OTL logfile created on: 1/4/2012 5:55:45 PM - Run 2
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Documents and Settings\PacKratZ\Desktop
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
2.00 Gb Total Physical Memory | 1.48 Gb Available Physical Memory | 73.87% Memory free
3.85 Gb Paging File | 3.33 Gb Available in Paging File | 86.48% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 465.75 Gb Total Space | 447.49 Gb Free Space | 96.08% Space Free | Partition Type: NTFS
Drive D: | 465.75 Gb Total Space | 465.66 Gb Free Space | 99.98% Space Free | Partition Type: NTFS
Computer Name: PACKRATZ-F57A48 | User Name: PacKratZ | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - C:\Documents and Settings\PacKratZ\Desktop\OTL.exe (OldTimer Tools)
PRC - C:\Program Files\COMODO\COMODO Internet Security\cfp.exe (COMODO)
PRC - C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe (COMODO)
PRC - C:\Program Files\Yahoo!\Companion\att\ToolbarSvr.exe (AT&T Inc.)
PRC - C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation)
PRC - C:\Program Files\Common Files\Java\Java Update\jucheck.exe (Sun Microsystems, Inc.)
PRC - C:\Program Files\Dell\DellDock\DockLogin.exe (Stardock Corporation)
PRC - C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe (Yahoo! Inc.)
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\WINDOWS\stsystra.exe (SigmaTel, Inc.)
========== Modules (No Company Name) ==========
MOD - C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\MenuSkinning\3865344305597da7ed3e9544b571f22a\MenuSkinning.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\VistaBridgeLibrary\902efb74af0a111bb7cbbb0ad445eb58\VistaBridgeLibrary.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Management\90b90e700e59d73d6d692cf74e1ba16e\System.Management.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\DellDock\380c6e03994729e26a87541a3bce0d16\DellDock.ni.exe ()
MOD - C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\MyDock.Util\80b2203762ef423ecc60e2bd59d5c52e\MyDock.Util.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Configuration\bce0720436dc6cb76006377f295ea365\System.Configuration.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Accessibility\d86a3346c3d90ff12d0df9d7726f3ece\Accessibility.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Xml\70cacc44f0b4257f6037eda7a59a0aeb\System.Xml.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\71a2ae9ad561a62181cbd9fb11e9de7a\System.Windows.Forms.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Drawing\c10bea3c4bb7ef654651141bf9419090\System.Drawing.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System\af39f6e644af02873b9bae319f2bfb13\System.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\mscorlib\ca87ba84221991839abbe7d4bc9c6721\mscorlib.ni.dll ()
MOD - C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll ()
MOD - C:\WINDOWS\system32\cpwmon2k.dll ()
MOD - C:\Program Files\Yahoo!\Companion\att\zlib1.dll ()
========== Win32 Services (SafeList) ==========
SRV - (AppMgmt) -- File not found
SRV - (cmdAgent) -- C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe (COMODO)
SRV - (DockLoginService) -- C:\Program Files\Dell\DellDock\DockLogin.exe (Stardock Corporation)
SRV - (YahooAUService) -- C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe (Yahoo! Inc.)
========== Driver Services (SafeList) ==========
DRV - (Inspect) -- C:\WINDOWS\System32\DRIVERS\inspect.sys (COMODO)
DRV - (cmdHlp) -- C:\WINDOWS\system32\drivers\cmdhlp.sys (COMODO)
DRV - (cmderd) -- C:\WINDOWS\system32\drivers\cmderd.sys (COMODO)
DRV - (cmdGuard) -- C:\WINDOWS\system32\drivers\cmdGuard.sys (COMODO)
DRV - (STHDA) -- C:\WINDOWS\system32\drivers\sthda.sys (SigmaTel, Inc.)
DRV - (HIDSwvd) -- C:\WINDOWS\system32\drivers\HIDSwvd.sys (Microsoft Corporation)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page =
http://dsl.sbc.yahoo.com/
IE - HKCU\..\URLSearchHook: {81017EA9-9AA8-4A6A-9734-7AF40E7D593F} - C:\Program Files\Yahoo!\Companion\Installs\cpn\YTNavAssist.dll (Yahoo! Inc.)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Documents and Settings\PacKratZ\Local Settings\Application Data\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Documents and Settings\PacKratZ\Local Settings\Application Data\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
========== Chrome ==========
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}source
id=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?client=chrome&hl={language}&q={searchTerms}
O1 HOSTS File: ([2004/08/04 04:00:00 | 000,000,734 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (&Yahoo! Toolbar Helper) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
O2 - BHO: (SingleInstance Class) - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll (Yahoo! Inc)
O3 - HKLM\..\Toolbar: (att.net Toolbar) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [COMODO Internet Security] C:\Program Files\COMODO\COMODO Internet Security\cfp.exe (COMODO)
O4 - HKLM..\Run: [LanguageShortcut] C:\Program Files\CyberLink\PowerDVD\Language\Language.exe ()
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nView\nwiz.exe ()
O4 - HKLM..\Run: [SigmatelSysTrayApp] C:\WINDOWS\stsystra.exe (SigmaTel, Inc.)
O4 - HKLM..\Run: [UserFaultCheck] %systemroot%\system32\dumprep 0 -u File not found
O4 - Startup: C:\Documents and Settings\PacKratZ\Start Menu\Programs\Startup\Dell Dock.lnk = C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000}
http://download.macr...director/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3}
http://www.update.mi...b?1325599537421 (MUWebControl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93}
http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}
http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7}
http://platformdl.ad...Plus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{204C42F0-3197-4CC4-A0C4-3F934D79406D}: DhcpNameServer = 192.168.0.1
O20 - AppInit_DLLs: (C:\WINDOWS\system32\guard32.dll) -C:\WINDOWS\system32\guard32.dll (COMODO)
O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) -C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Documents and Settings\PacKratZ\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\PacKratZ\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2011/06/08 18:59:10 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
NetSvcs: 6to4 - File not found
NetSvcs: AppMgmt - File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found
CREATERESTOREPOINT
Restore point Set: OTL Restore Point
========== Files/Folders - Created Within 30 Days ==========
[2012/01/04 12:02:45 | 000,584,192 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\PacKratZ\Desktop\OTL.exe
[2012/01/04 07:52:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\PacKratZ\Application Data\ElevatedDiagnostics
[2012/01/04 07:49:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Windows PowerShell 1.0
[2012/01/04 07:49:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\windowspowershell
[2011/12/18 15:01:39 | 000,002,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\HIDSwvd.sys
[2011/12/18 15:01:39 | 000,002,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hidswvd.sys
[2011/12/18 15:01:38 | 000,059,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\gckernel.sys
[2011/12/18 15:01:30 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\SWPIDFLT.DLL
[2011/12/18 15:01:30 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\swpidflt.dll
[6 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2012/01/04 17:51:07 | 001,474,832 | ---- | M] () -- C:\WINDOWS\System32\drivers\sfi.dat
[2012/01/04 17:44:00 | 000,000,990 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1390067357-2139871995-682003330-1004UA.job
[2012/01/04 12:02:58 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\PacKratZ\Desktop\OTL.exe
[2012/01/04 12:01:15 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2012/01/04 01:44:01 | 000,000,938 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1390067357-2139871995-682003330-1004Core.job
[2012/01/03 21:31:55 | 000,000,163 | ---- | M] () -- C:\WINDOWS\entpack.ini
[2012/01/03 07:01:17 | 000,012,892 | -HS- | M] () -- C:\Documents and Settings\PacKratZ\Local Settings\Application Data\608lm04jv46n56440475pngete0e645kib2yo23770a
[2012/01/03 07:01:17 | 000,012,892 | -HS- | M] () -- C:\Documents and Settings\All Users\Application Data\608lm04jv46n56440475pngete0e645kib2yo23770a
[2012/01/02 03:01:46 | 000,001,355 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2011/12/29 18:33:09 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2011/12/15 03:22:04 | 000,148,400 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011/12/10 15:24:06 | 000,020,464 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[6 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
========== Files Created - No Company Name ==========
[2012/01/03 06:56:40 | 000,012,892 | -HS- | C] () -- C:\Documents and Settings\PacKratZ\Local Settings\Application Data\608lm04jv46n56440475pngete0e645kib2yo23770a
[2012/01/03 06:56:40 | 000,012,892 | -HS- | C] () -- C:\Documents and Settings\All Users\Application Data\608lm04jv46n56440475pngete0e645kib2yo23770a
[2011/07/23 09:24:13 | 000,087,552 | ---- | C] () -- C:\WINDOWS\System32\cpwmon2k.dll
[2011/06/29 20:43:40 | 000,000,163 | ---- | C] () -- C:\WINDOWS\entpack.ini
[2011/06/28 20:43:48 | 000,000,804 | ---- | C] () -- C:\WINDOWS\SIERRA.INI
[2011/06/26 16:13:33 | 000,000,571 | ---- | C] () -- C:\WINDOWS\eReg.dat
[2011/06/26 14:36:37 | 000,128,903 | ---- | C] () -- C:\WINDOWS\hpwins10.dat
[2011/06/26 14:36:37 | 000,000,771 | ---- | C] () -- C:\WINDOWS\hpwmdl10.dat
[2011/06/26 12:05:05 | 000,077,824 | R--- | C] () -- C:\WINDOWS\System32\hpzids01.dll
[2011/06/09 18:01:51 | 000,000,000 | ---- | C] () -- C:\WINDOWS\lgfwup.ini
[2011/06/09 15:10:01 | 000,252,316 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb0.bin
[2011/06/09 15:09:04 | 000,252,316 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb1.bin
[2011/06/09 15:09:04 | 000,000,001 | ---- | C] () -- C:\WINDOWS\System32\nvdrssel.bin
[2011/06/08 19:23:51 | 001,474,832 | ---- | C] () -- C:\WINDOWS\System32\drivers\sfi.dat
[2011/06/08 19:01:04 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2011/06/08 18:56:10 | 000,021,640 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2011/06/08 13:27:07 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2011/06/08 13:25:49 | 000,148,400 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011/02/23 01:57:00 | 002,292,678 | ---- | C] () -- C:\WINDOWS\System32\nvdata.bin
[2006/12/11 00:29:33 | 000,008,558 | ---- | C] () -- C:\WINDOWS\hpwscr10.dat
[2006/07/30 23:59:36 | 000,000,338 | ---- | C] () -- C:\WINDOWS\scrub2k.ini
[2006/07/30 23:59:34 | 000,065,536 | ---- | C] () -- C:\WINDOWS\scrub2k.exe
[2005/03/22 12:48:43 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2005/03/22 12:48:43 | 000,004,627 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2004/08/04 04:00:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2004/08/04 04:00:00 | 000,432,356 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2004/08/04 04:00:00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2004/08/04 04:00:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2004/08/04 04:00:00 | 000,067,312 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2004/08/04 04:00:00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2004/08/04 04:00:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2004/08/04 04:00:00 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2004/08/04 04:00:00 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin
[2004/08/04 04:00:00 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
========== LOP Check ==========
[2012/01/04 18:00:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ATTYToolbar
[2011/06/09 17:02:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Uninstall
[2011/06/12 08:27:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
[2011/06/12 08:15:25 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\{CBCE2F73-24E4-481F-84B2-1A5EB720D187}
[2012/01/04 07:52:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\PacKratZ\Application Data\ElevatedDiagnostics
[2012/01/03 22:33:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\PacKratZ\Application Data\Hoyle
[2011/08/20 16:07:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\PacKratZ\Application Data\Hoyle FaceCreator
[2011/12/04 18:23:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\PacKratZ\Application Data\Hoyle Puzzle and Board Games
[2011/09/09 16:35:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\PacKratZ\Application Data\Image Zone Express
========== Purity Check ==========
========== Custom Scans ==========
< %SYSTEMDRIVE%\*.* >
[2011/10/24 10:12:44 | 000,000,268 | ---- | M] () -- C:\ab_1.gif
[2011/06/08 18:59:10 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT
[2011/10/24 10:12:40 | 000,001,406 | ---- | M] () -- C:\cayas2.ico
[2011/06/08 18:59:10 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS
[2011/10/24 10:12:44 | 000,000,103 | ---- | M] () -- C:\del_1.gif
[2011/10/24 10:12:44 | 000,000,304 | ---- | M] () -- C:\dir.bmp
[2011/10/24 10:12:44 | 000,000,380 | ---- | M] () -- C:\edu.bmp
[2011/10/24 10:12:44 | 000,000,138 | ---- | M] () -- C:\flk2.gif
[2011/10/24 10:12:44 | 000,000,279 | ---- | M] () -- C:\hj_1.gif
[2011/06/08 18:59:10 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2011/06/26 17:08:41 | 000,003,580 | ---- | M] () -- C:\mombi.log
[2011/10/24 10:12:45 | 000,000,277 | ---- | M] () -- C:\mov_1.gif
[2011/06/08 18:59:10 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2012/01/04 12:01:12 | 2145,386,496 | -HS- | M] () -- C:\pagefile.sys
[2011/10/24 10:25:55 | 000,000,256 | ---- | M] () -- C:\qsy.bmp
[2011/10/24 10:25:49 | 000,000,288 | ---- | M] () -- C:\qsyma.bmp
[2011/10/24 10:12:44 | 000,000,235 | ---- | M] () -- C:\srch_1.gif
[2011/10/24 10:12:44 | 000,000,265 | ---- | M] () -- C:\srch_ans_1.gif
[2011/10/24 10:12:44 | 000,000,113 | ---- | M] () -- C:\srch_aud_1.gif
[2011/10/24 10:12:44 | 000,000,112 | ---- | M] () -- C:\srch_img_1.gif
[2011/10/24 10:12:44 | 000,000,131 | ---- | M] () -- C:\srch_loc_1.gif
[2011/10/24 10:12:44 | 000,000,284 | ---- | M] () -- C:\srch_map_1.gif
[2011/10/24 10:12:44 | 000,000,121 | ---- | M] () -- C:\srch_nws_1.gif
[2011/10/24 10:12:44 | 000,000,123 | ---- | M] () -- C:\srch_sh_1.gif
[2011/10/24 10:12:45 | 000,000,240 | ---- | M] () -- C:\srch_site_1.gif
[2011/10/24 10:12:45 | 000,000,273 | ---- | M] () -- C:\srch_stk_1.gif
[2011/10/24 10:12:44 | 000,000,112 | ---- | M] () -- C:\srch_vid_1.gif
[2011/10/24 10:12:45 | 000,000,274 | ---- | M] () -- C:\trav_1.gif
< %systemroot%\Fonts\*.com >
[2006/04/18 14:39:28 | 000,026,040 | ---- | M] () -- C:\WINDOWS\Fonts\GlobalMonospace.CompositeFont
[2006/06/29 13:53:56 | 000,026,489 | ---- | M] () -- C:\WINDOWS\Fonts\GlobalSansSerif.CompositeFont
[2006/04/18 14:39:28 | 000,029,779 | ---- | M] () -- C:\WINDOWS\Fonts\GlobalSerif.CompositeFont
[2006/06/29 13:58:52 | 000,030,808 | ---- | M] () -- C:\WINDOWS\Fonts\GlobalUserInterface.CompositeFont
< %systemroot%\Fonts\*.dll >
< %systemroot%\Fonts\*.ini >
[2011/06/08 18:58:48 | 000,000,067 | -HS- | M] () -- C:\WINDOWS\Fonts\desktop.ini
< %systemroot%\Fonts\*.ini2 >
< %systemroot%\Fonts\*.exe >
< %systemroot%\system32\spool\prtprocs\w32x86\*.* >
[2008/07/06 06:06:10 | 000,089,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spool\prtprocs\w32x86\filterpipelineprintproc.dll
[2006/07/03 10:54:12 | 000,091,648 | ---- | M] (Hewlett-Packard Corporation) -- C:\WINDOWS\system32\spool\prtprocs\w32x86\hpzpp4sa.dll
[2006/10/26 18:56:12 | 000,033,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spool\prtprocs\w32x86\msonpppr.dll
[2008/07/06 04:50:03 | 000,597,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spool\prtprocs\w32x86\printfilterpipelinesvc.exe
< %systemroot%\REPAIR\*.bak1 >
< %systemroot%\REPAIR\*.ini >
< %systemroot%\system32\*.jpg >
< %systemroot%\*.jpg >
< %systemroot%\*.png >
< %systemroot%\*.scr >
< %systemroot%\*._sy >
< %APPDATA%\Adobe\Update\*.* >
< %ALLUSERSPROFILE%\Favorites\*.* >
< %APPDATA%\Microsoft\*.* >
< %PROGRAMFILES%\*.* >
< %APPDATA%\Update\*.* >
< %systemroot%\*. /mp /s >
< %systemroot%\System32\config\*.sav >
[2011/06/08 13:24:46 | 000,094,208 | ---- | M] () -- C:\WINDOWS\System32\config\default.sav
[2011/06/08 13:24:46 | 000,634,880 | ---- | M] () -- C:\WINDOWS\System32\config\software.sav
[2011/06/08 13:24:46 | 000,901,120 | ---- | M] () -- C:\WINDOWS\System32\config\system.sav
< %PROGRAMFILES%\bak. /s >
< %systemroot%\system32\bak. /s >
< %ALLUSERSPROFILE%\Start Menu\*.lîk /x >
[2011/06/08 21:18:05 | 000,000,272 | -HS- | M] () -- C:\Documents and Settings\All Users\Start Menu\desktop.ini
[2011/06/08 21:18:05 | 000,001,563 | ---- | M] () -- C:\Documents and Settings\All Users\Start Menu\Set Program Access and Defaults.lnk
[2011/06/28 20:45:34 | 000,000,665 | ---- | M] () -- C:\Documents and Settings\All Users\Start Menu\Sierra Utilities.lnk
[2011/06/09 17:42:28 | 000,001,519 | ---- | M] () -- C:\Documents and Settings\All Users\Start Menu\Windows Update.lnk
< %systemroot%\system32\config\systemprofile\*.dat /x >
< %systemroot%\*.config >
< %systemroot%\system32\*.db >
< %PROGRAMFILES%\Internet Explorer\*.dat >
< %APPDATA%\Mikzosoft\Internet Explorer\Quick Launch\*.lnk /x >
< %USERPROFILE%\Desktop\*.exe >
[2012/01/04 12:02:58 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\PacKratZ\Desktop\OTL.exe
< %PROGRAMFILES%\Common Files\*.* >
< %systemroot%\*.src >
< %systemroot%\install\*.* >
< %systemroot%\system32\DLL\*.* >
< %systemroot%\system32\HelpFiles\*.* >
< %systemroot%\system32\rundll\*.* >
< %systemroot%\winn32\*.* >
< %systemroot%\Java\*.* >
< %systemroot%\system32\test\*.* >
< %systemroot%\system32\Rundll32\*.* >
< HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU >
< HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs >
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install\\LastSuccessTime: 2012-01-02 09:01:46
< %USERPROFILE%\..|smtmp;true;true;true /FP >
< %temp%\smtmp\*.* /s >
< MD5 for: EXPLORER.EXE >
[2008/04/13 18:12:19 | 001,033,728 | ---- | M] (Microsoft Corporation) MD5=12896823FB95BFB3DC9B46BCAEDC9923 -- C:\WINDOWS\explorer.exe
[2008/04/13 18:12:19 | 001,033,728 | ---- | M] (Microsoft Corporation) MD5=12896823FB95BFB3DC9B46BCAEDC9923 -- C:\WINDOWS\ServicePackFiles\i386\explorer.exe
[2004/08/04 04:00:00 | 001,032,192 | ---- | M] (Microsoft Corporation) MD5=A0732187050030AE399B241436565E64 -- C:\WINDOWS\$NtServicePackUninstall$\explorer.exe
< MD5 for: EXPLORER.SCF >
[2004/08/04 04:00:00 | 000,000,080 | ---- | M] () MD5=A3975A7D2C98B30A2AE010754FFB9392 -- C:\WINDOWS\explorer.scf
< MD5 for: IEXPLORE.CHM >
[2009/02/21 00:21:24 | 000,529,818 | ---- | M] () MD5=1435F4731719DF5F57D17DC38196245D -- C:\WINDOWS\Help\iexplore.chm
[2004/08/04 04:00:00 | 000,204,810 | ---- | M] () MD5=60858526AAD1CC55F5F0055B8E3B66FE -- C:\WINDOWS\ie8\iexplore.chm
< MD5 for: IEXPLORE.EXE >
[2008/04/13 18:12:22 | 000,093,184 | ---- | M] (Microsoft Corporation) MD5=55794B97A7FAABD2910873C85274F409 -- C:\WINDOWS\ie8\iexplore.exe
[2008/04/13 18:12:22 | 000,093,184 | ---- | M] (Microsoft Corporation) MD5=55794B97A7FAABD2910873C85274F409 -- C:\WINDOWS\ServicePackFiles\i386\iexplore.exe
[2011/12/24 17:50:20 | 000,182,856 | ---- | M] () MD5=B382935AB01B27D0E14F267DBF288896 -- C:\Program Files\Malwarebytes' Anti-Malware\Chameleon\iexplore.exe
[2009/03/08 13:09:26 | 000,638,816 | ---- | M] (Microsoft Corporation) MD5=B60DDDD2D63CE41CB8C487FCFBB6419E -- C:\Program Files\Internet Explorer\iexplore.exe
[2009/03/08 13:09:26 | 000,638,816 | ---- | M] (Microsoft Corporation) MD5=B60DDDD2D63CE41CB8C487FCFBB6419E -- C:\WINDOWS\system32\dllcache\iexplore.exe
[2004/08/04 04:00:00 | 000,093,184 | ---- | M] (Microsoft Corporation) MD5=E7484514C0464642BE7B4DC2689354C8 -- C:\WINDOWS\$NtServicePackUninstall$\iexplore.exe
< MD5 for: IEXPLORE.EXE.HDMP >
[2011/11/14 07:23:19 | 006,809,599 | ---- | M] () MD5=06149A652BADF716C1D9A370512BF113 -- C:\Documents and Settings\PacKratZ\Local Settings\Temp\WERd4fe.dir00\iexplore.exe.hdmp
[2011/10/27 13:38:56 | 021,097,139 | ---- | M] () MD5=0BD89A539997351F6C58DF46AA6B0FCB -- C:\Documents and Settings\PacKratZ\Local Settings\Temp\WERc8f3.dir00\iexplore.exe.hdmp
[2011/11/14 07:22:34 | 006,809,599 | ---- | M] () MD5=0F3EE60F0B2E99ACB5353FA3F21DC47A -- C:\Documents and Settings\PacKratZ\Local Settings\Temp\WER6183.dir00\iexplore.exe.hdmp
[2011/10/04 14:10:17 | 005,508,296 | ---- | M] () MD5=29B0E2D9ADA5F40D05D31503160A552F -- C:\Documents and Settings\PacKratZ\Local Settings\Temp\WER8620.dir00\iexplore.exe.hdmp
[2011/10/06 15:55:07 | 010,730,363 | ---- | M] () MD5=330B11F737C421349AAB39DC6214F020 -- C:\Documents and Settings\PacKratZ\Local Settings\Temp\WER2e5b.dir00\iexplore.exe.hdmp
[2011/10/06 15:54:01 | 010,730,363 | ---- | M] () MD5=3BE3E54DE89DD65BA115D84800E8F8E3 -- C:\Documents and Settings\PacKratZ\Local Settings\Temp\WERb170.dir00\iexplore.exe.hdmp
[2011/08/10 06:28:29 | 007,025,826 | ---- | M] () MD5=3C79DB5A11A86EE13F347BDFE9DB12B8 -- C:\Documents and Settings\PacKratZ\Local Settings\Temp\WER499f.dir00\iexplore.exe.hdmp
[2011/09/02 17:05:01 | 007,168,651 | ---- | M] () MD5=42E489988A8B105E4ACF9D23274FB2EB -- C:\Documents and Settings\PacKratZ\Local Settings\Temp\WER128e.dir00\iexplore.exe.hdmp
[2011/10/04 14:11:15 | 005,589,196 | ---- | M] () MD5=47232F8A2D1B9A5246FD89C63009B812 -- C:\Documents and Settings\PacKratZ\Local Settings\Temp\WERd1df.dir00\iexplore.exe.hdmp
[2011/09/02 17:05:01 | 004,536,712 | ---- | M] () MD5=5989D56FC1A3ECAFBCC9951DB78EB1A5 -- C:\Documents and Settings\PacKratZ\Local Settings\Temp\WER31a9.dir00\iexplore.exe.hdmp
[2011/09/02 17:07:08 | 007,304,403 | ---- | M] () MD5=5FB0BF89AE757A0B74571BD1EBF3C649 -- C:\Documents and Settings\PacKratZ\Local Settings\Temp\WER9a38.dir00\iexplore.exe.hdmp
[2011/08/10 06:27:40 | 007,025,826 | ---- | M] () MD5=631F99EE74DDA096EEE7FAAB0D163506 -- C:\Documents and Settings\PacKratZ\Local Settings\Temp\WERfbd0.dir00\iexplore.exe.hdmp
[2011/08/10 06:28:14 | 007,025,826 | ---- | M] () MD5=63756BD086CF220CAA57938F942AF906 -- C:\Documents and Settings\PacKratZ\Local Settings\Temp\WER10e5.dir00\iexplore.exe.hdmp
[2011/08/10 06:28:54 | 007,025,826 | ---- | M] () MD5=63D69784CA331BE957AA2F6011DDBBB5 -- C:\Documents and Settings\PacKratZ\Local Settings\Temp\WERae33.dir00\iexplore.exe.hdmp
[2011/09/02 17:07:34 | 007,304,403 | ---- | M] () MD5=6859022AE5352513BB8ACD09B97A8C3F -- C:\Documents and Settings\PacKratZ\Local Settings\Temp\WER3eb8.dir00\iexplore.exe.hdmp
[2011/09/02 17:06:17 | 007,304,403 | ---- | M] () MD5=725DE780AACE2036BB34F850C2EA1EA3 -- C:\Documents and Settings\PacKratZ\Local Settings\Temp\WERf48d.dir00\iexplore.exe.hdmp
[2011/10/06 15:54:21 | 010,730,363 | ---- | M] () MD5=749D05DA4D4D871FAA423651B558B5DB -- C:\Documents and Settings\PacKratZ\Local Settings\Temp\WER0f7e.dir00\iexplore.exe.hdmp
[2011/09/02 17:04:55 | 004,536,712 | ---- | M] () MD5=910AA28492ABE83D1F32ACB782D9C750 -- C:\Documents and Settings\PacKratZ\Local Settings\Temp\WERcf62.dir00\iexplore.exe.hdmp
[2011/10/06 15:54:28 | 010,730,363 | ---- | M] () MD5=9495011A16F8B896E511E754D1849938 -- C:\Documents and Settings\PacKratZ\Local Settings\Temp\WER15eb.dir00\iexplore.exe.hdmp
[2011/10/06 15:56:01 | 010,730,363 | ---- | M] () MD5=950BACE63206F1BB13E0E375DECD50ED -- C:\Documents and Settings\PacKratZ\Local Settings\Temp\WERb0bb.dir00\iexplore.exe.hdmp
[2011/10/04 14:10:44 | 005,508,296 | ---- | M] () MD5=98A9AD476CDFD995F41B3C4CA3ECF5AB -- C:\Documents and Settings\PacKratZ\Local Settings\Temp\WER91a1.dir00\iexplore.exe.hdmp
[2011/11/14 07:23:58 | 006,853,327 | ---- | M] () MD5=9ABF5BA9678ABDD12A432D56A0A6759C -- C:\Documents and Settings\PacKratZ\Local Settings\Temp\WER78a7.dir00\iexplore.exe.hdmp
[2011/10/06 15:55:48 | 010,730,363 | ---- | M] () MD5=A1D48718E252B4E1D184311F95679579 -- C:\Documents and Settings\PacKratZ\Local Settings\Temp\WER98e0.dir00\iexplore.exe.hdmp
[2011/10/27 06:28:45 | 091,060,315 | ---- | M] () MD5=A5F32555BEB4C20592BD779AACEF1B3E -- C:\Documents and Settings\PacKratZ\Local Settings\Temp\WER1c11.dir00\iexplore.exe.hdmp
[2011/10/06 15:54:46 | 010,730,363 | ---- | M] () MD5=ADF955595870FF17BD6D4DC43F63431F -- C:\Documents and Settings\PacKratZ\Local Settings\Temp\WER3ed7.dir00\iexplore.exe.hdmp
[2011/11/08 12:39:39 | 008,298,182 | ---- | M] () MD5=B9641845CD3AB026D912969AD5EB88E7 -- C:\Documents and Settings\PacKratZ\Local Settings\Temp\WER812f.dir00\iexplore.exe.hdmp
[2011/08/10 06:29:06 | 007,025,826 | ---- | M] () MD5=C35E5AACDCFFA52E22F86B341EE14A99 -- C:\Documents and Settings\PacKratZ\Local Settings\Temp\WER9090.dir00\iexplore.exe.hdmp
[2011/10/04 14:10:08 | 005,508,296 | ---- | M] () MD5=C7CC7385AF5B390E4D2426763AA10D01 -- C:\Documents and Settings\PacKratZ\Local Settings\Temp\WER6590.dir00\iexplore.exe.hdmp
[2011/08/10 06:27:45 | 007,025,826 | ---- | M] () MD5=C88E30AB30D1233A585F17A71B0C3826 -- C:\Documents and Settings\PacKratZ\Local Settings\Temp\WER0c07.dir00\iexplore.exe.hdmp
[2011/09/02 17:05:07 | 004,536,712 | ---- | M] () MD5=E0CA2B67EFF55198ECE5EF5DFC8D8844 -- C:\Documents and Settings\PacKratZ\Local Settings\Temp\WEReffb.dir00\iexplore.exe.hdmp
[2011/09/02 17:08:37 | 007,304,403 | ---- | M] () MD5=E48F0B31E6EE5BF2391E30F84BFFE0C4 -- C:\Documents and Settings\PacKratZ\Local Settings\Temp\WER7602.dir00\iexplore.exe.hdmp
[2011/09/02 17:05:59 | 004,536,712 | ---- | M] () MD5=F2256495C8D7A06B6C11D0E8A6A9E39E -- C:\Documents and Settings\PacKratZ\Local Settings\Temp\WERfac6.dir00\iexplore.exe.hdmp
[2011/10/06 15:56:02 | 010,730,363 | ---- | M] () MD5=F4A27CD176131866E3F74C8B11ABAA15 -- C:\Documents and Settings\PacKratZ\Local Settings\Temp\WERaece.dir00\iexplore.exe.hdmp
[2011/10/06 15:55:20 | 010,730,363 | ---- | M] () MD5=FD099D30946E8AF211D7E02AE1462E6F -- C:\Documents and Settings\PacKratZ\Local Settings\Temp\WER47ea.dir00\iexplore.exe.hdmp
[2011/11/08 12:40:24 | 010,393,486 | ---- | M] () MD5=FD5A59F7929ECCBD03062502C5FCB669 -- C:\Documents and Settings\PacKratZ\Local Settings\Temp\WER00b7.dir00\iexplore.exe.hdmp
< MD5 for: IEXPLORE.EXE.MDMP >
[2011/09/02 17:04:35 | 000,069,041 | ---- | M] () MD5=0926F03052B2FCF50F802693E609CA64 -- C:\Documents and Settings\PacKratZ\Local Settings\Temp\WER128e.dir00\iexplore.exe.mdmp
[2011/10/06 15:55:16 | 000,074,605 | ---- | M] () MD5=0C003C52A562FBF6016CE92C73B63150 -- C:\Documents and Settings\PacKratZ\Local Settings\Temp\WERb0bb.dir00\iexplore.exe.mdmp
[2011/09/02 17:04:32 | 000,069,070 | ---- | M] () MD5=0E8F92A171BEE61AB099D03157B2809A -- C:\Documents and Settings\PacKratZ\Local Settings\Temp\WERcf62.dir00\iexplore.exe.mdmp
[2011/09/02 17:04:45 | 000,069,070 | ---- | M] () MD5=14A6542644B3067CC96F7E3AAAC9A347 -- C:\Documents and Settings\PacKratZ\Local Settings\Temp\WER31a9.dir00\iexplore.exe.mdmp
[2011/09/02 17:04:41 | 000,069,070 | ---- | M] () MD5=17A7735F4AD459DE0497D8C13855B4F9 -- C:\Documents and Settings\PacKratZ\Local Settings\Temp\WEReffb.dir00\iexplore.exe.mdmp
[2011/11/08 12:39:38 | 000,082,696 | ---- | M] () MD5=29F5FA6111DFD69AA54D0C7822455BC1 -- C:\Documents and Settings\PacKratZ\Local Settings\Temp\WER812f.dir00\iexplore.exe.mdmp
[2011/08/10 06:27:39 | 000,076,544 | ---- | M] () MD5=33A0A90F5FD50B03EDC9BEEFB22AF70A -- C:\Documents and Settings\PacKratZ\Local Settings\Temp\WERfbd0.dir00\iexplore.exe.mdmp
[2011/10/06 15:54:20 | 000,074,605 | ---- | M] () MD5=35DDC9EF9D00E221E0344C507AF2BE40 -- C:\Documents and Settings\PacKratZ\Local Settings\Temp\WER0f7e.dir00\iexplore.exe.mdmp
[2011/10/06 15:54:48 | 000,074,605 | ---- | M] () MD5=3EBBD55108690A014E55D575B92680A9 -- C:\Documents and Settings\PacKratZ\Local Settings\Temp\WER47ea.dir00\iexplore.exe.mdmp
[2011/10/04 14:10:29 | 000,069,534 | ---- | M] () MD5=418056A5E92F1D3230522D4C3A57DDC0 -- C:\Documents and Settings\PacKratZ\Local Settings\Temp\WER91a1.dir00\iexplore.exe.mdmp
[2011/08/10 06:28:26 | 000,076,544 | ---- | M] () MD5=4837B9D299A9F0FAF37751F21D824D21 -- C:\Documents and Settings\PacKratZ\Local Settings\Temp\WER9090.dir00\iexplore.exe.mdmp
[2011/09/02 17:03:22 | 000,069,041 | ---- | M] () MD5=49B8FF94DBF320944DDF3B424F5EA7EE -- C:\Documents and Settings\PacKratZ\Local Settings\Temp\WERf48d.dir00\iexplore.exe.mdmp
[2011/10/06 15:54:24 | 000,074,605 | ---- | M] () MD5=5593641642D373005A40CB6BF9E45C30 -- C:\Documents and Settings\PacKratZ\Local Settings\Temp\WER15eb.dir00\iexplore.exe.mdmp
[2011/09/02 17:05:40 | 000,069,070 | ---- | M] () MD5=5604967224CF2871620CFD4B61F57B60 -- C:\Documents and Settings\PacKratZ\Local Settings\Temp\WERfac6.dir00\iexplore.exe.mdmp
[2011/08/10 06:28:33 | 000,076,544 | ---- | M] () MD5=5945CD0860C7D600BBAE4558E5E573B9 -- C:\Documents and Settings\PacKratZ\Local Settings\Temp\WERae33.dir00\iexplore.exe.mdmp
[2011/08/10 06:28:06 | 000,076,544 | ---- | M] () MD5=6AFF073A4649CD20AA19FF1FC829361F -- C:\Documents and Settings\PacKratZ\Local Settings\Temp\WER499f.dir00\iexplore.exe.mdmp
[2011/11/08 12:39:11 | 000,082,696 | ---- | M] () MD5=6E01F320667B370A7E367A1C07112688 -- C:\Documents and Settings\PacKratZ\Local Settings\Temp\WER00b7.dir00\iexplore.exe.mdmp
[2011/10/06 15:54:00 | 000,074,605 | ---- | M] () MD5=73CFD21DC0ACF8DEA1A46D39DA34DBEE -- C:\Documents and Settings\PacKratZ\Local Settings\Temp\WERb170.dir00\iexplore.exe.mdmp
[2011/10/06 15:54:40 | 000,074,605 | ---- | M] () MD5=8457B960C1FAA901E54EC139A87B0774 -- C:\Documents and Settings\PacKratZ\Local Settings\Temp\WER2e5b.dir00\iexplore.exe.mdmp
[2011/08/10 06:27:53 | 000,076,544 | ---- | M] () MD5=8CBEFA5CC4CB8CAC249136214402CDD6 -- C:\Documents and Settings\PacKratZ\Local Settings\Temp\WER10e5.dir00\iexplore.exe.mdmp
[2011/09/02 17:04:03 | 000,069,041 | ---- | M] () MD5=9226E6ADFA4B98DA87533765E76CD50E -- C:\Documents and Settings\PacKratZ\Local Settings\Temp\WER9a38.dir00\iexplore.exe.mdmp
[2011/09/02 17:03:55 | 000,069,041 | ---- | M] () MD5=9C898ACB84D375FBDAF3F8A58FF9261E -- C:\Documents and Settings\PacKratZ\Local Settings\Temp\WER7602.dir00\iexplore.exe.mdmp
[2011/10/04 14:10:07 | 000,069,534 | ---- | M] () MD5=9D7585A9F2546BFD6EEFCF79172E2DC1 -- C:\Documents and Settings\PacKratZ\Local Settings\Temp\WER6590.dir00\iexplore.exe.mdmp
[2011/10/04 14:09:30 | 000,069,534 | ---- | M] () MD5=A206C53A22C44B1D6EF0398007745CDA -- C:\Documents and Settings\PacKratZ\Local Settings\Temp\WERd1df.dir00\iexplore.exe.mdmp
[2011/11/14 07:23:00 | 000,075,333 | ---- | M] () MD5=A4E95FEAC22D12710A2D35E972A6EDDC -- C:\Documents and Settings\PacKratZ\Local Settings\Temp\WERd4fe.dir00\iexplore.exe.mdmp
[2011/10/04 14:10:14 | 000,069,534 | ---- | M] () MD5=A4EE966C50C1042EBE31D5EC6112D1BC -- C:\Documents and Settings\PacKratZ\Local Settings\Temp\WER8620.dir00\iexplore.exe.mdmp
[2011/10/06 15:55:14 | 000,074,605 | ---- | M] () MD5=AE8445C695849C666E462CF3FD980678 -- C:\Documents and Settings\PacKratZ\Local Settings\Temp\WERaece.dir00\iexplore.exe.mdmp
[2011/09/02 17:03:39 | 000,069,041 | ---- | M] () MD5=C41CCE346C9FE42E4512F99F0761D8D3 -- C:\Documents and Settings\PacKratZ\Local Settings\Temp\WER3eb8.dir00\iexplore.exe.mdmp
[2011/10/27 06:27:40 | 000,096,182 | ---- | M] () MD5=C5787CA3E1147F526E4D0548B87CFD74 -- C:\Documents and Settings\PacKratZ\Local Settings\Temp\WER1c11.dir00\iexplore.exe.mdmp
[2011/11/14 07:22:34 | 000,075,333 | ---- | M] () MD5=C957ED5177E4812A9FE31A9AA265E70D -- C:\Documents and Settings\PacKratZ\Local Settings\Temp\WER78a7.dir00\iexplore.exe.mdmp
[2011/10/06 15:54:37 | 000,074,605 | ---- | M] () MD5=D17ED140BC4C1AC0829D999DCDCBC16E -- C:\Documents and Settings\PacKratZ\Local Settings\Temp\WER3ed7.dir00\iexplore.exe.mdmp
[2011/10/27 13:37:50 | 000,084,374 | ---- | M] () MD5=D190A7CFC04F88B8ECC47937B26346C8 -- C:\Documents and Settings\PacKratZ\Local Settings\Temp\WERc8f3.dir00\iexplore.exe.mdmp
[2011/11/14 07:22:33 | 000,075,333 | ---- | M] () MD5=EA0C56204DAABC0318C40DB1E1B5BF86 -- C:\Documents and Settings\PacKratZ\Local Settings\Temp\WER6183.dir00\iexplore.exe.mdmp
[2011/08/10 06:27:44 | 000,076,544 | ---- | M] () MD5=ECA1E021D757A0AC3C2B4954F0F88D77 -- C:\Documents and Settings\PacKratZ\Local Settings\Temp\WER0c07.dir00\iexplore.exe.mdmp
[2011/10/06 15:55:06 | 000,074,605 | ---- | M] () MD5=ECAED28A60451D8F0D986908733C7675 -- C:\Documents and Settings\PacKratZ\Local Settings\Temp\WER98e0.dir00\iexplore.exe.mdmp
< MD5 for: IEXPLORE.EXE.MUI >
[2009/03/08 13:21:44 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=943030B55FDB56FB8B8FCC086071E119 -- C:\Program Files\Internet Explorer\en-US\iexplore.exe.mui
[2009/03/08 13:21:44 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=943030B55FDB56FB8B8FCC086071E119 -- C:\Program Files\Internet Explorer\iexplore.exe.mui
< MD5 for: IEXPLORE.EXE-2D97EBE6.PF >
[2012/01/04 13:58:48 | 000,112,392 | ---- | M] () MD5=20D3A62AFD3C0515B765971A50730D2D -- C:\WINDOWS\Prefetch\IEXPLORE.EXE-2D97EBE6.pf
< MD5 for: IEXPLORE.HLP >
[2004/08/04 04:00:00 | 000,180,335 | ---- | M] () MD5=3F19AF1B745140DAFAC6F78F561A3C62 -- C:\WINDOWS\Help\iexplore.hlp
< MD5 for: WINLOGON.EXE >
[2004/08/04 04:00:00 | 000,502,272 | ---- | M] (Microsoft Corporation) MD5=01C3346C241652F43AED8E2149881BFE -- C:\WINDOWS\$NtServicePackUninstall$\winlogon.exe
[2011/12/24 17:50:20 | 000,182,856 | ---- | M] () MD5=B382935AB01B27D0E14F267DBF288896 -- C:\Program Files\Malwarebytes' Anti-Malware\Chameleon\winlogon.exe
[2008/04/13 18:12:39 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=ED0EF0A136DEC83DF69F04118870003E -- C:\WINDOWS\ServicePackFiles\i386\winlogon.exe
[2008/04/13 18:12:39 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=ED0EF0A136DEC83DF69F04118870003E -- C:\WINDOWS\system32\winlogon.exe
< >