|
-
July 17th, 2010, 05:10 PM
#8
CREATERESTOREPOINT
Restore point Set: OTL Restore Point (16902109354000384)
========== Files/Folders - Created Within 90 Days ==========
[2010/07/17 15:48:52 | 000,574,976 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Thomas\Desktop\OTL.exe
[2010/07/17 07:00:05 | 000,000,000 | RHSD | C] -- C:\cmdcons
[2010/07/17 06:58:33 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe
[2010/07/17 06:58:33 | 000,161,792 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe
[2010/07/17 06:58:33 | 000,136,704 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe
[2010/07/17 06:58:33 | 000,031,232 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe
[2010/07/17 06:58:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2010/07/17 06:58:19 | 000,000,000 | ---D | C] -- C:\Qoobox
[2010/07/16 21:41:51 | 000,000,000 | ---D | C] -- C:\Program Files\Trend Micro
[2010/07/16 21:18:45 | 000,000,000 | ---D | C] -- C:\WINDOWS\Minidump
[2010/07/15 21:56:22 | 000,000,000 | ---D | C] -- C:\WINDOWS\BDOSCAN8
[2010/07/15 21:52:04 | 000,000,000 | ---D | C] -- C:\HJT
[2010/07/15 21:47:40 | 000,388,608 | ---- | C] (Trend Micro Inc.) -- C:\Documents and Settings\Thomas\My Documents\HijackThis.exe
[2010/07/15 19:11:21 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Thomas\Recent
[2010/07/08 21:03:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Thomas\Application Data\PTC
[2010/07/08 21:00:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Adobe
[2010/07/08 20:59:41 | 000,000,000 | ---D | C] -- C:\Program Files\PTC
[2010/07/08 20:58:56 | 000,000,000 | ---D | C] -- C:\IsoView7
[2010/07/07 21:28:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Thomas\Application Data\skypePM
[2010/07/07 21:26:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Thomas\Application Data\Skype
[2010/07/07 21:26:27 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Skype
[2010/07/07 21:26:24 | 000,000,000 | R--D | C] -- C:\Program Files\Skype
[2010/07/07 21:26:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Skype
[2010/07/05 05:32:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Thomas\Desktop\Unused Desktop Shortcuts
[2010/06/28 20:46:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Thomas\My Documents\Downloads
[2010/06/28 19:04:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Thomas\Desktop\Larry's Corvette info
[2010/06/28 19:03:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Thomas\Desktop\Sennheiser headset
[2010/06/28 19:02:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Thomas\Desktop\Jackie's modem
[2010/06/28 19:01:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Thomas\Desktop\JD3225C Manual
[2010/06/28 19:01:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Thomas\Desktop\Golf Green Info
[2010/06/28 19:00:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Thomas\Desktop\RXV Golf cart
[2010/06/28 18:59:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Thomas\Desktop\LF3800 Manual
[2010/06/28 18:58:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Thomas\Desktop\GKIV Plus Manuals
[2010/06/27 08:26:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Thomas\Desktop\june 2010 shop inventory
[2010/06/17 15:52:42 | 000,000,000 | ---D | C] -- C:\Program Files\MSECache
[2010/06/13 06:12:45 | 000,000,000 | ---D | C] -- C:\WINDOWS\Downloaded Installations
[2010/05/10 18:35:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Application Data\Roxio
[2010/05/10 04:43:56 | 000,444,416 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Thomas\Desktop\TFC.exe
[2010/04/29 20:54:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Thomas\Application Data\ieSpell
[2010/04/27 16:58:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Thomas\Application Data\U3
[2010/04/25 21:21:41 | 000,000,000 | ---D | C] -- C:\Program Files\ieSpell
[2010/04/25 06:35:14 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft IntelliPoint
[2010/04/23 22:51:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Temp
[2010/04/23 22:39:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Office Genuine Advantage
[2010/04/23 22:39:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Thomas\Application Data\Office Genuine Advantage
[2010/04/23 22:35:07 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe
[2010/04/23 22:02:37 | 000,000,000 | ---D | C] -- C:\Program Files\WOT
[2010/04/23 21:58:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Sun
[2010/04/23 21:58:32 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2010/04/23 21:56:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Thomas\Application Data\Malwarebytes
[2010/04/23 21:56:34 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2010/04/23 21:56:32 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2010/04/23 21:56:32 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2010/04/23 21:56:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
[2009/07/26 19:22:17 | 000,065,536 | ---- | C] ( ) -- C:\WINDOWS\System32\a3d.dll
========== Files - Modified Within 90 Days ==========
[2010/07/17 15:50:12 | 000,000,408 | -H-- | M] () -- C:\WINDOWS\tasks\MP Scheduled Scan.job
[2010/07/17 15:48:58 | 000,574,976 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Thomas\Desktop\OTL.exe
[2010/07/17 15:45:19 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010/07/17 15:45:03 | 000,243,457 | ---- | M] () -- C:\WINDOWS\System32\NvApps.xml
[2010/07/17 15:45:01 | 000,000,882 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2010/07/17 15:45:00 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010/07/17 15:44:58 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010/07/17 08:01:00 | 000,000,886 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2010/07/17 07:45:00 | 000,000,982 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-220523388-287218729-725345543-1003UA.job
[2010/07/17 07:03:16 | 000,000,227 | ---- | M] () -- C:\WINDOWS\system.ini
[2010/07/17 07:03:08 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2010/07/17 07:00:09 | 000,000,281 | RHS- | M] () -- C:\boot.ini
[2010/07/17 06:56:28 | 003,738,072 | R--- | M] () -- C:\Documents and Settings\Thomas\Desktop\ComboFix.exe
[2010/07/16 21:51:46 | 000,024,888 | ---- | M] () -- C:\WINDOWS\System32\BMXCtrlState-{00000005-00000000-00000002-00001102-00000002-80641102}.rfx
[2010/07/16 21:51:46 | 000,024,888 | ---- | M] () -- C:\WINDOWS\System32\BMXBkpCtrlState-{00000005-00000000-00000002-00001102-00000002-80641102}.rfx
[2010/07/16 21:51:46 | 000,016,420 | ---- | M] () -- C:\WINDOWS\System32\BMXStateBkp-{00000005-00000000-00000002-00001102-00000002-80641102}.rfx
[2010/07/16 21:51:46 | 000,016,420 | ---- | M] () -- C:\WINDOWS\System32\BMXState-{00000005-00000000-00000002-00001102-00000002-80641102}.rfx
[2010/07/16 21:51:46 | 000,001,080 | ---- | M] () -- C:\WINDOWS\System32\settingsbkup.sfm
[2010/07/16 21:51:46 | 000,001,080 | ---- | M] () -- C:\WINDOWS\System32\settings.sfm
[2010/07/16 21:51:46 | 000,000,024 | ---- | M] () -- C:\WINDOWS\System32\DVCStateBkp-{00000005-00000000-00000002-00001102-00000002-80641102}.dat
[2010/07/16 21:51:46 | 000,000,024 | ---- | M] () -- C:\WINDOWS\System32\DVCState-{00000005-00000000-00000002-00001102-00000002-80641102}.dat
[2010/07/16 21:51:25 | 003,670,016 | -H-- | M] () -- C:\Documents and Settings\Thomas\NTUSER.DAT
[2010/07/16 21:51:25 | 000,000,178 | -HS- | M] () -- C:\Documents and Settings\Thomas\ntuser.ini
[2010/07/16 21:41:52 | 000,001,986 | ---- | M] () -- C:\Documents and Settings\Thomas\Desktop\HiJackThis.lnk
[2010/07/16 20:45:00 | 000,000,930 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-220523388-287218729-725345543-1003Core.job
[2010/07/16 20:42:44 | 000,025,600 | ---- | M] () -- C:\Documents and Settings\Thomas\Desktop\Becoming a statistic in a contracting market is not a place reserved only for struggling golf courses.doc
[2010/07/16 18:13:47 | 000,000,036 | ---- | M] () -- C:\Documents and Settings\Thomas\Local Settings\Application Data\housecall.guid.cache
[2010/07/15 21:47:53 | 000,388,608 | ---- | M] (Trend Micro Inc.) -- C:\Documents and Settings\Thomas\My Documents\HijackThis.exe
[2010/07/15 21:34:26 | 000,001,724 | -H-- | M] () -- C:\Documents and Settings\Thomas\My Documents\Default.rdp
[2010/07/14 20:23:11 | 000,000,277 | ---- | M] () -- C:\Documents and Settings\Thomas\Desktop\Zolved - Zolved Free Remote Control Feedback - Support and help for problems with iPods, computers, XBox, email, cell phones, PDAs, wireless networks, game consoles and Windows Vista.url
[2010/07/13 20:26:42 | 000,022,016 | ---- | M] () -- C:\Documents and Settings\Thomas\Desktop\HERE IS MY PLATFORM.doc
[2010/07/11 21:12:39 | 002,501,383 | ---- | M] () -- C:\Documents and Settings\Thomas\Desktop\FFM-MuniGolf4.29.2009.pdf
[2010/07/08 21:11:54 | 000,142,668 | ---- | M] () -- C:\Documents and Settings\Thomas\Desktop\PdfStreamer.pdf
[2010/07/08 20:58:44 | 005,323,539 | ---- | M] () -- C:\IsoView7.zip
[2010/07/08 17:00:10 | 000,002,265 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Skype.lnk
[2010/07/07 21:28:28 | 000,000,056 | -H-- | M] () -- C:\WINDOWS\System32\ezsidmv.dat
[2010/07/02 05:45:33 | 000,002,293 | ---- | M] () -- C:\Documents and Settings\Thomas\Desktop\Google Chrome.lnk
[2010/07/02 05:45:33 | 000,002,271 | ---- | M] () -- C:\Documents and Settings\Thomas\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2010/06/28 18:54:30 | 000,024,064 | ---- | M] () -- C:\Documents and Settings\Thomas\Desktop\Melissa Mcleroy.doc
[2010/06/19 20:20:02 | 000,020,480 | ---- | M] () -- C:\Documents and Settings\Thomas\Desktop\Tom I remember awhile back you were considering this product.doc
[2010/06/18 05:29:08 | 000,037,576 | ---- | M] () -- C:\Documents and Settings\Thomas\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
[2010/06/18 05:29:01 | 000,179,448 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010/06/07 20:53:16 | 000,007,168 | ---- | M] () -- C:\Documents and Settings\Thomas\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/05/10 04:44:00 | 000,444,416 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Thomas\Desktop\TFC.exe
[2010/05/03 19:27:53 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\UMDF\Msft_User_WpdMtpDr_01_00_00.Wdf
[2010/04/29 15:39:38 | 000,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2010/04/29 15:39:26 | 000,020,952 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2010/04/26 15:58:12 | 000,256,512 | ---- | M] () -- C:\WINDOWS\PEV.exe
[2010/04/24 08:12:21 | 005,365,810 | -H-- | M] () -- C:\Documents and Settings\Thomas\Local Settings\Application Data\IconCache.db
[2010/04/24 07:22:09 | 000,356,120 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2010/04/24 07:22:09 | 000,311,934 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010/04/24 07:22:09 | 000,040,196 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
========== Files Created - No Company Name ==========
[2010/07/17 07:00:09 | 000,000,211 | ---- | C] () -- C:\Boot.bak
[2010/07/17 07:00:06 | 000,260,272 | ---- | C] () -- C:\cmldr
[2010/07/17 06:58:33 | 000,256,512 | ---- | C] () -- C:\WINDOWS\PEV.exe
[2010/07/17 06:58:33 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
[2010/07/17 06:58:33 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
[2010/07/17 06:58:33 | 000,077,312 | ---- | C] () -- C:\WINDOWS\MBR.exe
[2010/07/17 06:58:33 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
[2010/07/17 06:56:21 | 003,738,072 | R--- | C] () -- C:\Documents and Settings\Thomas\Desktop\ComboFix.exe
[2010/07/16 21:41:52 | 000,001,986 | ---- | C] () -- C:\Documents and Settings\Thomas\Desktop\HiJackThis.lnk
[2010/07/16 20:42:44 | 000,025,600 | ---- | C] () -- C:\Documents and Settings\Thomas\Desktop\Becoming a statistic in a contracting market is not a place reserved only for struggling golf courses.doc
[2010/07/16 18:13:47 | 000,000,036 | ---- | C] () -- C:\Documents and Settings\Thomas\Local Settings\Application Data\housecall.guid.cache
[2010/07/14 20:23:11 | 000,000,277 | ---- | C] () -- C:\Documents and Settings\Thomas\Desktop\Zolved - Zolved Free Remote Control Feedback - Support and help for problems with iPods, computers, XBox, email, cell phones, PDAs, wireless networks, game consoles and Windows Vista.url
[2010/07/13 20:26:41 | 000,022,016 | ---- | C] () -- C:\Documents and Settings\Thomas\Desktop\HERE IS MY PLATFORM.doc
[2010/07/11 21:12:39 | 002,501,383 | ---- | C] () -- C:\Documents and Settings\Thomas\Desktop\FFM-MuniGolf4.29.2009.pdf
[2010/07/08 21:21:26 | 004,946,734 | ---- | C] () -- C:\Documents and Settings\Thomas\Desktop\27615-G01.pdf
[2010/07/08 21:11:54 | 000,142,668 | ---- | C] () -- C:\Documents and Settings\Thomas\Desktop\PdfStreamer.pdf
[2010/07/08 20:58:43 | 005,323,539 | ---- | C] () -- C:\IsoView7.zip
[2010/07/07 21:28:28 | 000,000,056 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat
[2010/07/07 21:26:27 | 000,002,265 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Skype.lnk
[2010/06/29 05:52:32 | 000,000,408 | -H-- | C] () -- C:\WINDOWS\tasks\MP Scheduled Scan.job
[2010/06/28 20:41:20 | 000,002,271 | ---- | C] () -- C:\Documents and Settings\Thomas\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2010/06/28 20:41:19 | 000,002,293 | ---- | C] () -- C:\Documents and Settings\Thomas\Desktop\Google Chrome.lnk
[2010/06/28 20:40:42 | 000,000,982 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-220523388-287218729-725345543-1003UA.job
[2010/06/28 20:40:41 | 000,000,930 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-220523388-287218729-725345543-1003Core.job
[2010/06/28 18:54:29 | 000,024,064 | ---- | C] () -- C:\Documents and Settings\Thomas\Desktop\Melissa Mcleroy.doc
[2010/06/19 20:20:02 | 000,020,480 | ---- | C] () -- C:\Documents and Settings\Thomas\Desktop\Tom I remember awhile back you were considering this product.doc
[2010/06/07 20:52:09 | 000,007,168 | ---- | C] () -- C:\Documents and Settings\Thomas\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/05/28 21:32:51 | 000,001,724 | -H-- | C] () -- C:\Documents and Settings\Thomas\My Documents\Default.rdp
[2009/08/03 16:07:42 | 000,403,816 | ---- | C] () -- C:\WINDOWS\System32\OGACheckControl.dll
[2009/07/26 20:50:07 | 000,000,057 | ---- | C] () -- C:\WINDOWS\WININIT.INI
[2009/07/26 20:34:01 | 000,000,376 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2009/07/26 19:22:30 | 000,000,231 | ---- | C] () -- C:\WINDOWS\AC3API.INI
[2009/07/26 19:22:30 | 000,000,000 | ---- | C] () -- C:\WINDOWS\SBWIN.INI
[2009/07/26 19:22:18 | 000,037,727 | ---- | C] () -- C:\WINDOWS\System32\Emu10kx.ini
[2009/07/26 19:22:18 | 000,000,180 | ---- | C] () -- C:\WINDOWS\System32\KILL.INI
[2009/07/26 19:22:18 | 000,000,029 | ---- | C] () -- C:\WINDOWS\System32\ctzapxx.ini
[2009/01/05 15:44:10 | 000,000,453 | ---- | C] () -- C:\WINDOWS\bdoscandellang.ini
[2005/12/01 17:05:44 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\px.ini
[2005/11/14 14:40:28 | 000,204,800 | ---- | C] () -- C:\WINDOWS\System32\CddbFileTaggerRoxio.dll
[2005/11/10 11:30:04 | 003,596,288 | R--- | C] () -- C:\WINDOWS\System32\qt-dx331.dll
[2005/07/15 13:35:56 | 000,831,488 | ---- | C] () -- C:\WINDOWS\System32\libeay32.dll
[2005/07/15 13:35:56 | 000,159,744 | ---- | C] () -- C:\WINDOWS\System32\ssleay32.dll
[2004/11/30 04:10:00 | 000,028,672 | ---- | C] () -- C:\WINDOWS\System32\besched.dll
[2003/10/02 01:00:00 | 000,208,896 | ---- | C] () -- C:\WINDOWS\System32\lockout.dll
[2003/10/02 01:00:00 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\lockres.dll
Thread Information
Users Browsing this Thread
There are currently 1 users browsing this thread. (0 members and 1 guests)
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules
|
|
Reply With Quote
