16:40:39 | 000,001,067 | ---- | C] () -- C:\Users\Public\Desktop\SlideShow 7 Ultimate.lnk
[2011-02-11 16:21:23 | 002,695,334 | ---- | C] () -- C:\Users\DeeM\Documents\40_Iwka.ads
[2011-02-11 15:55:46 | 000,001,088 | ---- | C] () -- C:\Users\Public\Desktop\SlideShow 6 for YouTube.lnk
[2011-02-11 00:10:40 | 000,001,127 | ---- | C] () -- C:\Users\DeeM\Desktop\Abrosoft FantaMorph 5.lnk
[2011-02-10 22:59:43 | 000,010,319 | ---- | C] () -- C:\Users\DeeM\AppData\Roaming\SmarThruOptions.xml
[2011-02-10 22:59:42 | 000,036,864 | ---- | C] () -- C:\Windows\System32\SvcMan.exe
[2011-02-10 22:59:34 | 000,172,032 | ---- | C] () -- C:\Windows\System32\SecSNMP.dll
[2011-02-10 22:59:31 | 000,094,208 | ---- | C] () -- C:\Windows\System32\SamFaxPort.dll
[2011-02-10 22:59:29 | 000,000,422 | ---- | C] () -- C:\Windows\System32\ltocx13.lic
[2011-02-10 22:59:22 | 000,000,124 | ---- | C] () -- C:\Windows\Readiris.ini
[2011-02-10 22:59:20 | 000,023,040 | ---- | C] () -- C:\Windows\System32\irisco32.dll
[2011-02-10 22:58:55 | 000,000,782 | ---- | C] () -- C:\Users\Public\Desktop\SmarThru 4.lnk
[2011-02-10 22:53:20 | 000,113,768 | ---- | C] () -- C:\Windows\Wiainst.exe
[2011-02-10 21:27:39 | 000,000,993 | ---- | C] () -- C:\Users\Public\Desktop\Photo Slideshow Creator.lnk
[2011-02-10 20:46:51 | 143,337,928 | ---- | C] () -- C:\Users\DeeM\Desktop\Sid.Meiers.Civilization.V.DLC.7z-4.part3.rar
[2011-02-10 19:49:38 | 419,430,400 | ---- | C] () -- C:\Users\DeeM\Desktop\Sid.Meiers.Civilization.V.DLC.7z-4.part1.rar
[2011-02-10 19:49:26 | 419,430,400 | ---- | C] () -- C:\Users\DeeM\Desktop\Sid.Meiers.Civilization.V.DLC.7z-4.part2.rar
[2011-02-10 07:43:03 | 168,429,110 | ---- | C] () -- C:\Users\DeeM\Desktop\Sid.Meiers.Civilization.V.Update.7-SKIDROW.7z.003
[2011-02-10 07:41:14 | 419,430,399 | ---- | C] () -- C:\Users\DeeM\Desktop\Sid.Meiers.Civilization.V.Update.7-SKIDROW.7z.002
[2011-02-10 07:39:46 | 419,430,399 | ---- | C] () -- C:\Users\DeeM\Desktop\Sid.Meiers.Civilization.V.Update.7-SKIDROW.7z.001
[2011-02-08 14:03:42 | 000,001,116 | ---- | C] () -- C:\Users\Public\Desktop\OpenOffice.org 3.3.lnk
[2011-02-08 13:50:50 | 155,489,344 | ---- | C] () -- C:\Users\DeeM\Desktop\OOo_3.3.0_Win_x86_install-wJRE_pl.exe
[2011-02-08 10:51:16 | 000,482,408 | ---- | C] () -- C:\Windows\ssndii.exe
[2011-02-08 10:50:54 | 000,282,624 | ---- | C] () -- C:\Windows\System32\DscPnt.dll
[2011-02-08 10:50:54 | 000,260,464 | ---- | C] () -- C:\Windows\SUPDRun.exe
[2011-02-08 10:50:54 | 000,026,624 | ---- | C] () -- C:\Windows\System32\spd__l.dll
[2011-02-08 10:50:54 | 000,000,363 | ---- | C] () -- C:\Windows\System32\spd__l.smt
[2011-02-08 10:13:21 | 000,080,416 | ---- | C] () -- C:\Windows\System32\RtNicProp32.dll
[2011-02-08 09:30:58 | 000,000,953 | ---- | C] () -- C:\Users\DeeM\Desktop\Driver Genius.lnk
[2011-02-03 13:05:10 | 001,081,473 | ---- | C] () -- C:\Users\DeeM\Desktop\fringWinMob.cab
[2010-11-16 23:38:09 | 000,007,168 | ---- | C] () -- C:\Users\DeeM\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010-09-29 22:29:38 | 000,000,522 | ---- | C] () -- C:\Windows\LsPlugin.ini
[2010-09-07 13:14:34 | 000,311,296 | ---- | C] () -- C:\Windows\System32\EMRegSys.dll
[2010-04-14 19:32:13 | 000,000,042 | ---- | C] () -- C:\Windows\fiscprn.ini
[2010-04-13 23:02:19 | 000,000,066 | ---- | C] () -- C:\Windows\mxreader.INI
[2010-04-13 22:52:03 | 000,000,756 | ---- | C] () -- C:\Windows\amhm.ini
[2010-04-13 22:51:38 | 000,101,888 | ---- | C] () -- C:\Windows\System32\BUTIL.DLL
[2010-04-13 22:51:38 | 000,002,055 | R--- | C] () -- C:\Windows\BTI.INI
[2010-02-17 15:23:03 | 000,146,432 | ---- | C] () -- C:\Windows\System32\APOMngr.DLL
[2010-02-17 15:23:03 | 000,072,704 | ---- | C] () -- C:\Windows\System32\CmdRtr.DLL
[2010-02-17 08:42:49 | 000,000,017 | ---- | C] () -- C:\Users\DeeM\AppData\Local\resmon.resmoncfg
[2009-11-19 05:01:46 | 000,270,336 | ---- | C] () -- C:\Windows\System32\SaMinDrv.dll
[2009-11-19 05:01:46 | 000,106,496 | ---- | C] () -- C:\Windows\System32\SaImgFlt.dll
[2009-11-19 05:01:46 | 000,090,112 | ---- | C] () -- C:\Windows\System32\SaSegFlt.dll
[2009-11-19 05:01:46 | 000,061,440 | ---- | C] () -- C:\Windows\System32\SaErHdlr.dll
[2009-11-19 05:01:34 | 000,022,723 | ---- | C] () -- C:\Windows\System32\sugw2l3.dll
[2009-07-14 09:07:57 | 000,687,590 | ---- | C] () -- C:\Windows\System32\perfh015.dat
[2009-07-14 09:07:57 | 000,337,158 | ---- | C] () -- C:\Windows\System32\perfi015.dat
[2009-07-14 09:07:57 | 000,131,176 | ---- | C] () -- C:\Windows\System32\perfc015.dat
[2009-07-14 09:07:57 | 000,038,710 | ---- | C] () -- C:\Windows\System32\perfd015.dat
[2009-07-14 05:57:37 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2009-07-14 05:33:53 | 000,295,144 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2009-07-14 03:05:48 | 000,606,992 | ---- | C] () -- C:\Windows\System32\perfh009.dat
[2009-07-14 03:05:48 | 000,291,294 | ---- | C] () -- C:\Windows\System32\perfi009.dat
[2009-07-14 03:05:48 | 000,103,370 | ---- | C] () -- C:\Windows\System32\perfc009.dat
[2009-07-14 03:05:48 | 000,031,548 | ---- | C] () -- C:\Windows\System32\perfd009.dat
[2009-07-14 03:05:05 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT
[2009-07-14 03:04:11 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat
[2009-07-14 01:19:49 | 000,066,048 | ---- | C] () -- C:\Windows\System32\PrintBrmUi.exe
[2009-07-14 00:55:01 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2009-07-14 00:51:43 | 000,073,728 | ---- | C] () -- C:\Windows\System32\BthpanContextHandler.dll
[2009-07-14 00:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\System32\BWContextHandler.dll
[2009-06-10 22:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat
 
[color=#E56717]========== LOP Check ==========[/color]
 
[2011-02-10 21:28:42 | 000,000,000 | ---D | M] -- C:\Users\DeeM\AppData\Roaming\AMS Software
[2010-04-04 18:25:12 | 000,000,000 | ---D | M] -- C:\Users\DeeM\AppData\Roaming\AnvSoft
[2011-02-11 16:41:24 | 000,000,000 | ---D | M] -- C:\Users\DeeM\AppData\Roaming\AquaSoft
[2011-03-03 16:43:43 | 000,000,000 | ---D | M] -- C:\Users\DeeM\AppData\Roaming\Ashampoo
[2011-01-05 09:10:36 | 000,000,000 | ---D | M] -- C:\Users\DeeM\AppData\Roaming\DAEMON Tools Lite
[2011-02-23 19:48:59 | 000,000,000 | ---D | M] -- C:\Users\DeeM\AppData\Roaming\Engelmann Media
[2011-01-05 23:50:00 | 000,000,000 | ---D | M] -- C:\Users\DeeM\AppData\Roaming\HateML
[2010-05-20 19:38:10 | 000,000,000 | ---D | M] -- C:\Users\DeeM\AppData\Roaming\HEXelon
[2011-02-08 10:07:49 | 000,000,000 | ---D | M] -- C:\Users\DeeM\AppData\Roaming\Leadertech
[2010-09-20 18:42:57 | 000,000,000 | ---D | M] -- C:\Users\DeeM\AppData\Roaming\My Games
[2010-04-10 11:23:11 | 000,000,000 | ---D | M] -- C:\Users\DeeM\AppData\Roaming\OpenOffice.org
[2010-07-05 09:28:46 | 000,000,000 | ---D | M] -- C:\Users\DeeM\AppData\Roaming\PC Suite
[2011-01-16 01:39:54 | 000,000,000 | ---D | M] -- C:\Users\DeeM\AppData\Roaming\PMS
[2010-04-19 08:38:01 | 000,000,000 | ---D | M] -- C:\Users\DeeM\AppData\Roaming\postgresql
[2011-02-23 19:44:09 | 000,000,000 | ---D | M] -- C:\Users\DeeM\AppData\Roaming\Registry Mechanic
[2010-04-13 22:52:06 | 000,000,000 | ---D | M] -- C:\Users\DeeM\AppData\Roaming\Sage
[2011-02-10 22:59:44 | 000,000,000 | ---D | M] -- C:\Users\DeeM\AppData\Roaming\SmarThru4
[2010-04-13 18:27:15 | 000,000,000 | ---D | M] -- C:\Users\DeeM\AppData\Roaming\SumatraPDF
[2011-01-25 09:18:04 | 000,000,000 | ---D | M] -- C:\Users\DeeM\AppData\Roaming\TeamViewer
[2010-03-17 20:10:11 | 000,000,000 | ---D | M] -- C:\Users\DeeM\AppData\Roaming\Thinstall
[2010-12-08 09:19:20 | 000,000,000 | ---D | M] -- C:\Users\DeeM\AppData\Roaming\uTorrent
[2011-02-14 21:42:13 | 000,000,000 | ---D | M] -- C:\Users\DeeM\AppData\Roaming\XnView
[2010-10-16 22:35:31 | 000,032,590 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2011-02-28 22:32:03 | 000,000,696 | ---- | M] () -- C:\Windows\Tasks\vtigerCRM Email Reminder.job
[2011-02-28 22:32:03 | 000,000,562 | ---- | M] () -- C:\Windows\Tasks\vtigerCRM Notification Scheduler.job
[2011-02-28 22:32:03 | 000,000,596 | ---- | M] () -- C:\Windows\Tasks\vtigerCRM Recurring Invoice.job
[2011-02-28 22:32:03 | 000,000,568 | ---- | M] () -- C:\Windows\Tasks\vtigerCRM WorkFlow.job
 
[color=#E56717]========== Purity Check ==========[/color]
 
 
 
[color=#E56717]========== Custom Scans ==========[/color]
 
 
[color=#A23BEC]< %systemdrive%\*.* >[/color]
[2009-06-10 22:42:20 | 000,000,024 | ---- | M] () -- C:\autoexec.bat
[2009-06-10 22:42:20 | 000,000,010 | ---- | M] () -- C:\config.sys
[2011-03-05 07:11:31 | 2616,057,856 | -HS- | M] () -- C:\hiberfil.sys
[2006-05-12 21:31:09 | 000,000,033 | ---- | M] () -- C:\IMAGE.dvd
[2010-04-22 06:46:28 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2010-04-22 06:46:28 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2011-03-05 07:11:33 | 3488,079,872 | -HS- | M] () -- C:\pagefile.sys
[2010-08-20 05:00:24 | 000,000,036 | ---- | M] () -- C:\swag-sfa.dvd
 
 
[color=#A23BEC]< MD5 for: AGP440.SYS  >[/color]
[2009-07-14 02:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- C:\Windows\System32\drivers\AGP440.sys
[2009-07-14 02:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_x86_neutral_65848c2d7375a720\AGP440.sys
[2009-07-14 02:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.1.7600.16385_none_b9e9435f20046eeb\AGP440.sys
 
[color=#A23BEC]< MD5 for: ATAPI.SYS  >[/color]
[2009-07-14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\System32\drivers\atapi.sys
[2009-07-14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_x86_neutral_f64b9c35a3a5be81\atapi.sys
[2009-07-14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.1.7600.16385_none_dd0e7e3d82dd640d\atapi.sys
 
[color=#A23BEC]< MD5 for: BEEP.SYS  >[/color]
[2009-07-14 00:45:01 | 000,006,144 | ---- | M] (Microsoft Corporation) MD5=505506526A9D467307B3C393DEDAF858 -- C:\Windows\System32\drivers\beep.sys
[2009-07-14 00:45:01 | 000,006,144 | ---- | M] (Microsoft Corporation) MD5=505506526A9D467307B3C393DEDAF858 -- C:\Windows\winsxs\x86_microsoft-windows-beepsys_31bf3856ad364e35_6.1.7600.16385_none_c3f6f77668f0ddcc\beep.sys
 
[color=#A23BEC]< MD5 for: CDROM.SYS  >[/color]
[2009-07-14 00:11:26 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BA6E70AA0E6091BC39DE29477D866A77 -- C:\Windows\System32\drivers\cdrom.sys
[2009-07-14 00:11:26 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BA6E70AA0E6091BC39DE29477D866A77 -- C:\Windows\System32\DriverStore\FileRepository\cdrom.inf_x86_neutral_db87d184bc84f910\cdrom.sys
[2009-07-14 00:11:26 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BA6E70AA0E6091BC39DE29477D866A77 -- C:\Windows\winsxs\x86_cdrom.inf_31bf3856ad364e35_6.1.7600.16385_none_5f7fb206051affbb\cdrom.sys
 
[color=#A23BEC]< MD5 for: NDIS.SYS  >[/color]
[2009-07-14 02:20:44 | 000,710,720 | ---- | M] (Microsoft Corporation) MD5=23759D175A0A9BAAF04D05047BC135A8 -- C:\Windows\System32\drivers\ndis.sys
[2009-07-14 02:20:44 | 000,710,720 | ---- | M] (Microsoft Corporation) MD5=23759D175A0A9BAAF04D05047BC135A8 -- C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.1.7600.16385_none_a79d81ea7d62a289\ndis.sys
 
[color=#A23BEC]< MD5 for: USERINIT.EXE  >[/color]
[2009-07-14 02:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\System32\userinit.exe
[2009-07-14 02:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_dbff103933038d7c\userinit.exe
 
[color=#A23BEC]< MD5 for: WINLOGON.EXE  >[/color]
[2009-10-28 07:17:59 | 000,285,696 | ---- | M] (Microsoft Corporation) MD5=37CDB7E72EB66BA85A87CBE37E7F03FD -- C:\Windows\System32\winlogon.exe
[2009-10-28 07:17:59 | 000,285,696 | ---- | M] (Microsoft Corporation) MD5=37CDB7E72EB66BA85A87CBE37E7F03FD -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16447_none_6fc699643622d177\winlogon.exe
[2009-10-28 06:52:08 | 000,285,696 | ---- | M] (Microsoft Corporation) MD5=3BABE6767C78FBF5FB8435FEED187F30 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.20560_none_703394514f56f7c2\winlogon.exe
[2009-07-14 02:14:45 | 000,285,696 | ---- | M] (Microsoft Corporation) MD5=8EC6A4AB12B8F3759E21F8E3A388F2CF -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16385_none_6f99573a36451166\winlogon.exe
 
[color=#E56717]========== Alternate Data Streams ==========[/color]
 
@Alternate Data Stream - 104 bytes -> C:\ProgramData\TEMP:D1B5B4F1

< End of report >