Scan Results

CharmPeddler · Jun 16, 2014

OTL logfile created on: 8/7/2008 1:14:47 PM - Run 2
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\oxford\Desktop
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6002.18005)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

2.75 Gb Total Physical Memory | 1.52 Gb Available Physical Memory | 55.31% Memory free
5.72 Gb Paging File | 4.70 Gb Available in Paging File | 82.26% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 224.14 Gb Total Space | 161.47 Gb Free Space | 72.04% Space Free | Partition Type: NTFS

Computer Name: OXFORD-PC | User Name: Oxford | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011/12/12 22:11:39 | 000,357,800 | ---- | M] () -- C:\Program Files\VTech\DownloadManager\System\AgentMonitor.exe
PRC - [2011/11/12 13:04:12 | 000,268,640 | ---- | M] (LeapFrog Enterprises, Inc.) -- C:\Program Files\LeapFrog\LeapFrog Connect\Monitor.exe
PRC - [2011/11/12 12:21:58 | 006,141,792 | ---- | M] (LeapFrog Enterprises, Inc.) -- C:\Program Files\LeapFrog\LeapFrog Connect\CommandService.exe
PRC - [2009/04/11 01:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2008/08/25 11:58:20 | 000,077,824 | ---- | M] (Toshiba) -- C:\Program Files\Toshiba\SmartFaceV\SmartFaceVWatchSrv.exe
PRC - [2008/08/19 23:34:32 | 000,083,312 | ---- | M] (TOSHIBA Corporation) -- C:\Program Files\Toshiba\TOSHIBA DVD PLAYER\TNaviSrv.exe
PRC - [2008/08/19 01:22:02 | 000,431,456 | ---- | M] (TOSHIBA Corporation) -- C:\Program Files\Toshiba\Power Saver\TosCoSrv.exe
PRC - [2008/08/04 16:46:22 | 000,046,392 | ---- | M] (TOSHIBA Corporation) -- C:\Program Files\Toshiba\TOSHIBA Service Station\TMachInfo.exe
PRC - [2008/08/04 04:37:07 | 003,890,208 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\avastui.exe
PRC - [2008/08/04 04:36:08 | 000,050,344 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2008/08/03 03:42:29 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\oxford\Desktop\OTL.exe
PRC - [2008/07/15 18:16:58 | 000,106,496 | ---- | M] (TOSHIBA Corporation) -- C:\Program Files\Toshiba\SMARTLogService\TosIPCSrv.exe
PRC - [2008/07/10 20:35:30 | 000,188,416 | ---- | M] (CyberLink) -- C:\Program Files\CyberLink\PowerCinema for TOSHIBA\Kernel\CLML\CLMLSvc.exe
PRC - [2008/07/04 16:51:54 | 000,430,080 | ---- | M] (TOSHIBA) -- C:\Program Files\Toshiba\TOSCDSPD\TOSCDSPD.exe
PRC - [2008/05/23 00:54:42 | 000,120,168 | ---- | M] (TOSHIBA CORPORATION) -- C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
PRC - [2007/11/21 19:23:32 | 000,129,632 | ---- | M] (TOSHIBA Corporation) -- C:\Windows\System32\TODDSrv.exe
PRC - [2007/09/28 18:03:46 | 000,075,136 | ---- | M] ( TOSHIBA CORPORATION) -- C:\Program Files\Toshiba\Bluetooth Toshiba Stack\ItSecMng.exe
PRC - [2006/10/05 14:10:12 | 000,009,216 | ---- | M] (Agere Systems) -- C:\Windows\System32\agrsmsvc.exe
PRC - [2006/08/23 18:39:48 | 000,049,152 | ---- | M] (Ulead Systems, Inc.) -- C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe

========== Modules (No Company Name) ==========

MOD - [2012/01/11 01:40:08 | 009,843,600 | ---- | M] () -- C:\Program Files\VTech\DownloadManager\System\QtWebKit4.dll
MOD - [2011/12/12 22:11:39 | 000,357,800 | ---- | M] () -- C:\Program Files\VTech\DownloadManager\System\AgentMonitor.exe
MOD - [2011/09/14 10:19:06 | 008,500,224 | ---- | M] () -- C:\Program Files\LeapFrog\LeapFrog Connect\QtGui4.dll
MOD - [2011/09/14 10:19:06 | 002,348,544 | ---- | M] () -- C:\Program Files\LeapFrog\LeapFrog Connect\QtCore4.dll
MOD - [2010/11/11 04:24:31 | 000,028,160 | ---- | M] () -- C:\Program Files\VTech\DownloadManager\System\DACommCenter.dll
MOD - [2010/07/13 08:07:23 | 007,826,432 | ---- | M] () -- C:\Program Files\VTech\DownloadManager\System\QtGui4.dll
MOD - [2010/07/05 04:19:39 | 000,116,736 | ---- | M] () -- C:\Program Files\VTech\DownloadManager\System\QtSolutions_SOAP-2.7.dll
MOD - [2010/06/23 20:16:19 | 002,150,400 | ---- | M] () -- C:\Program Files\VTech\DownloadManager\System\QtCore4.dll
MOD - [2010/06/02 00:05:40 | 000,119,808 | ---- | M] () -- C:\Program Files\VTech\DownloadManager\System\imageformats\qjpeg4.dll
MOD - [2010/06/01 21:56:04 | 000,232,960 | ---- | M] () -- C:\Program Files\VTech\DownloadManager\System\phonon4.dll
MOD - [2010/06/01 21:54:24 | 002,530,816 | ---- | M] () -- C:\Program Files\VTech\DownloadManager\System\QtXmlPatterns4.dll
MOD - [2010/06/01 21:29:22 | 000,934,912 | ---- | M] () -- C:\Program Files\VTech\DownloadManager\System\QtNetwork4.dll
MOD - [2010/06/01 21:28:00 | 000,335,360 | ---- | M] () -- C:\Program Files\VTech\DownloadManager\System\QtXml4.dll
MOD - [2008/08/04 04:36:17 | 019,336,120 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\libcef.dll
MOD - [2008/08/01 02:47:28 | 000,159,744 | ---- | M] () -- C:\Windows\System32\atitmmxx.dll
MOD - [2008/07/10 20:35:34 | 000,765,952 | ---- | M] () -- C:\Program Files\CyberLink\PowerCinema for TOSHIBA\Kernel\CLML\CLMediaLibrary.dll
MOD - [2008/07/10 20:35:28 | 000,007,680 | ---- | M] () -- C:\Program Files\CyberLink\PowerCinema for TOSHIBA\Kernel\CLML\CLMLSvcPS.dll

========== Services (SafeList) ==========

SRV - File not found [Auto | Stopped] -- C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxLiveShare9.exe -- (RoxLiveShare9)
SRV - [2013/09/17 11:23:48 | 000,257,416 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2011/11/12 12:21:58 | 006,141,792 | ---- | M] (LeapFrog Enterprises, Inc.) [Auto | Running] -- C:\Program Files\LeapFrog\LeapFrog Connect\CommandService.exe -- (LeapFrog Connect Device Service)
SRV - [2008/08/25 11:58:20 | 000,077,824 | ---- | M] (Toshiba) [On_Demand | Running] -- C:\Program Files\Toshiba\SmartFaceV\SmartFaceVWatchSrv.exe -- (SmartFaceVWatchSrv)
SRV - [2008/08/19 23:34:32 | 000,083,312 | ---- | M] (TOSHIBA Corporation) [Auto | Running] -- C:\Program Files\Toshiba\TOSHIBA DVD PLAYER\TNaviSrv.exe -- (TNaviSrv)
SRV - [2008/08/19 01:22:02 | 000,431,456 | ---- | M] (TOSHIBA Corporation) [Auto | Running] -- C:\Program Files\Toshiba\Power Saver\TosCoSrv.exe -- (TosCoSrv)
SRV - [2008/08/04 16:46:22 | 000,046,392 | ---- | M] (TOSHIBA Corporation) [Auto | Running] -- C:\Program Files\Toshiba\TOSHIBA Service Station\TMachInfo.exe -- (TMachInfo)
SRV - [2008/08/04 04:36:08 | 000,050,344 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV - [2008/07/15 18:16:58 | 000,106,496 | ---- | M] (TOSHIBA Corporation) [Auto | Running] -- C:\Program Files\Toshiba\SMARTLogService\TosIPCSrv.exe -- (TOSHIBA SMART Log Service)
SRV - [2008/05/23 00:54:42 | 000,120,168 | ---- | M] (TOSHIBA CORPORATION) [Auto | Running] -- C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe -- (TOSHIBA Bluetooth Service)
SRV - [2008/04/16 17:53:00 | 000,954,368 | ---- | M] (Atheros Communications, Inc.) [On_Demand | Stopped] -- C:\Program Files\Jumpstart\jswpsapi.exe -- (jswpsapi)
SRV - [2008/01/20 21:23:32 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2007/11/21 19:23:32 | 000,129,632 | ---- | M] (TOSHIBA Corporation) [Auto | Running] -- C:\Windows\System32\TODDSrv.exe -- (TODDSrv)
SRV - [2006/10/05 14:10:12 | 000,009,216 | ---- | M] (Agere Systems) [Auto | Running] -- C:\Windows\System32\agrsmsvc.exe -- (AgereModemAudio)
SRV - [2006/08/23 18:39:48 | 000,049,152 | ---- | M] (Ulead Systems, Inc.) [Auto | Running] -- C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe -- (UleadBurningHelper)

========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\TpChoice.sys -- (TpChoice)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (Tosrfcom)
DRV - File not found [Kernel | On_Demand | Stopped] -- System32\Drivers\RimUsb.sys -- (RimUsb)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkfwd.sys -- (NwlnkFwd)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkflt.sys -- (NwlnkFlt)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ipinip.sys -- (IpInIp)
DRV - [2008/08/19 23:01:44 | 000,279,376 | ---- | M] (TOSHIBA Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\tos_sps32.sys -- (tos_sps32)
DRV - [2008/08/07 19:01:44 | 000,097,536 | ---- | M] (JMicron Technology Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\jmcr.sys -- (JMCR)
DRV - [2008/08/06 18:26:08 | 000,124,928 | ---- | M] (Realtek Corporation ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Rtlh86.sys -- (RTL8169)
DRV - [2008/08/04 04:36:59 | 000,777,488 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\System32\drivers\aswsnx.sys -- (aswSnx)
DRV - [2008/08/04 04:36:59 | 000,411,680 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\System32\drivers\aswsp.sys -- (aswSP)
DRV - [2008/08/04 04:36:59 | 000,054,832 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswrdr.sys -- (aswRdr)
DRV - [2008/08/04 04:36:23 | 000,180,632 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\drivers\aswVmm.sys -- (aswVmm)
DRV - [2008/08/04 04:36:23 | 000,057,672 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2008/08/04 04:36:21 | 000,067,824 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV - [2008/08/04 04:36:21 | 000,049,944 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\drivers\aswRvrt.sys -- (aswRvrt)
DRV - [2008/08/04 04:36:21 | 000,024,184 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\System32\drivers\aswHwid.sys -- (aswHwid)
DRV - [2008/08/01 04:40:28 | 003,894,272 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmdag.sys -- (atikmdag)
DRV - [2008/07/28 17:53:48 | 000,919,552 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\athr.sys -- (athr)
DRV - [2008/07/15 21:59:06 | 000,017,960 | ---- | M] (Chicony Electronics Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\UVCFTR_S.SYS -- (UVCFTR)
DRV - [2008/05/07 13:30:12 | 000,025,896 | ---- | M] (COMPAL ELECTRONIC INC.) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\LPCFilter.sys -- (LPCFilter)
DRV - [2008/04/28 11:26:42 | 000,014,352 | ---- | M] (ATI Technologies Inc.) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\AtiPcie.sys -- (AtiPcie)
DRV - [2008/02/07 02:23:46 | 000,166,448 | ---- | M] (Alps Electric Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Apfiltr.sys -- (ApfiltrService)
DRV - [2007/12/14 13:53:24 | 000,024,200 | ---- | M] (TOSHIBA Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\tdcmdpst.sys -- (tdcmdpst)
DRV - [2007/11/09 16:00:52 | 000,023,640 | ---- | M] (TOSHIBA Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\TVALZ_O.SYS -- (TVALZ)
DRV - [2006/11/28 17:11:00 | 001,161,888 | ---- | M] (Agere Systems) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AGRSM.sys -- (AgereSoftModem)
DRV - [2006/11/09 01:32:00 | 000,219,264 | ---- | M] (TOSHIBA CORPORATION) [Kernel | Disabled | Stopped] -- C:\Windows\System32\drivers\KR10I.sys -- (KR10I)
DRV - [2006/11/09 01:31:00 | 000,211,072 | ---- | M] (TOSHIBA CORPORATION) [Kernel | Disabled | Stopped] -- C:\Windows\System32\drivers\KR10N.sys -- (KR10N)
DRV - [2006/10/23 18:32:20 | 000,009,216 | ---- | M] (TOSHIBA Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\System32\drivers\tosrfec.sys -- (tosrfec)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com/ig/redirectdomain?brand=TSHB&bmod=TSHB
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{FB3432AF-2AE4-4AE2-AC51-7CD12F198746}: "URL" = http://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7TSHB

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com/ig/redirectdomain?brand=TSHB&bmod=TSHB
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKCU\..\SearchScopes,DefaultScope =
IE - HKCU\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rlz=1I7TSHB_enUS336US336&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
IE - HKCU\..\SearchScopes\{FB3432AF-2AE4-4AE2-AC51-7CD12F198746}: "URL" = http://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7TSHB_enUS336US336
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_11_7_700_224.dll ()
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.21.2: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.21.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\oxford\AppData\Local\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\oxford\AppData\Local\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)

FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\{c5ca4045-fc3b-4084-8837-8453e55c69ce}: C:\Program Files\LyricsPlus\133.xpi

[2013/08/03 20:07:32 | 000,000,000 | ---D | M] (No name found) -- C:\Users\oxford\AppData\Roaming\Mozilla\Extensions
[2013/08/03 20:07:17 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions

========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google

riginalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:bookmarkBarPinned}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google

mniboxStartMarginParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:cursorPosition}{google:currentPageUrl}{google

ageClassification}sugkey={google:suggestAPIKeyParameter},
CHR - homepage: http://www.google.com/
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Users\oxford\AppData\Local\Google\Chrome\Application\35.0.1916.153\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Disabled) = C:\Users\oxford\AppData\Local\Google\Chrome\Application\35.0.1916.153\pdf.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Users\oxford\AppData\Local\Google\Chrome\Application\35.0.1916.153\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\system32\Macromed\Flash\NPSWF32.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Reader 8.0\Reader\Browser\nppdf32.dll
CHR - plugin: Java Deployment Toolkit 6.0.300.12 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Java(TM) Platform SE 6 U30 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: QuickTime Plug-in 7.6.5 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.6.5 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.6.5 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.6.5 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.6.5 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin5.dll
CHR - plugin: QuickTime Plug-in 7.6.5 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin6.dll
CHR - plugin: QuickTime Plug-in 7.6.5 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin7.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll
CHR - plugin: Unity Player (Enabled) = C:\Program Files\Unity\WebPlayer\loader\npUnity3D32.dll
CHR - plugin: iTunes Application Detector (Enabled) = C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
CHR - plugin: Move Streaming Media Player (Enabled) = C:\Users\oxford\AppData\Roaming\Move Networks\plugins\npqmp071705000014.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll
CHR - plugin: Windows Presentation Foundation (Enabled) = c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
CHR - Extension: avast! Online Security = C:\Users\oxford\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\9.0.2018.95_0\

O1 HOSTS File: ([2006/09/18 16:41:30 | 000,000,761 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O4 - HKLM..\Run: [AgentMonitor] C:\Program Files\VTech\DownloadManager\System\AgentMonitor.exe ()
O4 - HKLM..\Run: [AvastUI.exe] C:\Program Files\AVAST Software\Avast\AvastUI.exe (AVAST Software)
O4 - HKLM..\Run: [Camera Assistant Software] C:\Program Files\Camera Assistant Software for Toshiba\traybar.exe (Chicony)
O4 - HKLM..\Run: [CLMLServer] C:\Program Files\CyberLink\PowerCinema for TOSHIBA\Kernel\CLML\CLMLSvc.exe (CyberLink)
O4 - HKLM..\Run: [HSON] C:\Program Files\Toshiba\TBS\HSON.exe (TOSHIBA Corporation)
O4 - HKLM..\Run: [HWSetup] C:\Program Files\TOSHIBA\Utilities\HWSetup.exe (TOSHIBA Electronics, Inc.)
O4 - HKLM..\Run: [ITSecMng] C:\Program Files\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe ( TOSHIBA CORPORATION)
O4 - HKLM..\Run: [Monitor] C:\Program Files\LeapFrog\LeapFrog Connect\Monitor.exe (LeapFrog Enterprises, Inc.)
O4 - HKLM..\Run: [TPwrMain] C:\Program Files\Toshiba\Power Saver\TPwrMain.exe (TOSHIBA Corporation)
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKCU..\Run: [TOSCDSPD] C:\Program Files\Toshiba\TOSCDSPD\TOSCDSPD.exe (TOSHIBA)
O9 - Extra 'Tools' menuitem : Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre7\bin\jp2iexp.dll ()
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O15 - HKCU\..Trusted Domains: localhost ([]http in Local intranet)
O15 - HKCU\..Trusted Ranges: GD ([http] in Local intranet)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_06-windows-i586.cab (Reg Error: Value error.)
O16 - DPF: {CAFEEFAC-0016-0000-0006-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_06-windows-i586.cab (Java Plug-in 1.6.0_06)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_06-windows-i586.cab (Java Plug-in 10.21.2)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{20DFD5A3-BD43-4431-8524-48F77E31E867}: DhcpNameServer = 192.168.2.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{88E74780-4877-40DC-B1E4-4DC227242905}: DhcpNameServer = 192.168.1.1
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Users\oxford\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg
O24 - Desktop BackupWallPaper: C:\Users\oxford\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/09/18 16:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{8d4e30d4-54b7-11df-a7cc-00235a0bb8ea}\Shell - "" = AutoRun
O33 - MountPoints2\{8d4e30d4-54b7-11df-a7cc-00235a0bb8ea}\Shell\AutoRun\command - "" = F:\LaunchU3.exe -a
O33 - MountPoints2\{dc1bef3b-2844-11e2-beb2-00235a0bb8ea}\Shell - "" = AutoRun
O33 - MountPoints2\{dc1bef3b-2844-11e2-beb2-00235a0bb8ea}\Shell\AutoRun\command - "" = E:\TL_Bootstrap.exe
O33 - MountPoints2\F\Shell - "" = AutoRun
O33 - MountPoints2\F\Shell\AutoRun\command - "" = F:\LaunchU3.exe -a
O34 - HKLM BootExecute: (autocheck autochk /r \??\C

O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

========== Files/Folders - Created Within 30 Days ==========

[2013/09/16 16:52:33 | 000,000,000 | ---D | C] -- C:\Users\oxford\AppData\Local\avgchrome
[2013/08/03 20:07:32 | 000,000,000 | ---D | C] -- C:\Users\oxford\AppData\Roaming\Mozilla
[2013/08/03 20:07:28 | 000,000,000 | ---D | C] -- C:\Windows\System32\Extensions
[2013/08/03 20:07:27 | 000,000,000 | ---D | C] -- C:\Windows\System32\searchplugins
[2013/08/03 20:07:17 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2013/07/12 03:00:40 | 000,000,000 | ---D | C] -- C:\Windows\System32\MRT
[2013/06/03 16:32:24 | 000,000,000 | ---D | C] -- C:\Program Files\7-Zip
[2013/05/21 22:42:08 | 000,000,000 | ---D | C] -- C:\Program Files\McAfee Security Scan
[2013/05/04 22:45:28 | 000,000,000 | ---D | C] -- C:\Firefox
[2013/05/04 22:27:12 | 000,000,000 | ---D | C] -- C:\ProgramData\McAfee
[2013/04/12 11:43:19 | 000,000,000 | ---D | C] -- C:\Users\oxford\Documents\New Folder
[2012/12/10 11:36:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
[2012/12/10 11:35:14 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2012/12/10 11:35:01 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
[2012/12/10 11:35:01 | 000,000,000 | ---D | C] -- C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
[2012/12/10 11:22:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
[2012/12/10 11:21:44 | 000,000,000 | ---D | C] -- C:\Program Files\QuickTime
[2012/10/16 09:31:37 | 000,000,000 | ---D | C] -- C:\Users\oxford\AppData\Local\Unity
[2012/08/14 10:20:10 | 000,000,000 | ---D | C] -- C:\Users\oxford\AppData\Local\Microsoft Help
[2012/07/05 19:35:52 | 000,000,000 | ---D | C] -- C:\Users\oxford\Desktop\Carli's Pics
[2012/05/29 12:45:01 | 000,000,000 | ---D | C] -- C:\ProgramData\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
[2012/05/29 12:31:53 | 000,000,000 | ---D | C] -- C:\Program Files\Bonjour
[2012/05/29 12:27:49 | 000,000,000 | ---D | C] -- C:\Program Files\Apple Software Update
[2012/04/24 15:52:16 | 000,000,000 | ---D | C] -- C:\Users\oxford\Desktop\Thayne Alexander Dream room
[2012/04/16 12:05:50 | 000,000,000 | ---D | C] -- C:\Users\oxford\Desktop\Abra Grace's dream PIctures
[2012/03/25 12:47:00 | 000,000,000 | ---D | C] -- C:\Users\oxford\Desktop\Dara's Dream PIctures
[2012/02/19 15:50:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JumpStart 3D Virtual World
[2012/02/19 15:48:18 | 000,000,000 | ---D | C] -- C:\Program Files\JumpStart World
[2012/01/27 22:02:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun
[2012/01/23 23:23:19 | 000,000,000 | ---D | C] -- C:\Users\oxford\Desktop\new dreams
[2012/01/20 17:58:43 | 000,000,000 | ---D | C] -- C:\Users\oxford\Desktop\Karrie's camera pics
[2012/01/17 13:39:53 | 000,000,000 | ---D | C] -- C:\Users\oxford\AppData\Local\cache
[2012/01/17 13:39:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VTech
[2012/01/17 13:38:59 | 000,000,000 | ---D | C] -- C:\ProgramData\VTech
[2012/01/17 13:38:59 | 000,000,000 | ---D | C] -- C:\Program Files\VTech
[2011/12/29 23:28:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PopCap Games
[2011/12/29 23:28:11 | 000,000,000 | ---D | C] -- C:\Program Files\PopCap Games
[2011/12/28 12:49:45 | 000,000,000 | ---D | C] -- C:\ProgramData\PopCapY
[2011/12/28 12:49:30 | 000,000,000 | ---D | C] -- C:\ProgramData\PopCap Games
[2011/12/28 11:35:17 | 000,000,000 | ---D | C] -- C:\Users\oxford\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
[2011/12/25 13:29:06 | 000,000,000 | ---D | C] -- C:\Program Files\DIFX
[2011/12/25 13:28:17 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LeapFrog Connect
[2011/12/25 13:21:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Leapfrog
[2011/12/25 13:21:12 | 000,000,000 | ---D | C] -- C:\Program Files\LeapFrog
[2011/11/08 16:09:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JumpStart
[2011/11/08 16:08:53 | 000,000,000 | ---D | C] -- C:\Program Files\Unity
[2011/11/08 13:23:37 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Blaster
[2011/11/08 13:23:35 | 000,000,000 | ---D | C] -- C:\Program Files\Blaster
[2011/11/08 13:23:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Knowledge Adventure
[2011/11/08 13:23:34 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Knowledge Adventure
[2011/11/08 13:23:16 | 000,000,000 | ---D | C] -- C:\Users\oxford\AppData\Roaming\InstallShield
[2011/01/03 17:01:24 | 000,000,000 | ---D | C] -- C:\Users\oxford\Desktop\Christmas 2010 & Thayne
[2010/07/30 00:31:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Desktop
[2010/07/17 15:50:45 | 000,000,000 | ---D | C] -- C:\ProgramData\InterVideo
[2010/07/17 12:42:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TubeSock
[2010/06/20 03:05:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
[2010/03/30 20:10:53 | 000,000,000 | ---D | C] -- C:\Users\oxford\AppData\Roaming\Ulead Systems
[2010/03/30 20:10:47 | 000,000,000 | ---D | C] -- C:\Users\oxford\Documents\Ulead DVD MovieFactory
[2010/02/15 23:50:56 | 000,000,000 | ---D | C] -- C:\Users\oxford\Desktop\Karrie's dream pics
[2010/02/15 19:11:23 | 000,000,000 | ---D | C] -- C:\Users\oxford\Desktop\Jared's dream pics
[2010/01/15 14:44:43 | 000,000,000 | ---D | C] -- C:\ProgramData\{755AC846-7372-4AC8-8550-C52491DAA8BD}
[2010/01/15 14:33:40 | 000,000,000 | ---D | C] -- C:\Program Files\Safari
[2009/12/10 19:59:04 | 000,000,000 | ---D | C] -- C:\Windows\Roaming
[2009/12/10 19:54:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Motive
[2009/12/10 19:54:17 | 000,000,000 | ---D | C] -- C:\Program Files\SBC
[2009/12/10 19:54:17 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Motive
[2009/10/30 14:39:38 | 000,000,000 | ---D | C] -- C:\Users\oxford\AppData\Roaming\Template
[2009/10/05 21:02:21 | 000,000,000 | ---D | C] -- C:\Windows\Minidump
[2009/08/31 20:07:57 | 000,000,000 | ---D | C] -- C:\Program Files\Citrix
[2009/08/31 20:06:26 | 000,000,000 | ---D | C] -- C:\Users\oxford\AppData\Local\Deployment
[2009/08/31 20:06:26 | 000,000,000 | ---D | C] -- C:\Users\oxford\AppData\Local\Apps
[2009/08/04 21:16:56 | 000,000,000 | ---D | C] -- C:\Users\oxford\AppData\Roaming\TOSHIBA
[2009/08/04 21:12:35 | 000,000,000 | ---D | C] -- C:\ProgramData\InstallShield
[2009/08/04 21:12:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Sonic
[2009/08/04 21:09:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Roxio
[2009/08/04 21:09:35 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Roxio Shared
[2009/07/21 15:01:22 | 000,266,240 | ---- | C] (Fortemedia Corporation) -- C:\Windows\System32\FMAPO.dll
[2009/07/21 10:29:35 | 000,000,000 | ---D | C] -- C:\ProgramData\NOS
[2009/07/21 10:29:35 | 000,000,000 | ---D | C] -- C:\Program Files\NOS
[2009/07/20 16:02:11 | 000,000,000 | ---D | C] -- C:\Users\oxford\AppData\Local\Adobe
[2009/07/15 22:15:10 | 000,000,000 | ---D | C] -- C:\Users\oxford\AppData\Local\Microsoft Games
[2009/07/15 16:55:44 | 000,000,000 | ---D | C] -- C:\Users\oxford\AppData\Roaming\CyberLink
[2009/07/14 20:58:41 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Silverlight
[2009/07/13 22:58:31 | 000,000,000 | ---D | C] -- C:\Users\oxford\AppData\Roaming\Macromedia
[2009/07/13 22:53:11 | 000,000,000 | ---D | C] -- C:\Users\oxford\AppData\Roaming\Apple Computer
[2009/07/13 22:53:11 | 000,000,000 | ---D | C] -- C:\Users\oxford\AppData\Local\Apple Computer
[2009/07/13 22:52:57 | 000,000,000 | ---D | C] -- C:\Windows\System32\DRVSTORE
[2009/07/13 22:52:31 | 000,000,000 | ---D | C] -- C:\ProgramData\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}
[2009/07/13 22:51:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple Computer
[2009/07/13 22:50:27 | 000,000,000 | ---D | C] -- C:\Users\oxford\AppData\Local\Apple
[2009/07/13 22:48:34 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Apple
[2009/07/13 22:48:33 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple
[2009/07/13 22:38:41 | 000,000,000 | ---D | C] -- C:\Users\oxford\AppData\Roaming\Adobe
[2009/07/13 22:37:50 | 000,000,000 | ---D | C] -- C:\Users\oxford\AppData\Roaming\Google
[2009/07/13 22:00:49 | 000,000,000 | ---D | C] -- C:\Users\oxford\Documents\My Google Gadgets
[2009/07/13 22:00:42 | 000,000,000 | ---D | C] -- C:\Users\oxford\AppData\Local\Toshiba
[2009/07/13 22:00:42 | 000,000,000 | ---D | C] -- C:\Users\oxford\AppData\Local\Google
[2009/07/13 22:00:33 | 000,000,000 | ---D | C] -- C:\Users\oxford\AppData\Local\PowerCinema
[2009/07/13 22:00:30 | 000,000,000 | ---D | C] -- C:\Users\oxford\AppData\Roaming\Symantec
[2009/07/13 22:00:07 | 000,000,000 | R--D | C] -- C:\Users\oxford\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2009/07/13 22:00:07 | 000,000,000 | R--D | C] -- C:\Users\oxford\Searches
[2009/07/13 22:00:07 | 000,000,000 | R--D | C] -- C:\Users\oxford\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2009/07/13 21:59:55 | 000,000,000 | ---D | C] -- C:\Users\oxford\AppData\Roaming\Identities
[2009/07/13 21:59:52 | 000,000,000 | R--D | C] -- C:\Users\oxford\Contacts
[2009/07/13 21:59:51 | 000,000,000 | ---D | C] -- C:\Users\oxford\AppData\Local\VirtualStore
[2009/07/13 21:59:22 | 000,000,000 | --SD | C] -- C:\Users\oxford\AppData\Roaming\Microsoft
[2009/07/13 21:59:22 | 000,000,000 | R--D | C] -- C:\Users\oxford\Videos
[2009/07/13 21:59:22 | 000,000,000 | R--D | C] -- C:\Users\oxford\Saved Games
[2009/07/13 21:59:22 | 000,000,000 | R--D | C] -- C:\Users\oxford\Pictures
[2009/07/13 21:59:22 | 000,000,000 | R--D | C] -- C:\Users\oxford\Music
[2009/07/13 21:59:22 | 000,000,000 | R--D | C] -- C:\Users\oxford\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2009/07/13 21:59:22 | 000,000,000 | R--D | C] -- C:\Users\oxford\Links
[2009/07/13 21:59:22 | 000,000,000 | R--D | C] -- C:\Users\oxford\Favorites
[2009/07/13 21:59:22 | 000,000,000 | R--D | C] -- C:\Users\oxford\Downloads
[2009/07/13 21:59:22 | 000,000,000 | R--D | C] -- C:\Users\oxford\Documents
[2009/07/13 21:59:22 | 000,000,000 | R--D | C] -- C:\Users\oxford\Desktop
[2009/07/13 21:59:22 | 000,000,000 | R--D | C] -- C:\Users\oxford\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2009/07/13 21:59:22 | 000,000,000 | -HSD | C] -- C:\Users\oxford\AppData\Local\Temporary Internet Files
[2009/07/13 21:59:22 | 000,000,000 | -HSD | C] -- C:\Users\oxford\Templates
[2009/07/13 21:59:22 | 000,000,000 | -HSD | C] -- C:\Users\oxford\Start Menu
[2009/07/13 21:59:22 | 000,000,000 | -HSD | C] -- C:\Users\oxford\SendTo
[2009/07/13 21:59:22 | 000,000,000 | -HSD | C] -- C:\Users\oxford\Recent
[2009/07/13 21:59:22 | 000,000,000 | -HSD | C] -- C:\Users\oxford\PrintHood
[2009/07/13 21:59:22 | 000,000,000 | -HSD | C] -- C:\Users\oxford\NetHood
[2009/07/13 21:59:22 | 000,000,000 | -HSD | C] -- C:\Users\oxford\Documents\My Videos
[2009/07/13 21:59:22 | 000,000,000 | -HSD | C] -- C:\Users\oxford\Documents\My Pictures
[2009/07/13 21:59:22 | 000,000,000 | -HSD | C] -- C:\Users\oxford\Documents\My Music
[2009/07/13 21:59:22 | 000,000,000 | -HSD | C] -- C:\Users\oxford\My Documents
[2009/07/13 21:59:22 | 000,000,000 | -HSD | C] -- C:\Users\oxford\Local Settings
[2009/07/13 21:59:22 | 000,000,000 | -HSD | C] -- C:\Users\oxford\AppData\Local\History
[2009/07/13 21:59:22 | 000,000,000 | -HSD | C] -- C:\Users\oxford\Cookies
[2009/07/13 21:59:22 | 000,000,000 | -HSD | C] -- C:\Users\oxford\Application Data
[2009/07/13 21:59:22 | 000,000,000 | -HSD | C] -- C:\Users\oxford\AppData\Local\Application Data
[2009/07/13 21:59:22 | 000,000,000 | -H-D | C] -- C:\Users\oxford\AppData
[2009/07/13 21:59:22 | 000,000,000 | ---D | C] -- C:\Users\oxford\AppData\Local\Temp
[2009/07/13 21:59:22 | 000,000,000 | ---D | C] -- C:\Users\oxford\AppData\Local\Microsoft
[2009/07/13 21:59:22 | 000,000,000 | ---D | C] -- C:\Users\oxford\AppData\Roaming\Media Center Programs
[2009/07/13 21:54:56 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution
[2009/05/14 14:46:47 | 000,017,960 | ---- | C] (Chicony Electronics Co., Ltd.) -- C:\Windows\System32\drivers\UVCFTR_S.SYS
[2009/05/14 14:46:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Camera Assistant Software
[2009/05/14 14:46:45 | 000,000,000 | ---D | C] -- C:\Program Files\Camera Assistant Software for Toshiba
[2009/05/14 14:43:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TOSHIBA DVD PLAYER
[2009/05/14 14:43:42 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Toshiba Shared
[2009/05/14 14:39:16 | 000,000,000 | ---D | C] -- C:\Program Files\Jumpstart
[2009/05/14 14:37:32 | 000,919,552 | ---- | C] (Atheros Communications, Inc.) -- C:\Windows\System32\drivers\athr.sys
[2009/05/14 14:37:31 | 000,516,096 | ---- | C] (Atheros) -- C:\Windows\System32\S64CPA.exe
[2009/05/14 14:37:31 | 000,393,216 | ---- | C] (Atheros) -- C:\Windows\System32\athihvs.dll
[2009/05/14 14:37:31 | 000,053,248 | ---- | C] (Atheros) -- C:\Windows\System32\athihvui.dll
[2009/05/14 14:37:31 | 000,000,000 | ---D | C] -- C:\Windows\System32\nn-NO
[2009/05/14 14:37:10 | 000,000,000 | ---D | C] -- C:\Program Files\Atheros
[2009/05/14 14:37:09 | 000,000,000 | ---D | C] -- C:\Program Files\Cisco
[2009/05/14 14:37:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Atheros
[2009/05/14 14:21:00 | 000,000,000 | ---D | C] -- C:\Program Files\ltmoh
[2009/05/14 14:20:25 | 000,000,000 | ---D | C] -- C:\Windows\Options
[2009/05/14 14:19:32 | 000,000,000 | ---D | C] -- C:\Program Files\Apoint2K
[2009/05/14 14:16:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Catalyst Control Center
[2009/05/14 14:12:10 | 000,000,000 | ---D | C] -- C:\Program Files\ATI
[2009/05/14 14:12:08 | 000,000,000 | ---D | C] -- C:\Program Files\ATI Technologies
[2009/04/16 11:05:40 | 001,784,352 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\WavesLib.dll
[2009/03/08 22:32:30 | 000,290,304 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RP3DHT32.dll
[2009/03/08 22:30:48 | 000,290,304 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RP3DAA32.dll
[2008/11/09 04:52:14 | 000,159,744 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\MaxxAudioAPO20.dll
[2008/09/26 15:34:10 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office Suite Activation Assistant
[2008/09/26 15:32:59 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
[2008/09/26 15:32:15 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER
[2008/09/26 15:31:59 | 000,000,000 | ---D | C] -- C:\Windows\PCHEALTH
[2008/09/26 15:31:59 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft.NET
[2008/09/26 15:30:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft Help
[2008/09/26 15:29:39 | 000,000,000 | RH-D | C] -- C:\MSOCache
[2008/09/26 15:28:58 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office
[2008/09/26 15:28:37 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Works
[2008/09/26 15:28:09 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Works
[2008/09/26 00:08:49 | 000,000,000 | -HSD | C] -- C:\System Volume Information
[2008/08/28 17:35:22 | 000,000,000 | ---D | C] -- C:\DOCS
[2008/08/28 17:34:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TOSHIBA Support
[2008/08/28 17:30:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Google
[2008/08/28 17:29:31 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Picasa2
[2008/08/28 17:29:25 | 000,000,000 | ---D | C] -- C:\Program Files\Picasa2
[2008/08/28 17:22:54 | 000,000,000 | ---D | C] -- C:\ProgramData\WildTangent
[2008/08/28 17:14:43 | 000,000,000 | ---D | C] -- C:\Windows\Driver Cache
[2008/08/28 17:12:45 | 000,000,000 | ---D | C] -- C:\Program Files\InterVideo
[2008/08/28 17:12:27 | 000,000,000 | ---D | C] -- C:\Windows\RegisteredPackages
[2008/08/28 17:12:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media
[2008/08/28 17:12:23 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Components
[2008/08/28 17:11:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVD MovieFactory for TOSHIBA
[2008/08/28 17:09:33 | 000,000,000 | ---D | C] -- C:\ProgramData\Ulead Systems
[2008/08/28 17:09:33 | 000,000,000 | ---D | C] -- C:\Program Files\Ulead Systems
[2008/08/28 17:09:33 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Ulead Systems
[2008/08/28 17:03:33 | 000,000,000 | ---D | C] -- C:\Program Files\Google
[2008/08/28 17:01:33 | 000,000,000 | ---D | C] -- C:\Program Files\Java
[2008/08/28 17:01:32 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2008/08/28 16:56:29 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Symantec Shared
[2008/08/28 16:56:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Symantec
[2008/08/28 16:54:35 | 000,000,000 | ---D | C] -- C:\Program Files\Intuit
[2008/08/28 16:46:26 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PowerCinema for TOSHIBA
[2008/08/28 16:46:23 | 000,000,000 | ---D | C] -- C:\ProgramData\CyberLink
[2008/08/28 16:45:53 | 000,000,000 | ---D | C] -- C:\Program Files\CyberLink
[2008/08/28 16:44:00 | 000,000,000 | ---D | C] -- C:\ProgramData\Adobe
[2008/08/28 16:43:57 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe
[2008/08/28 16:43:57 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe
[2008/08/28 16:40:38 | 000,000,000 | ---D | C] -- C:\Windows\System32\Macromed
[2008/08/28 16:32:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dolby Laboratories
[2008/08/28 16:32:35 | 000,000,000 | ---D | C] -- C:\Program Files\Dolby
[2008/08/28 16:05:11 | 000,000,000 | ---D | C] -- C:\Program Files\Toshiba Registration
[2008/08/28 16:05:05 | 000,000,000 | ---D | C] -- C:\Windows\Downloaded Installations
[2008/08/28 16:03:57 | 000,000,000 | ---D | C] -- C:\ProgramData\XP
[2008/08/28 16:03:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Vista64
[2008/08/28 16:03:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Vista32
[2008/08/28 15:57:32 | 000,036,864 | ---- | C] (COMPAL ELECTRONIC INC.) -- C:\Windows\System32\EBLib.DLL
[2008/08/28 15:57:32 | 000,025,896 | ---- | C] (COMPAL ELECTRONIC INC.) -- C:\Windows\System32\drivers\LPCFilter.sys
[2008/08/28 15:55:18 | 000,024,576 | ---- | C] (COMPAL ELECTRONIC INC.) -- C:\Windows\System32\TSBWLS.dll
[2008/08/28 15:54:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Toshiba
[2008/08/28 15:52:15 | 000,000,000 | ---D | C] -- C:\Windows\System32\tr
[2008/08/28 15:52:15 | 000,000,000 | ---D | C] -- C:\Windows\System32\sv
[2008/08/28 15:52:15 | 000,000,000 | ---D | C] -- C:\Windows\System32\sk
[2008/08/28 15:52:15 | 000,000,000 | ---D | C] -- C:\Windows\System32\ru
[2008/08/28 15:52:15 | 000,000,000 | ---D | C] -- C:\Windows\System32\pt
[2008/08/28 15:52:15 | 000,000,000 | ---D | C] -- C:\Windows\System32\pl
[2008/08/28 15:52:15 | 000,000,000 | ---D | C] -- C:\Windows\System32\no
[2008/08/28 15:52:15 | 000,000,000 | ---D | C] -- C:\Windows\System32\nl
[2008/08/28 15:52:15 | 000,000,000 | ---D | C] -- C:\Windows\System32\it
[2008/08/28 15:52:15 | 000,000,000 | ---D | C] -- C:\Windows\System32\hu
[2008/08/28 15:52:15 | 000,000,000 | ---D | C] -- C:\Windows\System32\gl
[2008/08/28 15:52:15 | 000,000,000 | ---D | C] -- C:\Windows\System32\fr
[2008/08/28 15:52:15 | 000,000,000 | ---D | C] -- C:\Windows\System32\fi
[2008/08/28 15:52:15 | 000,000,000 | ---D | C] -- C:\Windows\System32\eu
[2008/08/28 15:52:15 | 000,000,000 | ---D | C] -- C:\Windows\System32\es
[2008/08/28 15:52:15 | 000,000,000 | ---D | C] -- C:\Windows\System32\el
[2008/08/28 15:52:15 | 000,000,000 | ---D | C] -- C:\Windows\System32\de
[2008/08/28 15:52:15 | 000,000,000 | ---D | C] -- C:\Windows\System32\da
[2008/08/28 15:52:15 | 000,000,000 | ---D | C] -- C:\Windows\System32\cs
[2008/08/28 15:52:15 | 000,000,000 | ---D | C] -- C:\Windows\System32\ca
[2008/08/28 15:47:06 | 000,124,928 | ---- | C] (Realtek Corporation ) -- C:\Windows\System32\drivers\Rtlh86.sys
[2008/08/28 15:46:15 | 000,000,000 | ---D | C] -- C:\Windows\System32\sda
[2008/08/28 15:45:37 | 000,000,000 | ---D | C] -- C:\Windows\JMCR_DIR
[2008/08/28 15:39:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TOSHIBA
[2008/08/28 15:36:03 | 000,000,000 | ---D | C] -- C:\Windows\System32\RTCOM
[2008/08/28 15:35:30 | 000,339,968 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\System32\SRSTSXT.dll
[2008/08/28 15:35:30 | 000,185,776 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\System32\SRSTSHD.dll
[2008/08/28 15:35:30 | 000,167,936 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\System32\SRSHP360.dll
[2008/08/28 15:35:30 | 000,135,168 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\System32\SRSWOW.dll
[2008/08/28 15:35:29 | 006,265,376 | ---- | C] (Realtek Semiconductor) -- C:\Windows\RtHDVCpl.exe
[2008/08/28 15:35:29 | 001,933,312 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\MaxxAudioEQ.dll
[2008/08/28 15:35:29 | 000,126,976 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\MaxxAudioAPO.dll
[2008/08/28 15:35:29 | 000,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information
[2008/08/28 15:35:29 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek
[2008/08/28 15:35:26 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield
[2008/08/28 14:44:22 | 000,000,000 | ---D | C] -- C:\Windows\Panther
[2008/08/28 14:44:07 | 000,000,000 | -HSD | C] -- C:\Boot
[2008/08/28 14:15:52 | 000,000,000 | ---D | C] -- C:\Program Files\MSXML 4.0
[2008/08/28 14:15:49 | 000,000,000 | -HSD | C] -- C:\Windows\Installer
[2008/08/28 14:05:26 | 000,000,000 | ---D | C] -- C:\Program Files\Toshiba
[2008/08/28 14:04:54 | 000,000,000 | ---D | C] -- C:\Windows\Debug
[2008/08/28 13:58:41 | 000,000,000 | ---D | C] -- C:\Windows\Prefetch
[2008/08/05 12:43:35 | 000,000,000 | ---D | C] -- C:\Windows\System32\eu-ES
[2008/08/05 12:43:35 | 000,000,000 | ---D | C] -- C:\Windows\System32\ca-ES
[2008/08/05 12:43:34 | 000,000,000 | ---D | C] -- C:\Windows\System32\vi-VN
[2008/08/05 05:50:20 | 000,000,000 | ---D | C] -- C:\Windows\System32\EventProviders
[2008/08/04 04:37:57 | 000,000,000 | ---D | C] -- C:\Users\oxford\AppData\Roaming\AVAST Software
[2008/08/04 04:37:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast
[2008/08/04 04:36:36 | 000,057,672 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswTdi.sys
[2008/08/04 04:36:34 | 000,777,488 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswsnx.sys
[2008/08/04 04:36:34 | 000,776,976 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswsnx.sys.1217842619200
[2008/08/04 04:36:33 | 000,411,680 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswsp.sys
[2008/08/04 04:36:31 | 000,067,824 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswMonFlt.sys
[2008/08/04 04:36:30 | 000,054,832 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswrdr.sys.1217842619200
[2008/08/04 04:36:30 | 000,054,832 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswrdr.sys
[2008/08/04 04:36:27 | 000,271,264 | ---- | C] (AVAST Software) -- C:\Windows\System32\aswBoot.exe
[2008/08/04 04:36:18 | 000,043,152 | ---- | C] (AVAST Software) -- C:\Windows\avastSS.scr
[2008/08/04 04:31:48 | 000,000,000 | ---D | C] -- C:\Program Files\AVAST Software
[2008/08/04 04:29:08 | 000,000,000 | ---D | C] -- C:\ProgramData\AVAST Software
[2008/08/04 04:12:46 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
[2008/08/04 04:12:43 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2008/08/04 03:26:45 | 000,110,296 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\MBAMSwissArmy.sys
[2008/08/04 03:26:37 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
[2008/08/04 03:26:34 | 000,074,456 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamchameleon.sys
[2008/08/04 03:26:34 | 000,051,928 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mwac.sys
[2008/08/04 03:26:34 | 000,023,256 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2008/08/04 03:26:34 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes Anti-Malware
[2008/08/04 03:26:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2008/08/04 03:12:50 | 000,000,000 | ---D | C] -- C:\Windows\ERUNT
[2008/08/04 02:49:19 | 000,536,576 | ---- | C] (SQLite Development Team) -- C:\Windows\System32\sqlite3.dll
[2008/08/04 02:47:39 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[2008/08/03 04:15:46 | 004,796,856 | ---- | C] (AVAST Software) -- C:\Users\oxford\Desktop\avast_free_antivirus_setup_online.exe
[2008/08/03 04:02:53 | 017,292,208 | ---- | C] (Malwarebytes Corporation ) -- C:\Users\oxford\Desktop\mbam-setup.exe
[2008/08/03 03:42:27 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\oxford\Desktop\OTL.exe
[2008/08/03 03:41:09 | 001,016,261 | ---- | C] (Thisisu) -- C:\Users\oxford\Desktop\JRT.exe
[2008/08/03 03:39:36 | 004,748,896 | ---- | C] (Piriform Ltd) -- C:\Users\oxford\Desktop\ccsetup414.exe
[2 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[1 C:\Users\oxford\Documents\*.tmp files -> C:\Users\oxford\Documents\*.tmp -> ]
[1 C:\Users\oxford\Desktop\*.tmp files -> C:\Users\oxford\Desktop\*.tmp -> ]

CharmPeddler · Jun 16, 2014

========== Files - Modified Within 30 Days ==========

[2014/05/12 07:35:12 | 000,051,928 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mwac.sys
[2014/05/12 07:35:06 | 000,074,456 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamchameleon.sys
[2014/05/12 07:35:02 | 000,023,256 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2013/08/14 12:35:11 | 000,000,680 | ---- | M] () -- C:\Users\oxford\AppData\Local\d3d9caps.dat
[2013/08/09 20:27:45 | 000,070,336 | ---- | M] () -- C:\Users\oxford\Desktop\jared resume.rtf
[2013/08/09 19:16:23 | 000,000,162 | -H-- | M] () -- C:\Users\oxford\Desktop\~$red resume.rtf
[2013/07/11 17:31:02 | 000,714,622 | ---- | M] () -- C:\Users\oxford\Desktop\Derek Sanders Registration.zip
[2013/04/30 22:49:51 | 002,395,542 | ---- | M] () -- C:\Users\oxford\Documents\BetterBalancerWeek1.pdf
[2013/02/18 18:14:07 | 001,410,401 | ---- | M] () -- C:\Users\oxford\Documents\tropical_fruit.pdf
[2013/02/18 18:13:49 | 001,384,002 | ---- | M] () -- C:\Users\oxford\Documents\tobacco.pdf
[2013/02/18 18:13:08 | 001,347,251 | ---- | M] () -- C:\Users\oxford\Documents\sunflower.pdf
[2013/02/18 18:12:35 | 001,327,718 | ---- | M] () -- C:\Users\oxford\Documents\sugar_cane.pdf
[2013/02/18 18:12:15 | 001,359,373 | ---- | M] () -- C:\Users\oxford\Documents\sugar_beets.pdf
[2013/02/18 18:11:51 | 001,410,836 | ---- | M] () -- C:\Users\oxford\Documents\strawberries.pdf
[2013/02/18 18:11:17 | 005,282,461 | ---- | M] () -- C:\Users\oxford\Documents\soybeans.pdf
[2013/02/18 18:10:52 | 004,937,610 | ---- | M] () -- C:\Users\oxford\Documents\small_grains.pdf
[2013/02/18 18:10:26 | 001,320,176 | ---- | M] () -- C:\Users\oxford\Documents\root_vegetables.pdf
[2013/02/18 18:10:04 | 001,330,146 | ---- | M] () -- C:\Users\oxford\Documents\rice.pdf
[2013/02/18 18:09:45 | 001,356,169 | ---- | M] () -- C:\Users\oxford\Documents\peanuts.pdf
[2013/02/18 18:08:56 | 001,219,077 | ---- | M] () -- C:\Users\oxford\Documents\oilseed.pdf
[2013/02/18 18:08:37 | 001,399,565 | ---- | M] () -- C:\Users\oxford\Documents\nuts.pdf
[2013/02/18 18:08:23 | 001,289,474 | ---- | M] () -- C:\Users\oxford\Documents\melons.pdf
[2013/02/18 18:08:09 | 001,306,286 | ---- | M] () -- C:\Users\oxford\Documents\legumes.pdf
[2013/02/18 18:07:54 | 001,345,159 | ---- | M] () -- C:\Users\oxford\Documents\leaf_stem_and_flowering_vegetables.pdf
[2013/02/18 18:06:59 | 004,759,618 | ---- | M] () -- C:\Users\oxford\Documents\forage_crops.pdf
[2013/02/18 18:06:43 | 000,723,389 | ---- | M] () -- C:\Users\oxford\Documents\dry_beans.pdf
[2013/02/18 18:06:22 | 001,236,087 | ---- | M] () -- C:\Users\oxford\Documents\cotton.pdf
[2013/02/18 18:06:05 | 005,016,235 | ---- | M] () -- C:\Users\oxford\Documents\corn.pdf
[2013/02/18 18:05:45 | 001,259,693 | ---- | M] () -- C:\Users\oxford\Documents\hops.pdf
[2013/02/18 18:05:27 | 001,369,820 | ---- | M] () -- C:\Users\oxford\Documents\fruiting_vegetables.pdf
[2013/02/18 18:05:06 | 001,152,207 | ---- | M] () -- C:\Users\oxford\Documents\grapes.pdf
[2013/02/18 18:04:48 | 001,358,304 | ---- | M] () -- C:\Users\oxford\Documents\fruit.pdf
[2013/02/18 18:04:20 | 001,410,840 | ---- | M] () -- C:\Users\oxford\Documents\berries.pdf
[2013/01/31 11:28:26 | 000,010,724 | ---- | M] () -- C:\Users\oxford\Documents\2102 tax amway.pdf
[2012/12/25 13:47:03 | 000,004,714 | ---- | M] () -- C:\Users\oxford\Desktop\Zombatar_9.jpg
[2012/12/25 13:46:37 | 000,008,383 | ---- | M] () -- C:\Users\oxford\Desktop\Zombatar_8.jpg
[2012/12/25 13:32:42 | 000,008,753 | ---- | M] () -- C:\Users\oxford\Desktop\Zombatar_7.jpg
[2012/12/25 13:31:13 | 000,009,363 | ---- | M] () -- C:\Users\oxford\Desktop\Zombatar_6.jpg
[2012/12/25 13:30:12 | 000,007,802 | ---- | M] () -- C:\Users\oxford\Desktop\Zombatar_5.jpg
[2012/12/25 13:28:36 | 000,008,724 | ---- | M] () -- C:\Users\oxford\Desktop\Zombatar_4.jpg
[2012/12/25 13:27:17 | 000,007,590 | ---- | M] () -- C:\Users\oxford\Desktop\Zombatar_3.jpg
[2012/12/25 13:06:39 | 000,007,617 | ---- | M] () -- C:\Users\oxford\Desktop\Zombatar_2.jpg
[2012/12/25 12:10:24 | 000,010,437 | ---- | M] () -- C:\Users\oxford\Desktop\Zombatar_1.jpg
[2012/12/10 11:36:28 | 000,001,675 | ---- | M] () -- C:\Users\Public\Desktop\iTunes.lnk
[2012/10/25 09:36:28 | 000,021,476 | ---- | M] () -- C:\Users\oxford\Documents\Ad Layout Sheet N.A.M..pdf
[2012/10/24 13:59:50 | 001,225,025 | ---- | M] () -- C:\Users\oxford\Documents\Contributor2012Receipts.pdf
[2012/10/10 16:36:27 | 000,001,826 | ---- | M] () -- C:\Users\oxford\AppData\Roaming\wklnhst.dat
[2012/10/02 13:34:45 | 000,144,800 | ---- | M] () -- C:\Users\oxford\Documents\31-Biblical-Virtues-InfoGraphic_8.5x11.pdf
[2012/09/24 21:47:01 | 000,250,225 | ---- | M] () -- C:\Users\oxford\Documents\Insanity-Workout-Calendar.pdf
[2012/09/23 22:04:01 | 000,150,487 | ---- | M] () -- C:\Users\oxford\Documents\Insanity-Workout-Schedule.pdf
[2012/09/10 13:39:47 | 000,203,902 | ---- | M] () -- C:\Users\oxford\Documents\Clear.Now Device results.pdf
[2012/08/01 08:00:16 | 000,019,456 | ---- | M] () -- C:\Users\oxford\Documents\L.A. SCore Sheet.xlr
[2012/07/21 16:36:49 | 005,329,201 | ---- | M] () -- C:\Users\oxford\Documents\BLAST mixer.pdf
[2012/07/21 16:21:05 | 002,756,271 | ---- | M] () -- C:\Users\oxford\Documents\espring info.pdf
[2012/07/13 09:42:02 | 001,392,331 | ---- | M] () -- C:\Users\oxford\Documents\Sponsor NAMISS.pdf
[2012/07/13 08:23:54 | 000,210,666 | ---- | M] () -- C:\Users\oxford\Documents\-LearnAboutATMOSPHERE.pdf
[2012/07/13 08:21:24 | 001,964,005 | ---- | M] () -- C:\Users\oxford\Documents\home-atm-cat-d-en--ATMOSPHEREBrochure.pdf
[2012/05/29 12:52:42 | 000,001,854 | ---- | M] () -- C:\Users\Public\Desktop\Safari.lnk
[2012/05/29 12:52:42 | 000,001,854 | ---- | M] () -- C:\Users\oxford\Application Data\Microsoft\Internet Explorer\Quick Launch\Apple Safari.lnk
[2012/05/22 23:42:44 | 000,032,768 | ---- | M] () -- C:\Users\oxford\Documents\The TApestry of this Girls Life.wps
[2012/05/22 23:24:32 | 000,010,240 | ---- | M] () -- C:\Users\oxford\Documents\notes for my book2012.wps
[2012/05/19 23:18:53 | 004,344,180 | ---- | M] () -- C:\Users\oxford\Documents\artistry escape to glamour how to part II.pdf
[2012/05/19 23:14:44 | 004,344,180 | ---- | M] () -- C:\Users\oxford\Documents\artistry escape to glamour how to.pdf
[2012/04/03 21:56:35 | 002,053,095 | ---- | M] () -- C:\Users\oxford\Documents\RestFestVendors 2012.pdf
[2012/04/03 13:55:18 | 000,002,244 | ---- | M] () -- C:\Users\oxford\Application Data\Microsoft\Internet Explorer\Quick Launch\Pinterest · Create Account.lnk
[2012/04/03 13:55:18 | 000,002,242 | ---- | M] () -- C:\Users\oxford\Desktop\Pinterest · Create Account.lnk
[2012/03/31 13:46:56 | 000,310,505 | ---- | M] () -- C:\Users\oxford\Documents\amway order forms.pdf
[2012/03/30 18:25:38 | 000,068,930 | ---- | M] () -- C:\Users\oxford\Documents\temporary insurance cards.pdf
[2012/02/19 15:50:14 | 000,000,411 | ---- | M] () -- C:\Windows\ka.ini
[2012/02/19 15:50:11 | 000,001,869 | ---- | M] () -- C:\Users\Public\Desktop\JumpStart 3D Parent Center.lnk
[2012/02/19 15:50:11 | 000,001,868 | ---- | M] () -- C:\Users\Public\Desktop\JumpStart 3D Ages 4-6.lnk
[2012/02/14 20:21:55 | 000,029,942 | ---- | M] () -- C:\Users\oxford\Desktop\cover letter.rtf
[2012/01/20 18:50:29 | 000,000,581 | ---- | M] () -- C:\Users\oxford\AppData\Local\cookies.ini
[2012/01/17 13:39:27 | 000,001,017 | ---- | M] () -- C:\Users\oxford\Desktop\Learning Lodge Navigator.lnk
[2011/12/29 23:28:17 | 000,001,117 | ---- | M] () -- C:\Users\Public\Desktop\Plants vs. Zombies.lnk
[2011/12/25 13:29:28 | 000,000,751 | ---- | M] () -- C:\Users\Public\Desktop\LeapFrog Connect.lnk
[2011/11/08 16:09:05 | 000,002,008 | ---- | M] () -- C:\Users\Public\Desktop\JumpStart Website.lnk
[2011/11/08 16:09:04 | 000,001,835 | ---- | M] () -- C:\Users\Public\Desktop\JumpStart Artist.lnk
[2011/11/08 15:53:41 | 000,001,907 | ---- | M] () -- C:\Users\Public\Desktop\Math Blaster Ages 5-7.lnk
[2011/11/08 13:23:42 | 000,001,934 | ---- | M] () -- C:\Users\Public\Desktop\Reading Blaster Ages 4-6.lnk
[2011/07/06 11:32:50 | 000,010,752 | ---- | M] () -- C:\Users\oxford\Documents\Joplin relief.wps
[2011/06/22 09:23:58 | 000,220,768 | ---- | M] () -- C:\Users\oxford\Documents\TempFoodServiceGuide.pdf
[2011/05/13 14:34:40 | 000,000,000 | ---- | M] () -- C:\Users\oxford\AppData\Local\{47E25434-1E5F-4F9A-86D0-BDC1FB15545F}
[2011/04/12 23:17:32 | 000,009,216 | ---- | M] () -- C:\Users\oxford\Documents\support my business letter.wps
[2011/04/04 22:32:21 | 001,472,588 | ---- | M] () -- C:\Users\oxford\Desktop\xs energy drink.pdf
[2011/03/26 11:54:19 | 000,014,336 | ---- | M] () -- C:\Users\oxford\Desktop\verle and jan wedding.wps
[2011/03/12 19:38:42 | 000,774,260 | ---- | M] () -- C:\Users\oxford\Desktop\Carr registration.pdf
[2010/10/12 19:49:30 | 001,163,401 | ---- | M] () -- C:\Users\oxford\Desktop\ribbons flier 2010.pdf
[2010/08/30 08:34:16 | 000,536,576 | ---- | M] (SQLite Development Team) -- C:\Windows\System32\sqlite3.dll
[2010/08/21 21:45:58 | 000,010,752 | ---- | M] () -- C:\Users\oxford\Documents\Monthly Bills.xlr
[2010/07/17 13:12:18 | 005,492,747 | ---- | M] () -- C:\Users\oxford\Desktop\--html lang=-en- dir=-ltr----!-- machid- gSVJrQm1QeEJrZDNX.asf
[2010/07/17 13:08:06 | 004,193,361 | ---- | M] () -- C:\Users\oxford\Desktop\--html lang=-en- dir=-ltr----!-- machid- gRTFhdHhNdkNlcVJZ.asf
[2010/07/17 12:42:16 | 000,004,159 | ---- | M] () -- C:\ProgramData\bfqyszru.mui
[2010/04/10 11:26:29 | 000,011,776 | ---- | M] () -- C:\Users\oxford\Documents\Jared's 100 reasons.wps
[2010/03/07 23:26:15 | 000,013,312 | ---- | M] () -- C:\Users\oxford\Documents\my book #2.wps
[2010/02/26 00:54:15 | 000,010,752 | ---- | M] () -- C:\Users\oxford\Documents\milage 2009.xlr
[2010/02/26 00:54:01 | 000,020,992 | ---- | M] () -- C:\Users\oxford\Documents\Tax stuff for business 2009.xlr
[2010/02/15 12:39:15 | 000,011,264 | ---- | M] () -- C:\Users\oxford\Documents\Oxford Group Doc 1.wps
[2010/01/26 22:59:48 | 000,010,752 | ---- | M] () -- C:\Users\oxford\Documents\oxford group 2.wps
[2009/10/18 16:19:37 | 000,891,675 | ---- | M] () -- C:\Users\oxford\Desktop\pietro registration.pdf
[2009/08/31 20:07:38 | 000,060,744 | ---- | M] () -- C:\Users\oxford\g2mdlhlpx.exe
[2009/08/04 20:32:08 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_00_00.Wdf
[2009/08/03 20:32:45 | 000,891,862 | ---- | M] () -- C:\Users\oxford\Desktop\bryan and marci IBO.pdf
[2009/08/01 13:05:17 | 000,000,949 | ---- | M] () -- C:\Users\oxford\Application Data\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk
[2009/07/21 15:01:22 | 000,266,240 | ---- | M] (Fortemedia Corporation) -- C:\Windows\System32\FMAPO.dll
[2009/07/19 10:32:10 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_User_WpdMtpDr_01_00_00.Wdf
[2009/07/13 21:59:50 | 000,000,014 | RHS- | M] () -- C:\Windows\System32\drivers\fbd.sys
[2009/07/13 21:59:48 | 000,000,004 | RHS- | M] () -- C:\Windows\System32\drivers\taishop.sys
[2009/07/13 20:52:06 | 000,047,092 | ---- | M] () -- C:\Windows\System32\license.rtf
[2009/07/11 12:03:56 | 002,501,921 | ---- | M] () -- C:\Windows\System32\wlan.tmf
[2009/05/14 14:23:23 | 000,000,000 | ---- | M] () -- C:\Windows\ativpsrm.bin
[2009/05/14 14:19:58 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_Kernel_Apfiltr_01005.Wdf
[2009/04/16 11:05:40 | 001,784,352 | ---- | M] (Waves Audio Ltd.) -- C:\Windows\System32\WavesLib.dll
[2009/04/11 01:36:36 | 000,333,257 | RHS- | M] () -- C:\bootmgr
[2009/04/11 01:28:19 | 000,117,248 | ---- | M] () -- C:\Windows\System32\EhStorAuthn.dll
[2009/04/10 23:48:19 | 000,344,698 | ---- | M] () -- C:\Windows\System32\eaphost.tmf
[2009/04/10 23:46:15 | 000,208,966 | ---- | M] () -- C:\Windows\System32\WFP.TMF
[2009/04/10 23:43:51 | 000,442,788 | ---- | M] () -- C:\Windows\System32\dot3.tmf
[2009/04/10 23:43:37 | 000,392,170 | ---- | M] () -- C:\Windows\System32\onex.tmf
[2009/04/10 20:59:52 | 000,018,904 | ---- | M] () -- C:\Windows\System32\StructuredQuerySchemaTrivial.bin
[2009/04/10 20:59:51 | 000,107,612 | ---- | M] () -- C:\Windows\System32\StructuredQuerySchema.bin
[2009/03/08 22:32:30 | 000,290,304 | ---- | M] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RP3DHT32.dll
[2009/03/08 22:30:48 | 000,290,304 | ---- | M] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RP3DAA32.dll
[2009/03/06 20:11:16 | 000,130,008 | ---- | M] () -- C:\Windows\System32\systemsf.ebd
[2009/02/19 19:20:51 | 000,009,239 | ---- | M] () -- C:\Windows\System32\spcinstrumentation.man
[2009/02/19 19:20:51 | 000,009,212 | ---- | M] () -- C:\Windows\System32\RacUR.xml
[2009/02/18 13:39:57 | 000,092,918 | ---- | M] () -- C:\Windows\System32\slmgr.vbs
[2009/02/18 13:38:45 | 011,967,524 | ---- | M] () -- C:\Windows\System32\korwbrkr.lex
[2008/11/09 04:52:14 | 000,159,744 | ---- | M] (Waves Audio Ltd.) -- C:\Windows\System32\MaxxAudioAPO20.dll
[2008/09/26 15:34:15 | 000,001,189 | ---- | M] () -- C:\Users\Public\Desktop\Microsoft Office - 60 Day Trial.lnk
[2008/09/03 01:07:00 | 000,000,520 | ---- | M] () -- C:\Windows\System32\drivers\RTEQEX0.dat
[2008/08/28 17:37:02 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_Kernel_TpChoice_01005.Wdf
[2008/08/28 17:29:34 | 000,000,799 | ---- | M] () -- C:\Users\Public\Desktop\Picasa2.lnk
[2008/08/28 17:03:51 | 000,001,094 | ---- | M] () -- C:\Users\Public\Desktop\Google Desktop.lnk
[2008/08/28 16:54:35 | 000,001,997 | ---- | M] () -- C:\Users\Public\Desktop\QuickBooks Financial Center.lnk
[2008/08/28 16:00:25 | 000,000,000 | ---- | M] () -- C:\Windows\NDSTray.INI
[2008/08/28 15:46:15 | 000,000,125 | ---- | M] () -- C:\Windows\xUninstall.bat
[2008/08/28 14:44:37 | 000,000,002 | ---- | M] () -- C:\Windows\System32\drivers\1179_Toshiba_Satellite A350D-A355D_28153.MRK
[2008/08/28 14:44:09 | 000,008,192 | R-S- | M] () -- C:\BOOTSECT.BAK
[2008/08/26 01:11:22 | 000,000,160 | ---- | M] () -- C:\Windows\System32\drivers\rtkhdaud.dat
[2008/08/23 09:27:14 | 000,040,960 | ---- | M] () -- C:\Windows\System32\HWS_Ctrl.dll
[2008/08/21 11:19:22 | 000,000,852 | ---- | M] () -- C:\Windows\System32\drivers\RTKHDRC.dat
[2008/08/21 11:19:22 | 000,000,520 | ---- | M] () -- C:\Windows\System32\drivers\RTEQEX1.dat
[2008/08/20 20:35:20 | 006,265,376 | ---- | M] (Realtek Semiconductor) -- C:\Windows\RtHDVCpl.exe
[2008/08/07 12:53:33 | 000,003,616 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2008/08/07 12:53:33 | 000,003,616 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2008/08/07 12:31:54 | 000,000,886 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2008/08/07 12:31:19 | 000,000,912 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-842615985-2486156238-1364136659-1000UA.job
[2008/08/07 12:23:00 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2008/08/07 03:31:00 | 000,000,882 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2008/08/07 03:31:00 | 000,000,860 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-842615985-2486156238-1364136659-1000Core.job
[2008/08/07 00:59:13 | 000,595,684 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2008/08/07 00:59:13 | 000,101,350 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2008/08/07 00:53:29 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2008/08/06 18:26:08 | 000,124,928 | ---- | M] (Realtek Corporation ) -- C:\Windows\System32\drivers\Rtlh86.sys
[2008/08/05 13:06:49 | 000,000,954 | ---- | M] () -- C:\Users\oxford\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2008/08/05 12:52:51 | 000,322,560 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2008/08/04 04:37:21 | 000,001,884 | ---- | M] () -- C:\Users\Public\Desktop\avast! Free Antivirus.lnk
[2008/08/04 04:36:59 | 000,777,488 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswsnx.sys
[2008/08/04 04:36:59 | 000,411,680 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswsp.sys
[2008/08/04 04:36:59 | 000,054,832 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswrdr.sys
[2008/08/04 04:36:23 | 000,180,632 | ---- | M] () -- C:\Windows\System32\drivers\aswVmm.sys
[2008/08/04 04:36:23 | 000,057,672 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswTdi.sys
[2008/08/04 04:36:22 | 000,776,976 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswsnx.sys.1217842619200
[2008/08/04 04:36:21 | 000,067,824 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswMonFlt.sys
[2008/08/04 04:36:21 | 000,054,832 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswrdr.sys.1217842619200
[2008/08/04 04:36:21 | 000,049,944 | ---- | M] () -- C:\Windows\System32\drivers\aswRvrt.sys
[2008/08/04 04:36:21 | 000,024,184 | ---- | M] () -- C:\Windows\System32\drivers\aswHwid.sys
[2008/08/04 04:36:18 | 000,271,264 | ---- | M] (AVAST Software) -- C:\Windows\System32\aswBoot.exe
[2008/08/04 04:36:18 | 000,043,152 | ---- | M] (AVAST Software) -- C:\Windows\avastSS.scr
[2008/08/04 04:16:40 | 000,232,334 | ---- | M] () -- C:\Users\oxford\Documents\cc_20080804_041521 DO NOT DELETE.reg
[2008/08/04 03:26:54 | 000,110,296 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\MBAMSwissArmy.sys
[2008/08/03 04:15:51 | 004,796,856 | ---- | M] (AVAST Software) -- C:\Users\oxford\Desktop\avast_free_antivirus_setup_online.exe
[2008/08/03 04:03:20 | 017,292,208 | ---- | M] (Malwarebytes Corporation ) -- C:\Users\oxford\Desktop\mbam-setup.exe
[2008/08/03 03:42:29 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\oxford\Desktop\OTL.exe
[2008/08/03 03:41:35 | 000,002,060 | ---- | M] () -- C:\Users\oxford\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2008/08/03 03:41:35 | 000,002,058 | ---- | M] () -- C:\Users\oxford\Desktop\Google Chrome.lnk
[2008/08/03 03:41:10 | 001,016,261 | ---- | M] (Thisisu) -- C:\Users\oxford\Desktop\JRT.exe
[2008/08/03 03:39:53 | 001,333,465 | ---- | M] () -- C:\Users\oxford\Desktop\AdwCleaner.exe
[2008/08/03 03:39:43 | 004,748,896 | ---- | M] (Piriform Ltd) -- C:\Users\oxford\Desktop\ccsetup414.exe
[2008/08/03 03:24:21 | 000,054,272 | ---- | M] () -- C:\Users\oxford\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2008/08/01 02:47:28 | 000,159,744 | ---- | M] () -- C:\Windows\System32\atitmmxx.dll
[2008/08/01 02:15:28 | 003,107,788 | ---- | M] () -- C:\Windows\System32\atiumdva.dat
[2008/07/30 21:09:42 | 000,000,903 | ---- | M] () -- C:\Users\Public\Desktop\Voice & Video Calls.lnk
[2008/07/28 17:53:48 | 000,919,552 | ---- | M] (Atheros Communications, Inc.) -- C:\Windows\System32\drivers\athr.sys
[2008/07/28 16:31:40 | 000,516,096 | ---- | M] (Atheros) -- C:\Windows\System32\S64CPA.exe
[2008/07/28 16:31:16 | 000,053,248 | ---- | M] (Atheros) -- C:\Windows\System32\athihvui.dll
[2008/07/28 16:30:50 | 000,393,216 | ---- | M] (Atheros) -- C:\Windows\System32\athihvs.dll
[2008/07/24 08:01:06 | 000,014,505 | ---- | M] () -- C:\Windows\atiogl.xml
[2008/07/15 21:59:06 | 000,017,960 | ---- | M] (Chicony Electronics Co., Ltd.) -- C:\Windows\System32\drivers\UVCFTR_S.SYS
[2 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[1 C:\Users\oxford\Documents\*.tmp files -> C:\Users\oxford\Documents\*.tmp -> ]
[1 C:\Users\oxford\Desktop\*.tmp files -> C:\Users\oxford\Desktop\*.tmp -> ]

========== Files Created - No Company Name ==========

[2013/08/09 19:16:23 | 000,000,162 | -H-- | C] () -- C:\Users\oxford\Desktop\~$red resume.rtf
[2013/07/11 17:31:01 | 000,714,622 | ---- | C] () -- C:\Users\oxford\Desktop\Derek Sanders Registration.zip
[2013/04/30 22:49:51 | 002,395,542 | ---- | C] () -- C:\Users\oxford\Documents\BetterBalancerWeek1.pdf
[2013/02/18 18:14:07 | 001,410,401 | ---- | C] () -- C:\Users\oxford\Documents\tropical_fruit.pdf
[2013/02/18 18:13:49 | 001,384,002 | ---- | C] () -- C:\Users\oxford\Documents\tobacco.pdf
[2013/02/18 18:13:08 | 001,347,251 | ---- | C] () -- C:\Users\oxford\Documents\sunflower.pdf
[2013/02/18 18:12:35 | 001,327,718 | ---- | C] () -- C:\Users\oxford\Documents\sugar_cane.pdf
[2013/02/18 18:12:15 | 001,359,373 | ---- | C] () -- C:\Users\oxford\Documents\sugar_beets.pdf
[2013/02/18 18:11:51 | 001,410,836 | ---- | C] () -- C:\Users\oxford\Documents\strawberries.pdf
[2013/02/18 18:11:17 | 005,282,461 | ---- | C] () -- C:\Users\oxford\Documents\soybeans.pdf
[2013/02/18 18:10:52 | 004,937,610 | ---- | C] () -- C:\Users\oxford\Documents\small_grains.pdf
[2013/02/18 18:10:26 | 001,320,176 | ---- | C] () -- C:\Users\oxford\Documents\root_vegetables.pdf
[2013/02/18 18:10:04 | 001,330,146 | ---- | C] () -- C:\Users\oxford\Documents\rice.pdf
[2013/02/18 18:09:45 | 001,356,169 | ---- | C] () -- C:\Users\oxford\Documents\peanuts.pdf
[2013/02/18 18:08:56 | 001,219,077 | ---- | C] () -- C:\Users\oxford\Documents\oilseed.pdf
[2013/02/18 18:08:37 | 001,399,565 | ---- | C] () -- C:\Users\oxford\Documents\nuts.pdf
[2013/02/18 18:08:23 | 001,289,474 | ---- | C] () -- C:\Users\oxford\Documents\melons.pdf
[2013/02/18 18:08:09 | 001,306,286 | ---- | C] () -- C:\Users\oxford\Documents\legumes.pdf
[2013/02/18 18:07:54 | 001,345,159 | ---- | C] () -- C:\Users\oxford\Documents\leaf_stem_and_flowering_vegetables.pdf
[2013/02/18 18:06:59 | 004,759,618 | ---- | C] () -- C:\Users\oxford\Documents\forage_crops.pdf
[2013/02/18 18:06:43 | 000,723,389 | ---- | C] () -- C:\Users\oxford\Documents\dry_beans.pdf
[2013/02/18 18:06:22 | 001,236,087 | ---- | C] () -- C:\Users\oxford\Documents\cotton.pdf
[2013/02/18 18:06:05 | 005,016,235 | ---- | C] () -- C:\Users\oxford\Documents\corn.pdf
[2013/02/18 18:05:45 | 001,259,693 | ---- | C] () -- C:\Users\oxford\Documents\hops.pdf
[2013/02/18 18:05:27 | 001,369,820 | ---- | C] () -- C:\Users\oxford\Documents\fruiting_vegetables.pdf
[2013/02/18 18:05:06 | 001,152,207 | ---- | C] () -- C:\Users\oxford\Documents\grapes.pdf
[2013/02/18 18:04:48 | 001,358,304 | ---- | C] () -- C:\Users\oxford\Documents\fruit.pdf
[2013/02/18 18:04:20 | 001,410,840 | ---- | C] () -- C:\Users\oxford\Documents\berries.pdf
[2013/01/31 11:28:26 | 000,010,724 | ---- | C] () -- C:\Users\oxford\Documents\2102 tax amway.pdf
[2012/12/25 13:47:03 | 000,004,714 | ---- | C] () -- C:\Users\oxford\Desktop\Zombatar_9.jpg
[2012/12/25 13:46:37 | 000,008,383 | ---- | C] () -- C:\Users\oxford\Desktop\Zombatar_8.jpg
[2012/12/25 13:32:42 | 000,008,753 | ---- | C] () -- C:\Users\oxford\Desktop\Zombatar_7.jpg
[2012/12/10 11:36:28 | 000,001,675 | ---- | C] () -- C:\Users\Public\Desktop\iTunes.lnk
[2012/10/25 09:36:28 | 000,021,476 | ---- | C] () -- C:\Users\oxford\Documents\Ad Layout Sheet N.A.M..pdf
[2012/10/24 13:59:50 | 001,225,025 | ---- | C] () -- C:\Users\oxford\Documents\Contributor2012Receipts.pdf
[2012/10/02 13:34:45 | 000,144,800 | ---- | C] () -- C:\Users\oxford\Documents\31-Biblical-Virtues-InfoGraphic_8.5x11.pdf
[2012/09/24 21:47:01 | 000,250,225 | ---- | C] () -- C:\Users\oxford\Documents\Insanity-Workout-Calendar.pdf
[2012/09/23 22:04:01 | 000,150,487 | ---- | C] () -- C:\Users\oxford\Documents\Insanity-Workout-Schedule.pdf
[2012/09/10 13:39:47 | 000,203,902 | ---- | C] () -- C:\Users\oxford\Documents\Clear.Now Device results.pdf
[2012/07/21 16:36:48 | 005,329,201 | ---- | C] () -- C:\Users\oxford\Documents\BLAST mixer.pdf
[2012/07/21 16:21:05 | 002,756,271 | ---- | C] () -- C:\Users\oxford\Documents\espring info.pdf
[2012/07/13 09:42:02 | 001,392,331 | ---- | C] () -- C:\Users\oxford\Documents\Sponsor NAMISS.pdf
[2012/07/13 08:23:54 | 000,210,666 | ---- | C] () -- C:\Users\oxford\Documents\-LearnAboutATMOSPHERE.pdf
[2012/07/13 08:21:23 | 001,964,005 | ---- | C] () -- C:\Users\oxford\Documents\home-atm-cat-d-en--ATMOSPHEREBrochure.pdf
[2012/06/13 17:59:02 | 000,019,456 | ---- | C] () -- C:\Users\oxford\Documents\L.A. SCore Sheet.xlr
[2012/05/29 12:52:42 | 000,001,854 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Safari.lnk
[2012/05/29 12:23:15 | 000,000,830 | ---- | C] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2012/05/22 23:24:32 | 000,010,240 | ---- | C] () -- C:\Users\oxford\Documents\notes for my book2012.wps
[2012/05/19 23:18:53 | 004,344,180 | ---- | C] () -- C:\Users\oxford\Documents\artistry escape to glamour how to part II.pdf
[2012/05/19 23:14:44 | 004,344,180 | ---- | C] () -- C:\Users\oxford\Documents\artistry escape to glamour how to.pdf
[2012/04/03 21:56:35 | 002,053,095 | ---- | C] () -- C:\Users\oxford\Documents\RestFestVendors 2012.pdf
[2012/04/03 13:55:18 | 000,002,250 | ---- | C] () -- C:\Users\oxford\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pinterest · Create Account.lnk
[2012/04/03 13:55:18 | 000,002,244 | ---- | C] () -- C:\Users\oxford\Application Data\Microsoft\Internet Explorer\Quick Launch\Pinterest · Create Account.lnk
[2012/04/03 13:55:18 | 000,002,242 | ---- | C] () -- C:\Users\oxford\Desktop\Pinterest · Create Account.lnk
[2012/03/31 13:46:56 | 000,310,505 | ---- | C] () -- C:\Users\oxford\Documents\amway order forms.pdf
[2012/03/30 18:25:38 | 000,068,930 | ---- | C] () -- C:\Users\oxford\Documents\temporary insurance cards.pdf
[2012/03/24 20:29:15 | 000,009,363 | ---- | C] () -- C:\Users\oxford\Desktop\Zombatar_6.jpg
[2012/03/24 20:27:00 | 000,007,802 | ---- | C] () -- C:\Users\oxford\Desktop\Zombatar_5.jpg
[2012/03/24 20:24:01 | 000,008,724 | ---- | C] () -- C:\Users\oxford\Desktop\Zombatar_4.jpg
[2012/03/24 20:22:18 | 000,007,590 | ---- | C] () -- C:\Users\oxford\Desktop\Zombatar_3.jpg
[2012/03/24 19:15:42 | 000,007,617 | ---- | C] () -- C:\Users\oxford\Desktop\Zombatar_2.jpg
[2012/02/19 15:50:11 | 000,001,869 | ---- | C] () -- C:\Users\Public\Desktop\JumpStart 3D Parent Center.lnk
[2012/02/19 15:50:11 | 000,001,868 | ---- | C] () -- C:\Users\Public\Desktop\JumpStart 3D Ages 4-6.lnk
[2012/02/14 20:21:55 | 000,029,942 | ---- | C] () -- C:\Users\oxford\Desktop\cover letter.rtf
[2012/02/14 20:19:36 | 000,070,336 | ---- | C] () -- C:\Users\oxford\Desktop\jared resume.rtf
[2012/01/17 13:40:13 | 000,000,581 | ---- | C] () -- C:\Users\oxford\AppData\Local\cookies.ini
[2012/01/17 13:39:27 | 000,001,017 | ---- | C] () -- C:\Users\oxford\Desktop\Learning Lodge Navigator.lnk
[2012/01/02 18:36:54 | 000,010,437 | ---- | C] () -- C:\Users\oxford\Desktop\Zombatar_1.jpg
[2011/12/29 23:28:17 | 000,001,117 | ---- | C] () -- C:\Users\Public\Desktop\Plants vs. Zombies.lnk
[2011/12/28 11:35:39 | 000,002,060 | ---- | C] () -- C:\Users\oxford\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2011/12/28 11:35:39 | 000,002,058 | ---- | C] () -- C:\Users\oxford\Desktop\Google Chrome.lnk
[2011/12/28 11:31:27 | 000,000,912 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-842615985-2486156238-1364136659-1000UA.job
[2011/12/28 11:31:25 | 000,000,860 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-842615985-2486156238-1364136659-1000Core.job
[2011/12/25 13:29:28 | 000,000,751 | ---- | C] () -- C:\Users\Public\Desktop\LeapFrog Connect.lnk
[2011/11/08 16:09:05 | 000,002,008 | ---- | C] () -- C:\Users\Public\Desktop\JumpStart Website.lnk
[2011/11/08 16:09:04 | 000,001,835 | ---- | C] () -- C:\Users\Public\Desktop\JumpStart Artist.lnk
[2011/11/08 15:53:41 | 000,001,907 | ---- | C] () -- C:\Users\Public\Desktop\Math Blaster Ages 5-7.lnk
[2011/11/08 13:23:43 | 000,000,411 | ---- | C] () -- C:\Windows\ka.ini
[2011/11/08 13:23:42 | 000,001,934 | ---- | C] () -- C:\Users\Public\Desktop\Reading Blaster Ages 4-6.lnk
[2011/06/22 09:23:58 | 000,220,768 | ---- | C] () -- C:\Users\oxford\Documents\TempFoodServiceGuide.pdf
[2011/06/16 17:33:26 | 000,010,752 | ---- | C] () -- C:\Users\oxford\Documents\Joplin relief.wps
[2011/05/13 14:34:00 | 000,000,000 | ---- | C] () -- C:\Users\oxford\AppData\Local\{47E25434-1E5F-4F9A-86D0-BDC1FB15545F}
[2011/04/12 21:37:54 | 000,009,216 | ---- | C] () -- C:\Users\oxford\Documents\support my business letter.wps
[2011/04/04 22:32:21 | 001,472,588 | ---- | C] () -- C:\Users\oxford\Desktop\xs energy drink.pdf
[2011/03/26 11:54:19 | 000,014,336 | ---- | C] () -- C:\Users\oxford\Desktop\verle and jan wedding.wps
[2011/03/20 21:43:39 | 000,000,680 | ---- | C] () -- C:\Users\oxford\AppData\Local\d3d9caps.dat
[2011/03/12 19:38:42 | 000,774,260 | ---- | C] () -- C:\Users\oxford\Desktop\Carr registration.pdf
[2010/10/12 19:49:30 | 001,163,401 | ---- | C] () -- C:\Users\oxford\Desktop\ribbons flier 2010.pdf
[2010/08/21 21:45:58 | 000,010,752 | ---- | C] () -- C:\Users\oxford\Documents\Monthly Bills.xlr
[2010/07/17 13:12:05 | 005,492,747 | ---- | C] () -- C:\Users\oxford\Desktop\--html lang=-en- dir=-ltr----!-- machid- gSVJrQm1QeEJrZDNX.asf
[2010/07/17 13:07:53 | 004,193,361 | ---- | C] () -- C:\Users\oxford\Desktop\--html lang=-en- dir=-ltr----!-- machid- gRTFhdHhNdkNlcVJZ.asf
[2010/07/17 12:42:16 | 000,004,159 | ---- | C] () -- C:\ProgramData\bfqyszru.mui
[2010/04/10 11:26:28 | 000,011,776 | ---- | C] () -- C:\Users\oxford\Documents\Jared's 100 reasons.wps
[2010/03/07 23:26:15 | 000,013,312 | ---- | C] () -- C:\Users\oxford\Documents\my book #2.wps
[2010/02/26 00:45:34 | 000,010,752 | ---- | C] () -- C:\Users\oxford\Documents\milage 2009.xlr
[2010/02/08 11:33:52 | 000,000,886 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2010/02/08 11:33:49 | 000,000,882 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2010/02/01 23:40:56 | 000,020,992 | ---- | C] () -- C:\Users\oxford\Documents\Tax stuff for business 2009.xlr
[2010/01/15 14:33:47 | 000,001,854 | ---- | C] () -- C:\Users\Public\Desktop\Safari.lnk
[2010/01/15 14:33:47 | 000,001,854 | ---- | C] () -- C:\Users\oxford\Application Data\Microsoft\Internet Explorer\Quick Launch\Apple Safari.lnk
[2009/12/04 18:37:03 | 000,010,752 | ---- | C] () -- C:\Users\oxford\Documents\oxford group 2.wps
[2009/12/01 17:57:08 | 000,011,264 | ---- | C] () -- C:\Users\oxford\Documents\Oxford Group Doc 1.wps
[2009/11/02 11:47:48 | 000,032,768 | ---- | C] () -- C:\Users\oxford\Documents\The TApestry of this Girls Life.wps
[2009/10/30 14:39:34 | 000,001,826 | ---- | C] () -- C:\Users\oxford\AppData\Roaming\wklnhst.dat
[2009/10/18 16:19:37 | 000,891,675 | ---- | C] () -- C:\Users\oxford\Desktop\pietro registration.pdf
[2009/09/18 10:40:00 | 011,967,524 | ---- | C] () -- C:\Windows\System32\korwbrkr.lex
[2009/09/18 10:39:25 | 000,130,008 | ---- | C] () -- C:\Windows\System32\systemsf.ebd
[2009/09/18 10:39:23 | 000,009,239 | ---- | C] () -- C:\Windows\System32\spcinstrumentation.man
[2009/09/18 10:39:12 | 000,442,788 | ---- | C] () -- C:\Windows\System32\dot3.tmf
[2009/09/18 10:39:10 | 000,107,612 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchema.bin
[2009/09/18 10:39:09 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll
[2009/09/18 10:39:07 | 000,392,170 | ---- | C] () -- C:\Windows\System32\onex.tmf
[2009/09/18 10:39:01 | 000,344,698 | ---- | C] () -- C:\Windows\System32\eaphost.tmf
[2009/09/18 10:38:43 | 000,208,966 | ---- | C] () -- C:\Windows\System32\WFP.TMF
[2009/09/18 10:38:40 | 000,092,918 | ---- | C] () -- C:\Windows\System32\slmgr.vbs
[2009/09/18 10:38:16 | 000,018,904 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchemaTrivial.bin
[2009/09/18 10:37:53 | 000,009,212 | ---- | C] () -- C:\Windows\System32\RacUR.xml
[2009/09/09 19:06:06 | 002,501,921 | ---- | C] () -- C:\Windows\System32\wlan.tmf
[2009/08/31 20:07:37 | 000,060,744 | ---- | C] () -- C:\Users\oxford\g2mdlhlpx.exe
[2009/08/04 20:32:08 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_00_00.Wdf
[2009/08/03 20:32:45 | 000,891,862 | ---- | C] () -- C:\Users\oxford\Desktop\bryan and marci IBO.pdf
[2009/08/01 13:05:17 | 000,000,949 | ---- | C] () -- C:\Users\oxford\Application Data\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk
[2009/07/19 10:36:09 | 000,054,272 | ---- | C] () -- C:\Users\oxford\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009/07/19 10:32:10 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_User_WpdMtpDr_01_00_00.Wdf
[2009/07/13 22:50:25 | 000,001,830 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
[2009/07/13 22:37:47 | 000,000,954 | ---- | C] () -- C:\Users\oxford\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2009/07/13 22:00:08 | 000,000,960 | ---- | C] () -- C:\Users\oxford\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[2009/07/13 22:00:06 | 000,000,955 | ---- | C] () -- C:\Users\oxford\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
[2009/07/13 21:59:52 | 000,000,926 | ---- | C] () -- C:\Users\oxford\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Mail.lnk
[2009/07/13 21:59:50 | 000,000,014 | RHS- | C] () -- C:\Windows\System32\drivers\fbd.sys
[2009/07/13 21:59:48 | 000,000,004 | RHS- | C] () -- C:\Windows\System32\drivers\taishop.sys
[2009/07/13 21:59:22 | 000,000,258 | ---- | C] () -- C:\Users\oxford\Application Data\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk
[2009/07/13 21:59:22 | 000,000,240 | ---- | C] () -- C:\Users\oxford\Application Data\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk
[2009/05/14 14:49:58 | 000,000,903 | ---- | C] () -- C:\Users\Public\Desktop\Voice & Video Calls.lnk
[2009/05/14 14:23:23 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2009/05/14 14:21:00 | 000,128,113 | ---- | C] () -- C:\Windows\System32\csellang.ini
[2009/05/14 14:21:00 | 000,045,056 | ---- | C] () -- C:\Windows\System32\csellang.dll
[2009/05/14 14:21:00 | 000,010,150 | ---- | C] () -- C:\Windows\System32\tosmreg.ini
[2009/05/14 14:21:00 | 000,007,671 | ---- | C] () -- C:\Windows\System32\cseltbl.ini
[2009/05/14 14:19:58 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_Kernel_Apfiltr_01005.Wdf
[2008/09/26 15:34:15 | 000,001,189 | ---- | C] () -- C:\Users\Public\Desktop\Microsoft Office - 60 Day Trial.lnk
[2008/09/26 15:29:02 | 000,001,924 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office PowerPoint Viewer 2007.lnk
[2008/09/26 15:28:37 | 000,001,027 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Works Task Launcher.lnk
[2008/09/05 14:50:00 | 000,000,520 | ---- | C] () -- C:\Windows\System32\drivers\RTEQEX0.dat
[2008/08/28 17:37:02 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_Kernel_TpChoice_01005.Wdf
[2008/08/28 17:29:34 | 000,000,799 | ---- | C] () -- C:\Users\Public\Desktop\Picasa2.lnk
[2008/08/28 17:12:46 | 000,204,800 | ---- | C] () -- C:\Windows\System32\IVIresizeW7.dll
[2008/08/28 17:12:46 | 000,200,704 | ---- | C] () -- C:\Windows\System32\IVIresizeA6.dll
[2008/08/28 17:12:46 | 000,192,512 | ---- | C] () -- C:\Windows\System32\IVIresizeP6.dll
[2008/08/28 17:12:46 | 000,192,512 | ---- | C] () -- C:\Windows\System32\IVIresizeM6.dll
[2008/08/28 17:12:46 | 000,188,416 | ---- | C] () -- C:\Windows\System32\IVIresizePX.dll
[2008/08/28 17:12:46 | 000,020,480 | ---- | C] () -- C:\Windows\System32\IVIresize.dll
[2008/08/28 17:03:51 | 000,001,094 | ---- | C] () -- C:\Users\Public\Desktop\Google Desktop.lnk
[2008/08/28 16:54:35 | 000,002,009 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickBooks Financial Center.lnk
[2008/08/28 16:54:35 | 000,001,997 | ---- | C] () -- C:\Users\Public\Desktop\QuickBooks Financial Center.lnk
[2008/08/28 16:44:03 | 000,001,804 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader 8.lnk
[2008/08/28 16:05:11 | 000,001,867 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Toshiba Registration.lnk
[2008/08/28 16:00:25 | 000,000,000 | ---- | C] () -- C:\Windows\NDSTray.INI
[2008/08/28 15:55:18 | 000,040,960 | ---- | C] () -- C:\Windows\System32\HWS_Ctrl.dll
[2008/08/28 15:52:15 | 000,446,464 | ---- | C] () -- C:\Windows\System32\TOSCDSPD.cpl
[2008/08/28 15:46:15 | 000,000,125 | ---- | C] () -- C:\Windows\xUninstall.bat
[2008/08/28 15:36:23 | 000,000,553 | ---- | C] () -- C:\Windows\USetup.iss
[2008/08/28 15:35:31 | 000,000,852 | ---- | C] () -- C:\Windows\System32\drivers\RTKHDRC.dat
[2008/08/28 15:35:31 | 000,000,520 | ---- | C] () -- C:\Windows\System32\drivers\RTEQEX1.dat
[2008/08/28 15:35:31 | 000,000,160 | ---- | C] () -- C:\Windows\System32\drivers\rtkhdaud.dat
[2008/08/28 14:47:07 | 000,000,153 | ---- | C] () -- C:\Windows\System32\RacUREx.xml
[2008/08/28 14:44:37 | 000,000,002 | ---- | C] () -- C:\Windows\System32\drivers\1179_Toshiba_Satellite A350D-A355D_28153.MRK
[2008/08/28 14:44:24 | 000,257,053 | ---- | C] () -- C:\Windows\WOLSET.exe
[2008/08/28 14:44:24 | 000,006,894 | ---- | C] () -- C:\Windows\System32\OEMLOGO.BMP
[2008/08/28 14:44:09 | 000,008,192 | R-S- | C] () -- C:\BOOTSECT.BAK
[2008/08/28 14:44:08 | 000,333,257 | RHS- | C] () -- C:\bootmgr
[2008/08/28 14:08:17 | 002,359,350 | ---- | C] () -- C:\Windows\Bluestream.bmp
[2008/08/04 04:37:21 | 000,001,884 | ---- | C] () -- C:\Users\Public\Desktop\avast! Free Antivirus.lnk
[2008/08/04 04:36:35 | 000,180,632 | ---- | C] () -- C:\Windows\System32\drivers\aswVmm.sys
[2008/08/04 04:36:32 | 000,049,944 | ---- | C] () -- C:\Windows\System32\drivers\aswRvrt.sys
[2008/08/04 04:36:31 | 000,024,184 | ---- | C] () -- C:\Windows\System32\drivers\aswHwid.sys
[2008/08/04 04:15:37 | 000,232,334 | ---- | C] () -- C:\Users\oxford\Documents\cc_20080804_041521 DO NOT DELETE.reg
[2008/08/03 03:39:48 | 001,333,465 | ---- | C] () -- C:\Users\oxford\Desktop\AdwCleaner.exe
[2008/08/01 02:47:28 | 000,159,744 | ---- | C] () -- C:\Windows\System32\atitmmxx.dll
[2008/08/01 02:15:28 | 003,107,788 | ---- | C] () -- C:\Windows\System32\atiumdva.dat
[2008/07/24 08:01:06 | 000,014,505 | ---- | C] () -- C:\Windows\atiogl.xml
[2008/06/23 11:47:40 | 000,174,820 | ---- | C] () -- C:\Windows\System32\atiicdxx.dat
[2008/04/24 11:08:30 | 000,028,672 | ---- | C] () -- C:\Windows\System32\SPCtl.dll
[2008/03/05 22:38:44 | 000,090,112 | ---- | C] () -- C:\Windows\System32\atibrtmon.exe
[2007/12/21 18:46:32 | 000,118,784 | ---- | C] () -- C:\Windows\System32\TosBtAcc.dll
[2006/11/02 07:57:28 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2006/11/02 07:47:37 | 000,322,560 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2006/11/02 07:35:32 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll
[2006/11/02 05:33:01 | 000,595,684 | ---- | C] () -- C:\Windows\System32\perfh009.dat
[2006/11/02 05:33:01 | 000,287,440 | ---- | C] () -- C:\Windows\System32\perfi009.dat
[2006/11/02 05:33:01 | 000,101,350 | ---- | C] () -- C:\Windows\System32\perfc009.dat
[2006/11/02 05:33:01 | 000,030,674 | ---- | C] () -- C:\Windows\System32\perfd009.dat
[2006/11/02 05:23:21 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat
[2006/11/02 03:58:30 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2006/11/02 03:19:00 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT
[2006/11/02 02:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2006/11/02 02:25:31 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat

========== ZeroAccess Check ==========

[2006/11/02 07:54:22 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2011/01/21 11:35:22 | 011,586,048 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2009/04/11 01:28:19 | 000,614,912 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009/04/11 01:28:25 | 000,347,648 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

========== LOP Check ==========

[2008/08/04 04:37:57 | 000,000,000 | ---D | M] -- C:\Users\oxford\AppData\Roaming\AVAST Software
[2009/10/30 14:39:38 | 000,000,000 | ---D | M] -- C:\Users\oxford\AppData\Roaming\Template
[2009/08/04 21:16:56 | 000,000,000 | ---D | M] -- C:\Users\oxford\AppData\Roaming\TOSHIBA
[2010/03/30 20:10:53 | 000,000,000 | ---D | M] -- C:\Users\oxford\AppData\Roaming\Ulead Systems

========== Purity Check ==========

========== Files - Unicode (All) ==========
[2013/09/17 11:08:05 | 000,000,000 | ---D | M](C:\ProgramData\????0) -- C:\ProgramData\䉨Ȉ㼘Ȉ0
[2013/09/17 11:08:05 | 000,000,000 | ---D | M](C:\ProgramData\????0) -- C:\ProgramData\䉨Ȉ㼘Ȉ0
[2013/09/17 11:08:05 | 000,000,000 | ---D | C](C:\ProgramData\????0) -- C:\ProgramData\䉨Ȉ㼘Ȉ0
[2013/09/16 16:51:21 | 000,000,000 | ---D | M](C:\ProgramData\????0) -- C:\ProgramData\䉨Ƞ㼘Ƞ0
[2013/09/16 16:51:21 | 000,000,000 | ---D | M](C:\ProgramData\????0) -- C:\ProgramData\䉨Ƞ㼘Ƞ0
[2013/09/16 16:51:21 | 000,000,000 | ---D | C](C:\ProgramData\????0) -- C:\ProgramData\䉨Ƞ㼘Ƞ0
[2013/08/28 18:30:12 | 000,000,000 | ---D | M](C:\ProgramData\????0) -- C:\ProgramData\䉨Ǵ㼘Ǵ0
[2013/08/28 18:30:12 | 000,000,000 | ---D | M](C:\ProgramData\????0) -- C:\ProgramData\䉨Ǵ㼘Ǵ0
[2013/08/28 18:30:12 | 000,000,000 | ---D | C](C:\ProgramData\????0) -- C:\ProgramData\䉨Ǵ㼘Ǵ0
[2013/08/20 21:55:20 | 000,000,000 | ---D | M](C:\ProgramData\????0) -- C:\ProgramData\䉨ƒ㼘ƒ0
[2013/08/20 21:55:20 | 000,000,000 | ---D | M](C:\ProgramData\????0) -- C:\ProgramData\䉨ƒ㼘ƒ0
[2013/08/20 21:55:20 | 000,000,000 | ---D | C](C:\ProgramData\????0) -- C:\ProgramData\䉨ƒ㼘ƒ0
[2013/08/16 23:11:40 | 000,000,000 | ---D | M](C:\ProgramData\?I?I0) -- C:\ProgramData\䉨I㼘I0
[2013/08/16 23:11:40 | 000,000,000 | ---D | M](C:\ProgramData\?I?I0) -- C:\ProgramData\䉨I㼘I0
[2013/08/16 23:11:40 | 000,000,000 | ---D | C](C:\ProgramData\?I?I0) -- C:\ProgramData\䉨I㼘I0
[2013/08/15 21:33:32 | 000,000,000 | ---D | M](C:\ProgramData\?2?20) -- C:\ProgramData\䉨2㼘20
[2013/08/15 21:33:32 | 000,000,000 | ---D | M](C:\ProgramData\?2?20) -- C:\ProgramData\䉨2㼘20
[2013/08/15 21:33:32 | 000,000,000 | ---D | C](C:\ProgramData\?2?20) -- C:\ProgramData\䉨2㼘20
[2013/08/13 12:15:23 | 000,000,000 | ---D | M](C:\ProgramData\?O?O0) -- C:\ProgramData\䉨Ɵ㼘Ɵ0
[2013/08/13 12:15:23 | 000,000,000 | ---D | M](C:\ProgramData\?O?O0) -- C:\ProgramData\䉨Ɵ㼘Ɵ0
[2013/08/13 12:15:23 | 000,000,000 | ---D | C](C:\ProgramData\?O?O0) -- C:\ProgramData\䉨Ɵ㼘Ɵ0
[2013/08/11 16:34:04 | 000,000,000 | ---D | M](C:\ProgramData\?d?d0) -- C:\ProgramData\䉨ď㼘ď0
[2013/08/11 16:34:04 | 000,000,000 | ---D | M](C:\ProgramData\?d?d0) -- C:\ProgramData\䉨ď㼘ď0
[2013/08/11 16:34:04 | 000,000,000 | ---D | C](C:\ProgramData\?d?d0) -- C:\ProgramData\䉨ď㼘ď0
[2013/08/11 16:18:30 | 000,000,000 | ---D | M](C:\ProgramData\?E?E0) -- C:\ProgramData\䉨Ė㼘Ė0
[2013/08/11 16:18:30 | 000,000,000 | ---D | M](C:\ProgramData\?E?E0) -- C:\ProgramData\䉨Ė㼘Ė0
[2013/08/11 16:18:30 | 000,000,000 | ---D | C](C:\ProgramData\?E?E0) -- C:\ProgramData\䉨Ė㼘Ė0
[2013/08/09 19:15:35 | 000,000,000 | ---D | M](C:\ProgramData\?ð?ð0) -- C:\ProgramData\䉨ð㼘ð0
[2013/08/09 19:15:35 | 000,000,000 | ---D | M](C:\ProgramData\?ð?ð0) -- C:\ProgramData\䉨ð㼘ð0
[2013/08/09 19:15:35 | 000,000,000 | ---D | C](C:\ProgramData\?ð?ð0) -- C:\ProgramData\䉨ð㼘ð0
[2013/08/07 14:24:57 | 000,000,000 | ---D | M](C:\ProgramData\?Ü?Ü0) -- C:\ProgramData\䉨Ü㼘Ü0
[2013/08/07 14:24:57 | 000,000,000 | ---D | M](C:\ProgramData\?Ü?Ü0) -- C:\ProgramData\䉨Ü㼘Ü0
[2013/08/07 14:24:57 | 000,000,000 | ---D | C](C:\ProgramData\?Ü?Ü0) -- C:\ProgramData\䉨Ü㼘Ü0
[2013/08/05 22:50:24 | 000,000,000 | ---D | M](C:\ProgramData\????0) -- C:\ProgramData\䉨Ȇ㼘Ȇ0
[2013/08/05 22:50:24 | 000,000,000 | ---D | M](C:\ProgramData\????0) -- C:\ProgramData\䉨Ȇ㼘Ȇ0
[2013/08/05 22:50:24 | 000,000,000 | ---D | C](C:\ProgramData\????0) -- C:\ProgramData\䉨Ȇ㼘Ȇ0
[2013/08/04 15:58:48 | 000,000,000 | ---D | M](C:\ProgramData\????0) -- C:\ProgramData\䉨Ȧ㼘Ȧ0
[2013/08/04 15:58:48 | 000,000,000 | ---D | M](C:\ProgramData\????0) -- C:\ProgramData\䉨Ȧ㼘Ȧ0
[2013/08/04 15:58:48 | 000,000,000 | ---D | C](C:\ProgramData\????0) -- C:\ProgramData\䉨Ȧ㼘Ȧ0
[2008/08/03 03:10:53 | 000,000,000 | ---D | M](C:\ProgramData\? ? 0) -- C:\ProgramData\䉨㼘 0
[2008/08/03 03:10:53 | 000,000,000 | ---D | M](C:\ProgramData\? ? 0) -- C:\ProgramData\䉨㼘 0
[2008/08/03 03:10:53 | 000,000,000 | ---D | C](C:\ProgramData\? ? 0) -- C:\ProgramData\䉨㼘 0
[2008/03/07 18:04:04 | 000,000,000 | ---D | M](C:\ProgramData\?U?U0) -- C:\ProgramData\䉨Ǔ㼘Ǔ0
[2008/03/07 18:04:04 | 000,000,000 | ---D | M](C:\ProgramData\?U?U0) -- C:\ProgramData\䉨Ǔ㼘Ǔ0
[2008/02/05 01:04:30 | 000,000,000 | ---D | M](C:\ProgramData\?o?o0) -- C:\ProgramData\䉨ǫ㼘ǫ0
[2008/02/05 01:04:30 | 000,000,000 | ---D | M](C:\ProgramData\?o?o0) -- C:\ProgramData\䉨ǫ㼘ǫ0
[2008/02/05 00:23:00 | 000,000,000 | ---D | M](C:\ProgramData\?7?70) -- C:\ProgramData\䉨7㼘70
[2008/02/05 00:23:00 | 000,000,000 | ---D | M](C:\ProgramData\?7?70) -- C:\ProgramData\䉨7㼘70
[2008/02/04 21:35:00 | 000,000,000 | ---D | M](C:\ProgramData\?g?g0) -- C:\ProgramData\䉨ǧ㼘ǧ0
[2008/02/04 21:35:00 | 000,000,000 | ---D | M](C:\ProgramData\?g?g0) -- C:\ProgramData\䉨ǧ㼘ǧ0
[2008/02/04 21:03:16 | 000,000,000 | ---D | M](C:\ProgramData\?)?)0) -- C:\ProgramData\䉨)㼘)0
[2008/02/04 21:03:16 | 000,000,000 | ---D | M](C:\ProgramData\?)?)0) -- C:\ProgramData\䉨)㼘)0
[2008/02/04 19:40:10 | 000,000,000 | ---D | M](C:\ProgramData\?ê?ê0) -- C:\ProgramData\䉨ê㼘ê0
[2008/02/04 19:40:10 | 000,000,000 | ---D | M](C:\ProgramData\?ê?ê0) -- C:\ProgramData\䉨ê㼘ê0
[2008/01/28 17:31:09 | 000,000,000 | ---D | M](C:\ProgramData\????0) -- C:\ProgramData\䉨Ž㼘Ž0
[2008/01/28 17:31:09 | 000,000,000 | ---D | M](C:\ProgramData\????0) -- C:\ProgramData\䉨Ž㼘Ž0
[2008/01/21 05:45:51 | 000,000,000 | ---D | M](C:\ProgramData\????0) -- C:\ProgramData\䉨Ǿ㼘Ǿ0
[2008/01/21 05:45:51 | 000,000,000 | ---D | M](C:\ProgramData\????0) -- C:\ProgramData\䉨Ǿ㼘Ǿ0
[2008/01/18 01:16:18 | 000,000,000 | ---D | M](C:\ProgramData\?C?C0) -- C:\ProgramData\䉨Č㼘Č0
[2008/01/18 01:16:18 | 000,000,000 | ---D | M](C:\ProgramData\?C?C0) -- C:\ProgramData\䉨Č㼘Č0
[2008/01/16 03:03:44 | 000,000,000 | ---D | M](C:\ProgramData\?j?j0) -- C:\ProgramData\䉨ǰ㼘ǰ0
[2008/01/16 03:03:44 | 000,000,000 | ---D | M](C:\ProgramData\?j?j0) -- C:\ProgramData\䉨ǰ㼘ǰ0
[2008/01/01 00:05:43 | 000,000,000 | ---D | M](C:\ProgramData\????0) -- C:\ProgramData\䉨Ǹ㼘Ǹ0
[2008/01/01 00:05:43 | 000,000,000 | ---D | M](C:\ProgramData\????0) -- C:\ProgramData\䉨Ǹ㼘Ǹ0
(C:\ProgramData\?U?U0) -- C:\ProgramData\䉨Ǔ㼘Ǔ0
(C:\ProgramData\?o?o0) -- C:\ProgramData\䉨ǫ㼘ǫ0
(C:\ProgramData\?j?j0) -- C:\ProgramData\䉨ǰ㼘ǰ0
(C:\ProgramData\?g?g0) -- C:\ProgramData\䉨ǧ㼘ǧ0
(C:\ProgramData\?ê?ê0) -- C:\ProgramData\䉨ê㼘ê0
(C:\ProgramData\?C?C0) -- C:\ProgramData\䉨Č㼘Č0
(C:\ProgramData\?7?70) -- C:\ProgramData\䉨7㼘70
(C:\ProgramData\????0) -- C:\ProgramData\䉨Ǿ㼘Ǿ0
(C:\ProgramData\????0) -- C:\ProgramData\䉨Ǹ㼘Ǹ0
(C:\ProgramData\????0) -- C:\ProgramData\䉨Ž㼘Ž0
(C:\ProgramData\?)?)0) -- C:\ProgramData\䉨)㼘)0

< End of report >

johnb35 · Jun 16, 2014

Don't just post an OTL log file. Have you ran the other programs first? Are you having certain issues? I do see some outdated software installed.

CharmPeddler · Jun 16, 2014

Windows update will open and start the "looking for updates" process, but then continually errors out and says that it is unable to finish the searching. When I open chrome, the "SSL" is crossed out and then after a bit of loading it will error out and show not able to load a website. I'm able to ping websites so I know the WiFi is working. A couple other issues, and I'll get the other results posted when I get home this evening.

Agent Smith · Jun 17, 2014

Try Herdprotect.

Okedokey · Jun 17, 2014

CharmPeddler said:
Windows update will open and start the "looking for updates" process, but then continually errors out and says that it is unable to finish the searching. When I open chrome, the "SSL" is crossed out and then after a bit of loading it will error out and show not able to load a website. I'm able to ping websites so I know the WiFi is working. A couple other issues, and I'll get the other results posted when I get home this evening.

Check your system clock is correct time and date.

CharmPeddler · Jun 18, 2014

I actually realized the time and date were off right after I posted this. I have update it.
UPDATE: the windows updates are now working. and I can now again browse the internet. I'm going to go ahead and post the other results in case someone see's something else.

Thanks guys!

# AdwCleaner v3.212 - Report created 16/06/2014 at 20:01:08
# Updated 05/06/2014 by Xplode
# Operating System : Windows Vista (TM) Home Premium Service Pack 2 (32 bits)
# Username : oxford - OXFORD-PC
# Running from : C:\Users\oxford\Desktop\AdwCleaner.exe
# Option : Clean

***** [ Services ] *****

***** [ Files / Folders ] *****

***** [ Shortcuts ] *****

***** [ Registry ] *****

***** [ Browsers ] *****

-\\ Internet Explorer v7.0.6002.18005

-\\ Google Chrome v

[ File : C:\Users\oxford\AppData\Local\Google\Chrome\User Data\Default\preferences ]

*************************

AdwCleaner[R0].txt - [18305 octets] - [04/08/2008 02:47:43]
AdwCleaner[R1].txt - [1028 octets] - [05/08/2008 13:24:42]
AdwCleaner[R2].txt - [1002 octets] - [07/08/2008 13:32:25]
AdwCleaner[S0].txt - [18445 octets] - [04/08/2008 03:01:09]
AdwCleaner[S1].txt - [1094 octets] - [05/08/2008 13:31:52]
AdwCleaner[S2].txt - [925 octets] - [16/06/2014 20:01:08]

########## EOF - C:\AdwCleaner\AdwCleaner[S2].txt - [984 octets] ##########

CharmPeddler · Jun 18, 2014

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.3 (03.23.2014:1)
OS: Windows Vista (TM) Home Premium x86
Ran by oxford on Wed 08/06/2008 at 22:07:39.33
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

~~~ Services

~~~ Registry Values

~~~ Registry Keys

~~~ Files

~~~ Folders

~~~ Event Viewer Logs were cleared

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Wed 08/06/2008 at 22:20:51.70
Computer was rebooted
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Okedokey · Jun 18, 2014

Its nothing else. You've just reset your BIOS. SSL certificates therefore out of date, and Windows cant understand whats going on. Probably nothing more... may be wasting time.

CharmPeddler · Jun 18, 2014

Results of HerdProtect
Saved date: 6/18/2014 8:18:28 PM
Files detected: 110
Files scanned: 6,671
Processes scanned: 67
Modules scanned: 538
ASEPs scanned: 445
Downloads scanned: 1
Deep analysis: 3/2
---------------------------------------------------------------------------------

Files

---------------------------------------------------------------------------------

File path: c:\program files\toshiba\toscdspd\toscdspd.exe
Publisher: TOSHIBA
MD5: 8513bf8d7c4c1f1a0365e9fbfde458d5
SHA-1: 30d2686a1b6d3ca0ae8b08fb0e9b5a17b5fee0be
Created: 8/28/2008 3:52:15 PM
Detections: 1
Determination: Inconclusive
- Boost by Reason as Optional.Startup.TOSHIBA.I

---------------------------------------------------------------------------------

File path: c:\windows\system32\toddsrv.exe
Publisher: TOSHIBA Corporation
Signer: TOSHIBA CORPORATION
MD5: c5ac715b65b01788abc22d10749dddd8
SHA-1: 4cfbf7d2257345eb1adf0a962c8d5acafad70350
Created: 8/28/2008 3:59:40 PM
Detections: 1
Determination: Inconclusive
- Bkav FE as HW32.Laneul (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\windows\system32\drivers\amdk7.sys
Publisher: Microsoft Corporation
MD5: 18f29b49ad23ecee3d2a826c725c8d48
SHA-1: 4da88ed74e63cc5346052fd1a2d7e30bd57d5e2a
Created: 11/2/2006 3:30:18 AM
Detections: 1
Determination: Inconclusive
- Emsisoft Anti-Malware as Gen:Trojan.Heur.Lq0@uSR9FBn (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\windows\system32\drivers\sffp_sd.sys
Publisher: Microsoft Corporation
MD5: 3d0ea348784b7ac9ea9bd9f317980979
SHA-1: fd3f6350ce5aa17987331a7fc48db8d0cb06f514
Created: 11/2/2006 3:51:40 AM
Detections: 1
Determination: Inconclusive
- Emsisoft Anti-Malware as Trojan.JS.Redirector.ABZ (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\windows\system32\drivers\usbaapl.sys
Publisher: Apple, Inc.
MD5: 8bf5d980cdce35fb26f05047144bb57e
SHA-1: 5fa2d81ee81ba27a2f3dd3b19d35f1f5f5e883a1
Created: 9/28/2012 11:32:56 AM
Detections: 1
Determination: Inconclusive
- Bkav FE as HW32.Nonim (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\windows\system32\drivers\usbprint.sys
Publisher: Microsoft Corporation
MD5: b51e52acf758be00ef3a58ea452fe360
SHA-1: 6b582d9e12063a38119e74a60276aa09ddbb9a32
Created: 11/2/2006 4:14:58 AM
Detections: 1
Determination: Inconclusive
- Bkav FE as HW32.Nonim (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\users\oxford\appdata\local\google\update\googleupdate.exe
Publisher: Google Inc.
Signer: Google Inc
MD5: f02a533f517eb38333cb12a9e8963773
SHA-1: 258810d71436c5157cd0752bd13ce1de20f27eb2
Created: 12/28/2011 10:31:25 AM
Detections: 1
Determination: Inconclusive
- F-Prot as W32/Ransom.AD2.gen (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\program files\ati technologies\ati.ace\core-static\atiacmxx.dll
Publisher: Advanced Micro Devices, Inc.
MD5: ae0b4d25045a559e5e536925ecc8ecab
SHA-1: 71a6234f01f921d906a703dc0c669556dbc20926
Created: 7/2/2008 12:56:52 PM
Detections: 1
Determination: Inconclusive
- Boost by Reason as Optional.AdvancedMicroDevices.I

---------------------------------------------------------------------------------

File path: c:\windows\temp\securityscan_release.exe
Publisher: McAfee, Inc.
Signer: McAfee, Inc.
MD5: 08f0a96a9e4c5218e384f51bbb698df4
SHA-1: 9dfef792b67e5952407036ccbdb80fa9445b721a
Created: 5/24/2013 10:59:21 PM
Detections: 1
Determination: Inconclusive
- Commtouch SDK as W32/Trojan.ZWEI-8016 (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\users\oxford\appdata\local\temp\7z920.exe
Publisher:
MD5: b3fdf6e7b0aecd48ca7e4921773fb606
SHA-1: 55283ad59439134673fc32fc097bdd9ae920fbc6
Created: 6/3/2013 4:28:53 PM
Detections: 1
Determination: Inconclusive
- Bkav FE as W32.Clod966.Trojan (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\users\oxford\appdata\local\temp\apnstub.exe
Publisher: Ask.com
Signer: Ask.com
MD5: ce755676ae6d27a1efeefb0f3c70a929
SHA-1: 9d730a0b6235c8599c076b277ad8754247587e6a
Created: 5/4/2013 10:34:53 PM
Detections: 5
Determination: Adware
- Dr.Web as Trojan.DownLoader7.16675 (Undefined malware)
- ESET NOD32 as Win32/Bundled.Toolbar.Ask (variant) (Undefined malware)
- Reason Heuristics as PUP.Ask.H (Adware)
- Boost by Reason as Optional.Ask.H
- Filseclab Twister as W32.Bundled.Toolbar.Ask.lrsp (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\users\oxford\appdata\local\temp\googleupdatesetup.exe17056c
Publisher: Google Inc.
Signer: Google Inc
MD5: a6f8d4fbc12177a75ab4c06d059229b6
SHA-1: 3403381c7fef04c040a96f0d19c6311b4826ad75
Created: 7/14/2013 6:45:14 PM
Detections: 1
Determination: Inconclusive
- Antiy Labs AVL as Trojan/Win32.Generic (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\users\oxford\appdata\local\temp\quarantine.exe
Publisher:
MD5: 6661d7aabd1ba067da6abec5fc1383a1
SHA-1: aa2d1725b19f620006dcacbbaf2049862ea726f3
Created: 3/2/2014 2:39:04 PM
Detections: 2
Determination: Inconclusive
- CMC Antivirus as Trojan.Win32.Generic!O (Undefined malware)
- Antiy Labs AVL as Trojan/Win32.Autoit.aza (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\users\oxford\appdata\local\temp\wssetup.exe
Publisher:
Signer: Perion Network Ltd.
MD5: 5c511f04d2d3d46e18fced760ba28300
SHA-1: 864c429f7ad1b2183862d5f760fb7f5d33a952c8
Created: 6/3/2013 4:28:42 PM
Detections: 6
Determination: Adware
- Boost by Reason as Adware.Installer.Perion.H
- Dr.Web as Adware.SweetIM.28 (Adware)
- Kingsoft AntiVirus as Win32.Troj.Generic.a.(kcloud) (Undefined malware)
- ESET NOD32 as Win32/SweetIM (Adware)
- VIPRE Antivirus as Sweetpacks/SweetIM (Adware)
- Reason Heuristics as PUP.Installer.Perion.H (Adware)

---------------------------------------------------------------------------------

File path: c:\users\oxford\appdata\local\temp\{eddcb2d9-d99a-4c3a-a86a-7cb4796f5359}\googleupdatebroker.exe
Publisher: Google Inc.
Signer: Google Inc
MD5: 8f11f0321ed84b1533fc1384ac71ac8d
SHA-1: a7804dfa1dc256f0d5873c91f1a415688d37431d
Created: 6/26/2013 11:37:12 PM
Detections: 1
Determination: Inconclusive
- Bkav FE as W32.Clod159.Trojan (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\users\oxford\appdata\local\temp\{eddcb2d9-d99a-4c3a-a86a-7cb4796f5359}\googleupdateondemand.exe
Publisher: Google Inc.
Signer: Google Inc
MD5: 00f714ca28a01facb709486d6da306a8
SHA-1: 705a305f3eeaecbd06c22411e5c60bab03617e4c
Created: 6/26/2013 11:37:12 PM
Detections: 1
Determination: Inconclusive
- Bkav FE as W32.Clod684.Trojan (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\users\oxford\appdata\local\temp\busc60c\ntredirectupdate.exe
Publisher:
Signer: Visual Tools
MD5: 7aea5232ca36b725dc2f66133910906a
SHA-1: 99aea32aa3a9b9a9e0cc3bc7b58f9674f22cb251
Created: 8/22/2013 5:02:09 AM
Detections: 1
Determination: Adware
- Reason Heuristics as PUP.VisualTools.Q (Adware)

---------------------------------------------------------------------------------

File path: c:\users\oxford\appdata\local\temp\bus457a\ff21v.exe
Publisher:
Signer: Visual Tools
MD5: e68248c32c5c8ee1cb2a36beaa74e6bf
SHA-1: b601b9cccc2a25da630286312406d4b45bede8a2
Created: 4/25/2013 9:57:13 AM
Detections: 2
Determination: Adware
- Reason Heuristics as PUP.VisualTools.F (Adware)
- Vba32 AntiVirus as suspected of Trojan.Downloader.gen.h (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\users\oxford\appdata\local\temp\97895916-bab0-7891-8646-1f960bcc1557\latest\babmaint.exe
Publisher:
MD5: 71d490c463014e4fb88b8cba700b111e
SHA-1: e0814d0f17ee1122f6d3507dc676030f8e1cc133
Created: 6/6/2013 4:23:16 AM
Detections: 9
Determination: Adware
- Boost by Reason as Optional.Task.I
- Dr.Web as Adware.Babylon.12 (Adware)
- Kingsoft AntiVirus as Win32.Troj.Generic.a.(kcloud) (Undefined malware)
- ESET NOD32 as Win32/Toolbar.Babylon (Adware)
- Rising Antivirus as PE:Malware.XPACK/RDM!5.1 (Ignore)
- NANO AntiVirus as Trojan.Win32.Babylon.csmnej (Undefined malware)
- Malwarebytes as PUP.Optional.Babylon.A (Adware)
- Antiy Labs AVL as Trojan/Win32.Tgenic (Undefined malware)
- Reason Heuristics as PUP.Babylon.Task.I (Adware)

---------------------------------------------------------------------------------

File path: c:\users\oxford\appdata\local\temp\97895916-bab0-7891-8646-1f960bcc1557\latest\guninstaller.exe
Publisher: Babylon Ltd.
Signer: Visual Tools
MD5: db521c3dc7b679226322033b09719eca
SHA-1: bf34901b092c0a8b44947f6f171a90058b6a824b
Created: 7/31/2013 6:33:37 AM
Detections: 4
Determination: Adware
- Boost by Reason as Adware.Installer.VisualTools.M
- Reason Heuristics as PUP.Installer.VisualTools.M (Adware)
- Trend Micro House Call as TROJ_GEN.F47V0726 (Undefined malware)
- Trend Micro as ADW_BABYLON (Adware)

---------------------------------------------------------------------------------

File path: c:\users\oxford\appdata\local\temp\{eddcb2d9-d99a-4c3a-a86a-7cb4796f5359}\npgoogleupdate3.dll
Publisher: Google Inc.
Signer: Google Inc
MD5: 3d928b3fe97c403a33f803b3d1a260c9
SHA-1: 825996f4d399b56eb3fa69ae170b55077ce7328c
Created: 6/26/2013 11:37:14 PM
Detections: 1
Determination: Inconclusive
- Antiy Labs AVL as Trojan/Win32.Generic (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\users\oxford\appdata\local\temp\busc60c\enhancednt.dll
Publisher:
Signer: Visual Tools
MD5: 4f507a8c6afb70c6fc1627dacc9f60e2
SHA-1: be3a5951f9d566e9c0b10b41781e42a3a8562b12
Created: 8/22/2013 5:02:09 AM
Detections: 8
Determination: Adware
- Reason Heuristics as PUP.Startup.VisualTools.K (Adware)
- Comodo Security as Application.Win32.Babylon.ad (Adware)
- Boost by Reason as Optional.Startup.VisualTools.K
- Malwarebytes as PUP.Optional.Delta.A (Adware)
- Bkav FE as HW32.Laneul (Undefined malware)
- Trend Micro House Call as TROJ_GEN.F47V0918 (Undefined malware)
- Dr.Web as DLOADER.Trojan (Undefined malware)
- ESET NOD32 as Win32/Toolbar.Babylon (variant) (Adware)

---------------------------------------------------------------------------------

File path: c:\users\oxford\appdata\local\temp\bus8ea9\busolution.dll
Publisher:
Signer: Visual Tools
MD5: 30fddc8310bdc66dbee77118f86e50c9
SHA-1: 671e3e4e9e4c9a039d9ad1479a0c91e670af18e3
Created: 9/3/2013 5:44:43 AM
Detections: 6
Determination: Adware
- Comodo Security as Application.Win32.AdWare.Agent.ba (Adware)
- Dr.Web as DLOADER.Trojan (Undefined malware)
- Reason Heuristics as PUP.VisualTools.K (Adware)
- Malwarebytes as PUP.Optional.BabSolution.A (Adware)
- Trend Micro House Call as TROJ_GEN.F47V0408 (Undefined malware)
- ESET NOD32 as Win32/Toolbar.Babylon (variant) (Adware)

---------------------------------------------------------------------------------

File path: c:\users\oxford\appdata\local\temp\97895916-bab0-7891-8646-1f960bcc1557\latest\busolformontiera.dll
Publisher:
MD5: 6c70e9d7e9c7b69f8a321047535f6c7a
SHA-1: 33f6209bf0b0a360306427cb95fd41131149fda9
Created: 7/30/2013 2:23:30 AM
Detections: 1
Determination: Inconclusive
- Bkav FE as HW32.Laneul (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\users\oxford\appdata\local\temp\97895916-bab0-7891-8646-1f960bcc1557\latest\busolution.dll
Publisher:
MD5: 598d57bdb4bd054e741e4ef75479ff10
SHA-1: da21a1bfec3c6f8a600a80dd1dcf9dcf3aa03f1a
Created: 7/28/2013 6:27:48 AM
Detections: 2
Determination: Inconclusive
- Dr.Web as Adware.Babylon.12 (Adware)
- Bkav FE as HW32.Laneul (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\users\oxford\appdata\local\temp\97895916-bab0-7891-8646-1f960bcc1557\latest\chrometoolbarsetup.dll
Publisher:
MD5: 6c70e9d7e9c7b69f8a321047535f6c7a
SHA-1: 33f6209bf0b0a360306427cb95fd41131149fda9
Created: 7/30/2013 2:23:30 AM
Detections: 1
Determination: Inconclusive
- Bkav FE as HW32.Laneul (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\users\oxford\appdata\local\temp\97895916-bab0-7891-8646-1f960bcc1557\latest\iehelper.dll
Publisher:
MD5: a21de5067618d4f2df261416315ed120
SHA-1: 7759a3318de2abc3755ebb7f50322c6d586b5286
Created: 8/3/2013 8:06:31 PM
Detections: 5
Determination: Adware
- ViRobot as Trojan.Win32.A.NSAnti.6144.B (Undefined malware)
- ESET NOD32 as Win32/Toolbar.Babylon (Adware)
- Kingsoft AntiVirus as Win32.Troj.Generic.a.(kcloud) (Undefined malware)
- NANO AntiVirus as Trojan.Win32.Ramnit.cqyaiq (Undefined malware)
- Bkav FE as W32.Clodce2.Trojan (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\users\oxford\desktop\adwcleaner.exe
Publisher:
MD5: 42f24559e8c472f6ff745bb7c5465fb2
SHA-1: 81ea2ca538e5c9a2bd7901f66f61dc20da8d2261
Created: 8/3/2008 3:39:48 AM
Detections: 2
Determination: Inconclusive
- CMC Antivirus as Trojan.Win32.Generic!O (Undefined malware)
- Antiy Labs AVL as Trojan/Win32.Autoit.aza (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\users\oxford\desktop\jrt.exe
Publisher:
MD5: ca630dbadeb5b6101531f986adfe46c9
SHA-1: 2955a2c5952fd33a9e57a2dadc9ff4ccdb46012a
Created: 8/3/2008 3:41:09 AM
Detections: 1
Determination: Inconclusive
- Qihoo 360 Security as virus.bat.reg.gen2 (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\users\oxford\desktop\otl.exe
Publisher: OldTimer Tools
MD5: 4adcfee16ee9978f06157634669d36fb
SHA-1: 30b37076552e49276836d02dd73d038c27dbbee9
Created: 8/3/2008 3:42:27 AM
Detections: 2
Determination: Inconclusive
- Agnitum Outpost as Packed/PECompact (Ignore)
- Bkav FE as HW32.CDB (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\windows\wolset.exe
Publisher:
MD5: f3413128740ea398f5a9efa3df830190
SHA-1: 3d484c8753ca30002105a50d36a68a5e6af4b7c8
Created: 8/28/2008 2:44:24 PM
Detections: 7
Determination: UndefinedMalware
- CMC Antivirus as IM-Worm.Win32.Sohanad!O (Undefined malware)
- F-Prot as W32/Undefined.Threat (Ignore)
- McAfee as Artemis!BC7ECB24F993 (Undefined malware)
- The Hacker as Trojan/Dropper.gen (Undefined malware)
- Comodo Security as Worm.Win32.AutoIt.~NS (Undefined malware)
- Prevx as High Risk Worm (Undefined malware)
- Reason Heuristics as Unnamed.Threat.11 (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\windows\system32\s64cpa.exe
Publisher: Atheros
MD5: 367285de8f637a8def0e6a4e494ffb7d
SHA-1: d1e1d1500a7bbfc48ec0e62676d8137c45f72dc3
Created: 5/14/2009 2:37:31 PM
Detections: 1
Determination: Inconclusive
- Sunbelt AntiMalware as Net-Worm.Win32.Bobic.k (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\windows\system32\tosmreg.exe
Publisher: Toshiba Corporation
MD5: 819690b5cd0ae24b6d4fd78b6b84f9a6
SHA-1: bba35c9d58f8043860ee63e6e3ba1b3e7341c6c5
Created: 5/14/2009 2:21:00 PM
Detections: 1
Determination: Inconclusive
- Antiy Labs AVL as Worm/Win32.Anilogo.gen (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\programdata\leapfrog\leapfrog connect\networksupport\avmanagerunified.dll
Publisher: OPSWAT, Inc.
Signer: OPSWAT, Inc.
MD5: 048a0b4924cfc1758e6131c84c10da4a
SHA-1: 5bfe811aaa3de04db1e52adeb6140c85279768e1
Created: 12/25/2011 12:32:13 PM
Detections: 2
Determination: Inconclusive
- VirusBuster as Packed/PECompact (Ignore)
- Clam AntiVirus as PUA.Packed.PECompact-1 (Ignore)

---------------------------------------------------------------------------------

File path: c:\programdata\leapfrog\leapfrog connect\networksupport\coreutils.dll
Publisher: OPSWAT, Inc.
Signer: OPSWAT, Inc.
MD5: 405be9250905ffad07984b3fb1f34749
SHA-1: 0fb51d23870a62b6ddf95f9d06bf2214f0c49cd6
Created: 12/25/2011 12:32:13 PM
Detections: 3
Determination: Inconclusive
- VirusBuster as Packed/PECompact (Ignore)
- eSafe as Suspicious File (Ignore)
- Clam AntiVirus as PUA.Packed.PECompact-1 (Ignore)

---------------------------------------------------------------------------------

File path: c:\programdata\leapfrog\leapfrog connect\networksupport\fwmanager.dll
Publisher: OPSWAT, Inc.
Signer: OPSWAT, Inc.
MD5: 42d358b3fecc5917cc6eb79055b114b2
SHA-1: ef2b832ff270262bca214fd3d4566ec06023d3af
Created: 12/25/2011 12:32:13 PM
Detections: 3
Determination: Inconclusive
- VirusBuster as Packed/PECompact (Ignore)
- eSafe as Suspicious File (Ignore)
- Clam AntiVirus as PUA.Packed.PECompact-1 (Ignore)

---------------------------------------------------------------------------------

File path: c:\programdata\leapfrog\leapfrog connect\networksupport\impl_antiviruslib.dll
Publisher: OPSWAT, Inc.
Signer: OPSWAT, Inc.
MD5: 7e2f2cab84653bd28020b2c376a6e9ff
SHA-1: df64867e4c31a3085e31b3ab00317c2349dcf711
Created: 12/25/2011 12:32:13 PM
Detections: 3
Determination: Inconclusive
- VirusBuster as Packed/PECompact (Ignore)
- eSafe as Suspicious File (Ignore)
- Clam AntiVirus as PUA.Packed.PECompact-1 (Ignore)

---------------------------------------------------------------------------------

File path: c:\programdata\leapfrog\leapfrog connect\networksupport\impl_firewalllib.dll
Publisher: OPSWAT, Inc.
Signer: OPSWAT, Inc.
MD5: 8065b2767cc8fe869e63c2d363f08f6a
SHA-1: d7382c0a5bb20e3191c19f80c1073153d7c06b1d
Created: 12/25/2011 12:32:13 PM
Detections: 3
Determination: Inconclusive
- VirusBuster as Packed/PECompact (Ignore)
- eSafe as Suspicious File (Ignore)
- Clam AntiVirus as PUA.Packed.PECompact-1 (Ignore)

---------------------------------------------------------------------------------

File path: c:\programdata\leapfrog\leapfrog connect\networksupport\impl_softwareproductlib.dll
Publisher: OPSWAT, Inc.
Signer: OPSWAT, Inc.
MD5: 8698874fc735e87f739ea03a556f4a3b
SHA-1: 3aa25573bd22ee8344a04713bfa899dc98ba4a4f
Created: 12/25/2011 12:32:13 PM
Detections: 3
Determination: Inconclusive
- eSafe as Suspicious File (Ignore)
- Clam AntiVirus as PUA.Packed.PECompact-1 (Ignore)
- VirusBuster as Packed/PECompact (Ignore)

---------------------------------------------------------------------------------

File path: c:\programdata\leapfrog\leapfrog connect\networksupport\impl_vpnclientlib.dll
Publisher: OPSWAT, Inc.
Signer: OPSWAT, Inc.
MD5: 09168f6c1a848a2a8643c190b3fa51b1
SHA-1: ea8fd0d2f83179d09eaad8d3d3ddfd4da3f92ffa
Created: 12/25/2011 12:32:13 PM
Detections: 3
Determination: Inconclusive
- VirusBuster as Packed/PECompact (Ignore)
- eSafe as Suspicious File (Ignore)
- Clam AntiVirus as PUA.Packed.PECompact-1 (Ignore)

---------------------------------------------------------------------------------

File path: c:\programdata\leapfrog\leapfrog connect\networksupport\oesiscore.dll
Publisher: OPSWAT, Inc.
Signer: OPSWAT, Inc.
MD5: 6d59d65bb7e404ad7a749e15f9f8f6f0
SHA-1: fa8c5c3e87fc8ad9d1e8a8a8affd0da0cdb0c796
Created: 12/25/2011 12:32:13 PM
Detections: 3
Determination: Inconclusive
- VirusBuster as Packed/PECompact (Ignore)
- eSafe as Suspicious File (Ignore)
- Clam AntiVirus as PUA.Packed.PECompact-1 (Ignore)

---------------------------------------------------------------------------------

File path: c:\users\oxford\appdata\local\temp\scoped_dir_3940_30532\webcakelayers.crx
Publisher:
MD5: 08d9d4982d07a67dd1fdfec1c26a2b4d
SHA-1: 07be1a271a189ebfbeedabd34313aa91b3a2d324
Created: 8/3/2013 8:07:52 PM
Detections: 5
Determination: Adware
- Microsoft Security Essentials as Threat.Undefined (Undefined malware)
- Reason Heuristics as Adware.WebCake.ChromePlugin.Q (Adware)
- Boost by Reason as Optional.ChromePlugin.Q
- Bkav FE as MW.Clod35b.Trojan (Undefined malware)
- IKARUS anti.virus as AdWare.WebCake (Adware)

---------------------------------------------------------------------------------

File path: c:\users\oxford\appdata\local\temp\scoped_dir_3940_26469\delta.crx
Publisher:
MD5: 7732bef52def6b441309a2b203cb62d0
SHA-1: 2a6db8ce0822699fbc013cb4a5469afd43dea12f
Created: 8/3/2013 8:07:52 PM
Detections: 2
Determination: Adware
- Boost by Reason as Optional.ChromePlugin.I
- Reason Heuristics as Adware.DeltaSearch.ChromePlugin.I (Adware)

---------------------------------------------------------------------------------

File path: c:\users\oxford\appdata\local\temp\97895916-bab0-7891-8646-1f960bcc1557\latest\delta.crx
Publisher:
MD5: 7732bef52def6b441309a2b203cb62d0
SHA-1: 2a6db8ce0822699fbc013cb4a5469afd43dea12f
Created: 5/23/2013 5:15:48 AM
Detections: 2
Determination: Adware
- Boost by Reason as Optional.ChromePlugin.I
- Reason Heuristics as Adware.DeltaSearch.ChromePlugin.I (Adware)

---------------------------------------------------------------------------------

File path: c:\program files\toshiba\toshiba recovery disc creator\toddsrv.exe
Publisher: TOSHIBA Corporation
Signer: TOSHIBA CORPORATION
MD5: c5ac715b65b01788abc22d10749dddd8
SHA-1: 4cfbf7d2257345eb1adf0a962c8d5acafad70350
Created: 11/21/2007 6:23:32 PM
Detections: 1
Determination: Inconclusive
- Bkav FE as HW32.Laneul (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\program files\toshiba\toshiba dvd player\tosmcelc.exe
Publisher:
MD5: c6bbcaf27b0e84e980d7f218602924bb
SHA-1: b00aff735819009896d04448aaea5954ad2dd3cb
Created: 5/14/2009 2:44:22 PM
Detections: 1
Determination: Inconclusive
- Clam AntiVirus as PUA.Win32.Packer.Msvcpp-1 (Ignore)

---------------------------------------------------------------------------------

File path: c:\program files\toshiba\toshiba disc creator\toddsrv.exe
Publisher: TOSHIBA Corporation
Signer: TOSHIBA CORPORATION
MD5: c5ac715b65b01788abc22d10749dddd8
SHA-1: 4cfbf7d2257345eb1adf0a962c8d5acafad70350
Created: 11/21/2007 6:23:32 PM
Detections: 1
Determination: Inconclusive
- Bkav FE as HW32.Laneul (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\program files\toshiba\tosapins\comps1\toshiba wps library (32-rslash-64bit)0\manual\b27724a.exe
Publisher:
Signer: TOSHIBA AMERICA INFORMATION SYSTEMS, INC.
MD5: c8e5ee724f2bedac58243467b87f704f
SHA-1: 096a831efc039c316ca2fd2254fdfd635e70b811
Created: 8/28/2008 7:26:54 PM
Detections: 1
Determination: Inconclusive
- Comodo Security as TrojWare.Win32.Agent.dzgr (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\program files\toshiba\tosapins\comps1\toshiba software modem0\manual\b26470a.exe
Publisher:
Signer: TOSHIBA AMERICA INFORMATION SYSTEMS, INC.
MD5: 56215b73a916395541d6bd367f8b343f
SHA-1: 0ebdf71d29154ad84bc57672e2cc9dfeae4b531d
Created: 8/28/2008 7:26:43 PM
Detections: 1
Determination: Inconclusive
- ByteHero BDV as Trojan.Malware.Obscu.Gen.001 (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\program files\toshiba\tosapins\comps1\toshiba remote control manager (32-rslash-64bit)0\manual\b27947a.exe
Publisher:
Signer: TOSHIBA AMERICA INFORMATION SYSTEMS, INC.
MD5: 330607fca577a210a305c1cc507ef83e
SHA-1: 52f486364602a8278f551f5ae993d5a842d2d17e
Created: 8/28/2008 7:26:39 PM
Detections: 1
Determination: Inconclusive
- ByteHero BDV as Trojan.Malware.Obscu.Gen.001 (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\program files\toshiba\tosapins\comps1\toshiba assist0\manual\b27945a.exe
Publisher:
Signer: TOSHIBA AMERICA INFORMATION SYSTEMS, INC.
MD5: 83551fd1989b13511ff24a62ea720b3b
SHA-1: 1a96ad7b8effb18898f8a108b8d2ca1df8fc0933
Created: 8/28/2008 7:26:16 PM
Detections: 1
Determination: Inconclusive
- ByteHero BDV as Trojan.Malware.Obscu.Gen.001 (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\program files\toshiba\tosapins\comps1\norton 360 patch (vista-rslash-xp)(english -and- spanish)0\manual\b27829a.exe
Publisher:
Signer: TOSHIBA AMERICA INFORMATION SYSTEMS, INC.
MD5: 0fd65066672b2ce8ba95fd0e1a3abcac
SHA-1: ce773629f11d9f2e3214d90338adf93c70338259
Created: 8/28/2008 7:25:55 PM
Detections: 1
Determination: Inconclusive
- ByteHero BDV as Trojan.Malware.Obscu.Gen.001 (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\program files\toshiba\tosapins\comps1\motorola modem driver (32-rslash-64bit)0\manual\b27983a.exe
Publisher:
Signer: TOSHIBA AMERICA INFORMATION SYSTEMS, INC.
MD5: 3a867df8b95978038ff2248a91c6802b
SHA-1: 64110433d5f54479d5b4bfa1221688c6377123ab
Created: 8/28/2008 7:25:30 PM
Detections: 1
Determination: Inconclusive
- ByteHero BDV as Trojan.Malware.Obscu.Gen.001 (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\program files\toshiba\tosapins\comps1\modem region select utility - motorola0\manual\b28038a.exe
Publisher:
Signer: TOSHIBA AMERICA INFORMATION SYSTEMS, INC.
MD5: 6a367044d021ab2af5e88ef459703ff7
SHA-1: ab51c9d1cbfb5273b4eb3c83134be8287bc54060
Created: 8/28/2008 7:25:27 PM
Detections: 1
Determination: Inconclusive
- ByteHero BDV as Trojan.Malware.Obscu.Gen.001 (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\program files\toshiba\tosapins\comps1\intuit quickbooks financial center0\manual\b28148a.exe
Publisher:
Signer: TOSHIBA AMERICA INFORMATION SYSTEMS, INC.
MD5: 3274f7f9f3c8e66ad35dbcbcd0fd2699
SHA-1: 068735986733947e13806217acb98aababf43a33
Created: 8/28/2008 7:25:26 PM
Detections: 1
Determination: Inconclusive
- ByteHero BDV as Trojan.Malware.Obscu.Gen.001 (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\program files\toshiba\tosapins\comps1\ati catalyst control center patch (32-rslash-64bit)0\manual\b28234a.exe
Publisher:
Signer: TOSHIBA AMERICA INFORMATION SYSTEMS, INC.
MD5: 72ee2c977baa46a8c837e0892b23a702
SHA-1: a19d15df9f6cd12d96edca7043768fb56019490a
Created: 9/5/2008 2:48:03 PM
Detections: 1
Determination: Inconclusive
- ByteHero BDV as Trojan.Malware.Obscu.Gen.001 (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\program files\toshiba\tosapins\comps1\adobe flash player 9 activex (english -and- spanish)(xp, vista)0\manual\b27318a.exe
Publisher:
Signer: TOSHIBA AMERICA INFORMATION SYSTEMS, INC.
MD5: 5bb39e5b0a2a7548751a5058fa85aa6a
SHA-1: c2c749daa928d24a51665f6a59d8f2d35ee1f84e
Created: 8/28/2008 7:24:35 PM
Detections: 2
Determination: Inconclusive
- eSafe as Win32.Genetik (Undefined malware)
- Comodo Security as UnclassifiedMalware (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\program files\toshiba\bluetooth toshiba stack\eccenter1.exe
Publisher: TOSHIBA CORPORATION.
MD5: 32487819196f147c93d0a5d5ddefb676
SHA-1: 8483875763ad4ea5d3b58342a387a4ad3294d0d1
Created: 11/1/2007 3:25:56 PM
Detections: 1
Determination: Inconclusive
- Clam AntiVirus as PUA.Win32.Packer.InstallerVise (Ignore)

---------------------------------------------------------------------------------

File path: c:\program files\quicktime\qttask.exe
Publisher: Apple Inc.
MD5: 8dda2b606279753601f9415da503ca63
SHA-1: 234f24bdb1bf04e9c38da19c4b628c5a344d8660
Created: 10/25/2012 4:12:14 AM
Detections: 1
Determination: Inconclusive
- Boost by Reason as Optional.Startup.Apple.G

---------------------------------------------------------------------------------

File path: c:\program files\quicktime\qtsystem\quicktimeupdatehelper.exe
Publisher: Apple Inc.
MD5: 32234ea65ddfd3d930a35b09ec787fa8
SHA-1: 6a62bdbb55dbd87080a9361d3e739d669275b683
Created: 10/25/2012 4:12:14 AM
Detections: 1
Determination: Inconclusive
- Boost by Reason as Optional.Apple.V

---------------------------------------------------------------------------------

File path: c:\program files\popcap games\plants vs. zombies\popuninstall.exe
Publisher:
Signer: PopCap Games
MD5: 47c599b47eb25769753ab75ab5866246
SHA-1: 2ece8e1242dc14723a8955223fa22efa83907a3c
Created: 7/6/2010 1:48:14 PM
Detections: 1
Determination: Inconclusive
- McAfee Web Gateway as Heuristic.BehavesLike.Win32.Suspicious.H (Ignore)

---------------------------------------------------------------------------------

File path: c:\program files\leapfrog\leapfrog connect\upcupdater.exe
Publisher: LeapFrog Enterprises, Inc.
Signer: LeapFrog Enterprises, Inc.
MD5: e96e0f7df7ca45c60da1955a18ef04d3
SHA-1: 6ef3f23c3f48220b452a7626c108d27bd4efb936
Created: 11/12/2011 12:35:50 PM
Detections: 1
Determination: Inconclusive
- ByteHero BDV as Trojan.Malware.Win32.xPack.i (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\program files\installshield installation information\{fedd27a0-b306-45ef-bf58-b527406b42c8}\setup.exe
Publisher: TOSHIBA Corporation
MD5: f5ab621da1fa7d54b3e01e8310659cb1
SHA-1: 9750067a49ba4c94bdd4174e8659423fafcd6de2
Created: 5/14/2009 2:36:23 PM
Detections: 4
Determination: UndefinedMalware
- Baidu Antivirus as Unnamed.Threat (Undefined malware)
- Agnitum Outpost as Trojan.Genome (Undefined malware)
- VIPRE Antivirus as Trojan.Win32.Generic (Undefined malware)
- Sunbelt AntiMalware as Porn-Dialer.Win32.CapreDeam.N (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\program files\common files\java\update\base images\jre1.6.0.b105\patch-jre1.6.0_06.b02\zipper.exe
Publisher:
MD5: eb3c4c7213c9e4bc587e733980a7924d
SHA-1: f6859f88b62062c2f0dd96396bde466f168c51a0
Created: 3/25/2008 6:43:16 AM
Detections: 1
Determination: Inconclusive
- Antiy Labs AVL as Virus/Win32.VB.gen (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\program files\common files\installshield\updateservice\issch.exe
Publisher: Macrovision Corporation
Signer: Macrovision Corporation
MD5: bd935d4f16c3b49ad58f6071a0affcf4
SHA-1: 128c2abb1a1f6d8e2a9d3d97b22d13593824820f
Created: 9/11/2006 4:40:34 AM
Detections: 1
Determination: Inconclusive
- The Hacker as Trojan/Menti.mtwj (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\program files\common files\installshield\driver\1150\intel 32\idrivert.exe
Publisher: Macrovision Corporation
MD5: daf66902f08796f9c694901660e5a64a
SHA-1: ca96dc67dd8adeb4d0fd93cbc2bf41a477d3be18
Created: 11/14/2005 2:06:04 AM
Detections: 1
Determination: Inconclusive
- Bkav FE as W32.Clod9d9.Trojan (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\program files\camera assistant software for toshiba\snctrl.exe
Publisher: Chicony RD Center
MD5: aa27c355949a45e7ffeadbf84f3d8bf4
SHA-1: cede4f90b61620574f4230a27bf716c55bb029a4
Created: 5/14/2009 2:46:47 PM
Detections: 1
Determination: Inconclusive
- AVG as Generic32 (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\program files\ati technologies\ati.ace\mom-installproxy\mom.exe
Publisher: Advanced Micro Devices Inc.
MD5: e681281d9bfc9d45d3b72532717e5880
SHA-1: ea9cb16169b46b2e0b81162c56831fd50b37e9a1
Created: 11/23/2007 5:08:58 PM
Detections: 1
Determination: Inconclusive
- Boost by Reason as Optional.AdvancedMicroDevices.D

---------------------------------------------------------------------------------

File path: c:\program files\ati technologies\ati.ace\core-static\clistart.exe
Publisher: Advanced Micro Devices, Inc.
MD5: bccf281901737cbfb5d3e4b1644cd79a
SHA-1: bb84a0382ef028e8699fadbe1350d25be5b83004
Created: 7/16/2008 6:57:18 PM
Detections: 1
Determination: Inconclusive
- Boost by Reason as Optional.Startup.AdvancedMicroDevices.I

---------------------------------------------------------------------------------

File path: c:\program files\ati technologies\ati.ace\core-static\installshell.exe
Publisher: AMD
MD5: 1bb130d5583485846805ad8a7ce962a9
SHA-1: e4dfe4702a5ca9f7099f251fb0deda5fa6f040cd
Created: 1/17/2007 11:57:34 AM
Detections: 1
Determination: Inconclusive
- ByteHero BDV as Trojan.Malware.Win32.xPack.m (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\program files\ati technologies\ati.ace\core-static\mom.exe
Publisher: Advanced Micro Devices Inc.
MD5: e681281d9bfc9d45d3b72532717e5880
SHA-1: ea9cb16169b46b2e0b81162c56831fd50b37e9a1
Created: 7/17/2007 1:13:56 PM
Detections: 1
Determination: Inconclusive
- Boost by Reason as Optional.AdvancedMicroDevices.D

---------------------------------------------------------------------------------

File path: c:\program files\ati technologies\ati.ace\branding\mom.exe
Publisher: Advanced Micro Devices Inc.
MD5: e681281d9bfc9d45d3b72532717e5880
SHA-1: ea9cb16169b46b2e0b81162c56831fd50b37e9a1
Created: 8/7/2008 12:34:14 PM
Detections: 1
Determination: Inconclusive
- Boost by Reason as Optional.AdvancedMicroDevices.D

---------------------------------------------------------------------------------

File path: c:\program files\adobe\adobe help viewer\1.0\ahv.exe
Publisher: Adobe Systems Incorporated
MD5: b0375fadbb808beaf33971aa2b1b56e2
SHA-1: 2b978167e0b264e7dd3484c61df8b31799f6867f
Created: 8/28/2006 1:08:14 AM
Detections: 1
Determination: Inconclusive
- The Hacker as Trojan/Injector.XQU.gen (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\program files\ulead systems\dvd moviefactory for toshiba\ulead dvd tweak and fit 2.1\uliblzw.dll
Publisher:
MD5: 8018545f7b5842cb1ffe6a6910722a4e
SHA-1: d5de48914d6790968ed37b25a980f23887a3418f
Created: 8/28/2008 5:11:26 PM
Detections: 1
Determination: Inconclusive
- Emsisoft Anti-Malware as Backdoor.Generic.99581 (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\program files\ulead systems\dvd moviefactory for toshiba\ulead dvd tweak and fit 2.1\vcvrt32.dll
Publisher: Ulead Systems, Inc.
MD5: 50522753302c0f6c39f9ff24e2d08fcc
SHA-1: 8f7de6acd54162f071fa86555c1142f8a1ed678a
Created: 8/28/2008 5:11:27 PM
Detections: 1
Determination: Inconclusive
- Antiy Labs AVL as Trojan/Win32.KeyLogger.gen (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\program files\ulead systems\dvd moviefactory for toshiba\ulead dvd moviefactory 5\mflogservice.dll
Publisher:
MD5: 10d9c58a656b0dae197df30fc5451981
SHA-1: c206905fa80fc0655d3d76c5022280d9557cc954
Created: 8/28/2008 5:09:39 PM
Detections: 1
Determination: Inconclusive
- Sunbelt AntiMalware as Henbang.A (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\program files\ulead systems\dvd moviefactory for toshiba\ulead dvd moviefactory 5\ucimg.dll
Publisher: Ulead Systems, Inc.
MD5: 9224dc1a21565b068594c8359f274207
SHA-1: 5190e89780ca92c7c20b7d3ca2364ad059372c80
Created: 8/28/2008 5:09:41 PM
Detections: 1
Determination: Inconclusive
- Emsisoft Anti-Malware as Gen:Adware.SMSHoax (Adware)

---------------------------------------------------------------------------------

File path: c:\program files\ulead systems\dvd moviefactory for toshiba\ulead dvd moviefactory 5\ulspdec.dll
Publisher: Ulead Systems, Inc.
MD5: 9b70b58ea65410140fa1f6972109af08
SHA-1: c713e682df22815871f454f7c491f7b2acce03b0
Created: 8/28/2008 5:09:43 PM
Detections: 1
Determination: Inconclusive
- Emsisoft Anti-Malware as Android.Trojan.Boqx (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\program files\ulead systems\dvd moviefactory for toshiba\ulead dvd moviefactory 5\umfcommdlg.dll
Publisher:
MD5: 91b8be671ec0af1be12654cb144199b7
SHA-1: 08521ddf19f7c128be63c595f0ba69ea5c55c102
Created: 8/28/2008 5:09:43 PM
Detections: 1
Determination: Inconclusive
- Sunbelt AntiMalware as AdWare.Win32.DN (Adware)

---------------------------------------------------------------------------------

File path: c:\program files\ulead systems\dvd moviefactory for toshiba\ulead dvd moviefactory 5\umfnormaledittask.dll
Publisher:
MD5: 0bed920f9c23bdd15ed306d947f62212
SHA-1: ac41d35eceb624a8e8ea44eeeafed9d7dedee0fb
Created: 8/28/2008 5:09:43 PM
Detections: 1
Determination: Inconclusive
- Sunbelt AntiMalware as AdWare.Win32.DN (Adware)

---------------------------------------------------------------------------------

File path: c:\program files\ulead systems\dvd moviefactory for toshiba\ulead dvd moviefactory 5\fio\fiorc2.dll
Publisher: Ulead Systems, Inc.
MD5: 9d4fe7df0bd0e45bcc2ba2c285ec8025
SHA-1: ba82b25e5f7d25fb53758de6d1def284d0634d12
Created: 8/28/2008 5:09:45 PM
Detections: 1
Determination: Inconclusive
- Emsisoft Anti-Malware as Packed.Win32.Krap.hm!A2 (Ignore)

---------------------------------------------------------------------------------

File path: c:\program files\ulead systems\dvd moviefactory for toshiba\ulead dvd discrecorder 2.2\ucimg.dll
Publisher: Ulead Systems, Inc.
MD5: 9224dc1a21565b068594c8359f274207
SHA-1: 5190e89780ca92c7c20b7d3ca2364ad059372c80
Created: 8/28/2008 5:10:30 PM
Detections: 1
Determination: Inconclusive
- Emsisoft Anti-Malware as Gen:Adware.SMSHoax (Adware)

---------------------------------------------------------------------------------

File path: c:\program files\ulead systems\dvd moviefactory for toshiba\ulead dvd discrecorder 2.2\ulspdec.dll
Publisher: Ulead Systems, Inc.
MD5: 9b70b58ea65410140fa1f6972109af08
SHA-1: c713e682df22815871f454f7c491f7b2acce03b0
Created: 8/28/2008 5:10:32 PM
Detections: 1
Determination: Inconclusive
- Emsisoft Anti-Malware as Android.Trojan.Boqx (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\program files\ulead systems\dvd moviefactory for toshiba\ulead dvd discrecorder 2.2\fio\fiorc2.dll
Publisher: Ulead Systems, Inc.
MD5: 9d4fe7df0bd0e45bcc2ba2c285ec8025
SHA-1: ba82b25e5f7d25fb53758de6d1def284d0634d12
Created: 8/28/2008 5:10:33 PM
Detections: 1
Determination: Inconclusive
- Emsisoft Anti-Malware as Packed.Win32.Krap.hm!A2 (Ignore)

---------------------------------------------------------------------------------

File path: c:\program files\toshiba\workssetup\msworks\pfiles\msworks\lffax13n.dll
Publisher: LEAD Technologies, Inc.
Signer: LEAD Technologies, Inc
MD5: 43a39f02783ec22ca3619dea72283c5c
SHA-1: 34aac01ef0160d3dbb03a6211eb38226f76e6e7f
Created: 9/26/2008 3:26:53 PM
Detections: 1
Determination: Inconclusive
- Antiy Labs AVL as Virus/Win32.Xpaj.gen (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\program files\toshiba\toshiba dvd player\tosdvdgm.dll
Publisher: TOSHIBA
MD5: 1797a4d43c579701c9a95ca417d6f5a2
SHA-1: 824ab645f710662f12ce29483742ff018f179fa1
Created: 5/14/2009 2:44:22 PM
Detections: 1
Determination: Inconclusive
- Bkav FE as HW32.CDB (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\program files\toshiba\pcdiag\mfc42.dll
Publisher: Microsoft Corporation
MD5: 71ad9ea933ace083add86bbe4f265d8b
SHA-1: 094929e01d6fcb22a0194f0b0ce32b7e3c80696b
Created: 3/30/2001 2:13:48 PM
Detections: 1
Determination: Inconclusive
- Emsisoft Anti-Malware as Gen:Variant.Adware.Strictor.18030 (Adware)

---------------------------------------------------------------------------------

File path: c:\program files\toshiba\bluetooth toshiba stack\ecc_panu.dll
Publisher: TOSHIBA CORPORATION
MD5: 3efb08a8cedd665ef2d0eb038c8fe0dc
SHA-1: 1cc2fccd93a3df2cf71605c0cc890a44e9a821ec
Created: 11/27/2007 5:11:14 PM
Detections: 1
Determination: Inconclusive
- Clam AntiVirus as PUA.Win32.Packer.Armadillo-93 (Ignore)

---------------------------------------------------------------------------------

File path: c:\program files\toshiba\bluetooth toshiba stack\ecc_spp.dll
Publisher: TOSHIBA CORPORATION
MD5: 5f0b4828c6bbf32f1a00867a582d040b
SHA-1: add16f8ce3c1094438faf052ef78618fb5e0034c
Created: 11/26/2007 6:13:30 PM
Detections: 1
Determination: Inconclusive
- Clam AntiVirus as PUA.Win32.Packer.Armadillo-93 (Ignore)

---------------------------------------------------------------------------------

File path: c:\program files\toshiba\bluetooth toshiba stack\ecw_asnk.dll
Publisher: TOSHIBA CORPORATION
MD5: d7b9e151af78f200bc18dde6788888ba
SHA-1: 3dff9a699895a7787f4fd31ff238058e40bcfb2f
Created: 11/27/2007 7:26:30 PM
Detections: 1
Determination: Inconclusive
- Clam AntiVirus as PUA.Win32.Packer.Armadillo-93 (Ignore)

---------------------------------------------------------------------------------

File path: c:\program files\toshiba\bluetooth toshiba stack\ecw_bwc.dll
Publisher: TOSHIBA CORPORATION
MD5: 58fbe05e9bdbf3e3453319b5e0af4857
SHA-1: f98d1023c08901087579fe58dc97977cf4a8936c
Created: 3/23/2007 9:58:34 PM
Detections: 1
Determination: Inconclusive
- Clam AntiVirus as PUA.Win32.Packer.Armadillo-93 (Ignore)

---------------------------------------------------------------------------------

File path: c:\program files\toshiba\bluetooth toshiba stack\ecw_fax.dll
Publisher: TOSHIBA CORPORATION
MD5: 688fe114029b1bb5c92d7cb5266b6d5f
SHA-1: 38e0f465646a7362c4d8ee6440ed01d06697bd6d
Created: 8/9/2007 11:13:34 PM
Detections: 1
Determination: Inconclusive
- Clam AntiVirus as PUA.Win32.Packer.Armadillo-93 (Ignore)

---------------------------------------------------------------------------------

File path: c:\program files\toshiba\bluetooth toshiba stack\ecw_gn.dll
Publisher: TOSHIBA CORPORATION
MD5: ddd65554978cd0d397ff40fc56a5437e
SHA-1: 23618807a7494516c568892f3dd38e31845008d9
Created: 12/4/2006 7:52:10 PM
Detections: 1
Determination: Inconclusive
- Clam AntiVirus as PUA.Win32.Packer.Armadillo-93 (Ignore)

---------------------------------------------------------------------------------

File path: c:\program files\popcap games\plants vs. zombies\bass.dll
Publisher: Un4seen Developments
MD5: 6731f160e001bb85ba930574b8d42776
SHA-1: aa2b48c55d9350be1ccf1dce921c33100e627378
Created: 4/5/2010 1:26:40 PM
Detections: 1
Determination: Inconclusive
- Bkav FE as HW32.CDB (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\program files\microsoft works\lffax13n.dll
Publisher: LEAD Technologies, Inc.
Signer: LEAD Technologies, Inc
MD5: 43a39f02783ec22ca3619dea72283c5c
SHA-1: 34aac01ef0160d3dbb03a6211eb38226f76e6e7f
Created: 1/23/2007 9:04:40 PM
Detections: 1
Determination: Inconclusive
- Antiy Labs AVL as Virus/Win32.Xpaj.gen (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\program files\leapfrog\leapfrog connect\styles\styleplugin_shell_englishus.dll
Publisher: LeapFrog Enterprises, Inc.
MD5: 20312e297ab8123b54098774de0e540d
SHA-1: 9503b030723c6cf414d9f270158c7a551680c067
Created: 11/12/2011 12:03:34 PM
Detections: 1
Determination: Inconclusive
- Bkav FE as HW32.CDB (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\program files\leapfrog\leapfrog connect\networksupport\avmanagerunified.dll
Publisher: OPSWAT, Inc.
Signer: OPSWAT, Inc.
MD5: 048a0b4924cfc1758e6131c84c10da4a
SHA-1: 5bfe811aaa3de04db1e52adeb6140c85279768e1
Created: 11/12/2011 10:57:36 AM
Detections: 2
Determination: Inconclusive
- VirusBuster as Packed/PECompact (Ignore)
- Clam AntiVirus as PUA.Packed.PECompact-1 (Ignore)

---------------------------------------------------------------------------------

File path: c:\program files\leapfrog\leapfrog connect\networksupport\coreutils.dll
Publisher: OPSWAT, Inc.
Signer: OPSWAT, Inc.
MD5: 405be9250905ffad07984b3fb1f34749
SHA-1: 0fb51d23870a62b6ddf95f9d06bf2214f0c49cd6
Created: 11/12/2011 10:57:36 AM
Detections: 3
Determination: Inconclusive
- VirusBuster as Packed/PECompact (Ignore)
- eSafe as Suspicious File (Ignore)
- Clam AntiVirus as PUA.Packed.PECompact-1 (Ignore)

---------------------------------------------------------------------------------

File path: c:\program files\leapfrog\leapfrog connect\networksupport\fwmanager.dll
Publisher: OPSWAT, Inc.
Signer: OPSWAT, Inc.
MD5: 42d358b3fecc5917cc6eb79055b114b2
SHA-1: ef2b832ff270262bca214fd3d4566ec06023d3af
Created: 11/12/2011 10:57:36 AM
Detections: 3
Determination: Inconclusive
- VirusBuster as Packed/PECompact (Ignore)
- eSafe as Suspicious File (Ignore)
- Clam AntiVirus as PUA.Packed.PECompact-1 (Ignore)

---------------------------------------------------------------------------------

File path: c:\program files\leapfrog\leapfrog connect\networksupport\impl_antiviruslib.dll
Publisher: OPSWAT, Inc.
Signer: OPSWAT, Inc.
MD5: 7e2f2cab84653bd28020b2c376a6e9ff
SHA-1: df64867e4c31a3085e31b3ab00317c2349dcf711
Created: 11/12/2011 10:57:38 AM
Detections: 3
Determination: Inconclusive
- VirusBuster as Packed/PECompact (Ignore)
- eSafe as Suspicious File (Ignore)
- Clam AntiVirus as PUA.Packed.PECompact-1 (Ignore)

---------------------------------------------------------------------------------

File path: c:\program files\leapfrog\leapfrog connect\networksupport\impl_firewalllib.dll
Publisher: OPSWAT, Inc.
Signer: OPSWAT, Inc.
MD5: 8065b2767cc8fe869e63c2d363f08f6a
SHA-1: d7382c0a5bb20e3191c19f80c1073153d7c06b1d
Created: 11/12/2011 10:57:38 AM
Detections: 3
Determination: Inconclusive
- VirusBuster as Packed/PECompact (Ignore)
- eSafe as Suspicious File (Ignore)
- Clam AntiVirus as PUA.Packed.PECompact-1 (Ignore)

---------------------------------------------------------------------------------

File path: c:\program files\leapfrog\leapfrog connect\networksupport\impl_softwareproductlib.dll
Publisher: OPSWAT, Inc.
Signer: OPSWAT, Inc.
MD5: 8698874fc735e87f739ea03a556f4a3b
SHA-1: 3aa25573bd22ee8344a04713bfa899dc98ba4a4f
Created: 11/12/2011 10:57:38 AM
Detections: 3
Determination: Inconclusive
- eSafe as Suspicious File (Ignore)
- Clam AntiVirus as PUA.Packed.PECompact-1 (Ignore)
- VirusBuster as Packed/PECompact (Ignore)

---------------------------------------------------------------------------------

File path: c:\program files\leapfrog\leapfrog connect\networksupport\impl_vpnclientlib.dll
Publisher: OPSWAT, Inc.
Signer: OPSWAT, Inc.
MD5: 09168f6c1a848a2a8643c190b3fa51b1
SHA-1: ea8fd0d2f83179d09eaad8d3d3ddfd4da3f92ffa
Created: 11/12/2011 10:57:38 AM
Detections: 3
Determination: Inconclusive
- VirusBuster as Packed/PECompact (Ignore)
- eSafe as Suspicious File (Ignore)
- Clam AntiVirus as PUA.Packed.PECompact-1 (Ignore)

---------------------------------------------------------------------------------

File path: c:\program files\leapfrog\leapfrog connect\networksupport\oesiscore.dll
Publisher: OPSWAT, Inc.
Signer: OPSWAT, Inc.
MD5: 6d59d65bb7e404ad7a749e15f9f8f6f0
SHA-1: fa8c5c3e87fc8ad9d1e8a8a8affd0da0cdb0c796
Created: 11/12/2011 10:57:38 AM
Detections: 3
Determination: Inconclusive
- VirusBuster as Packed/PECompact (Ignore)
- eSafe as Suspicious File (Ignore)
- Clam AntiVirus as PUA.Packed.PECompact-1 (Ignore)

---------------------------------------------------------------------------------

File path: c:\program files\java\jre1.6.0_06\bin\net.dll
Publisher: Sun Microsystems, Inc.
MD5: 22b2c8bcb3acff7d2289a31da5f3300e
SHA-1: 4764cf212a0a602592ff35d8fe34911fc6bf2e03
Created: 8/28/2008 5:01:35 PM
Detections: 1
Determination: Inconclusive
- Clam AntiVirus as Win.Trojan.Ramnit-1505 (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\program files\camera assistant software for toshiba\hookdll.dll
Publisher: Chicony
MD5: e7e49ed14a52d839dad6a7ef0251c16f
SHA-1: 550fbacd5eae9044d93211d0673e034f7b23b983
Created: 5/14/2009 2:46:47 PM
Detections: 1
Determination: Inconclusive
- Clam AntiVirus as PUA.Win32.Packer.BorlandCpp-9 (Ignore)

---------------------------------------------------------------------------------

File path: c:\program files\blaster\reading blaster ages 4-6\rb4-6.dll
Publisher: KA
MD5: e79277870b63cd9bd1d1a9e3f318bf59
SHA-1: 4b2e4fbf4bdd1e1ce67233643b24db62314f475b
Created: 11/8/2011 12:23:36 PM
Detections: 1
Determination: Inconclusive
- Prevx as Medium Risk Malware (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\program files\adobe\reader 8.0\reader\adobe_epic.dll
Publisher: Adobe Systems Incorporated
MD5: e168ac37ab342bdcb8b6a083bd851829
SHA-1: c64ea67d34479077a931571ddd796525cf116da2
Created: 9/15/2006 1:20:38 AM
Detections: 1
Determination: Inconclusive
- Bkav FE as HW32.Laneul (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\program files\common files\apple\mobile device support\netdrivers\netaapl.sys
Publisher: Apple Inc.
MD5: 1352e1648213551923a0a822e441553c
SHA-1: 707c1fff231116daf37e27fe21b747405a477fb4
Created: 8/2/2011 4:38:44 PM
Detections: 1
Determination: Inconclusive
- Bkav FE as HW32.Nonim (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\program files\common files\apple\mobile device support\drivers\usbaapl.sys
Publisher: Apple, Inc.
MD5: 8bf5d980cdce35fb26f05047144bb57e
SHA-1: 5fa2d81ee81ba27a2f3dd3b19d35f1f5f5e883a1
Created: 9/28/2012 11:32:56 AM
Detections: 1
Determination: Inconclusive
- Bkav FE as HW32.Nonim (Undefined malware)

Okedokey · Jun 18, 2014

Actually you 've got a load of crap on there. Wait for JOhn

CharmPeddler · Jun 18, 2014

HAHA, ya, when you said that it was probably just cause of the bios clock, I was like... no way. I've already ran all of the suggested scans a couple times before I posted here.

Thanks for looking though OkeDokey, I do appreciate it.

CharmPeddler · Jun 18, 2014

FYI, i've gone ahead and downloaded TDSSKILLER and ASWMBR. I have not ran them yet, or before, so i'll wait for word / suggestions from someone much more knowledgeable that myself.

CharmPeddler · Jun 19, 2014

Saved date: 6/19/2014 6:32:35 AM
Files detected: 111
Files scanned: 6,696
Processes scanned: 67
Modules scanned: 556
ASEPs scanned: 441
Downloads scanned: 1
Deep analysis: 2/1
---------------------------------------------------------------------------------

Files

---------------------------------------------------------------------------------

File path: c:\program files\toshiba\toscdspd\toscdspd.exe
Publisher: TOSHIBA
MD5: 8513bf8d7c4c1f1a0365e9fbfde458d5
SHA-1: 30d2686a1b6d3ca0ae8b08fb0e9b5a17b5fee0be
Created: 8/28/2008 3:52:15 PM
Detections: 1
Determination: Inconclusive
- Boost by Reason as Optional.Startup.TOSHIBA.I

---------------------------------------------------------------------------------

File path: c:\windows\system32\toddsrv.exe
Publisher: TOSHIBA Corporation
Signer: TOSHIBA CORPORATION
MD5: c5ac715b65b01788abc22d10749dddd8
SHA-1: 4cfbf7d2257345eb1adf0a962c8d5acafad70350
Created: 8/28/2008 3:59:40 PM
Detections: 1
Determination: Inconclusive
- Bkav FE as HW32.Laneul (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\windows\system32\drivers\amdk7.sys
Publisher: Microsoft Corporation
MD5: 18f29b49ad23ecee3d2a826c725c8d48
SHA-1: 4da88ed74e63cc5346052fd1a2d7e30bd57d5e2a
Created: 11/2/2006 3:30:18 AM
Detections: 1
Determination: Inconclusive
- Emsisoft Anti-Malware as Gen:Trojan.Heur.Lq0@uSR9FBn (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\windows\system32\drivers\sffp_sd.sys
Publisher: Microsoft Corporation
MD5: 3d0ea348784b7ac9ea9bd9f317980979
SHA-1: fd3f6350ce5aa17987331a7fc48db8d0cb06f514
Created: 11/2/2006 3:51:40 AM
Detections: 1
Determination: Inconclusive
- Emsisoft Anti-Malware as Trojan.JS.Redirector.ABZ (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\windows\system32\drivers\usbaapl.sys
Publisher: Apple, Inc.
MD5: 8bf5d980cdce35fb26f05047144bb57e
SHA-1: 5fa2d81ee81ba27a2f3dd3b19d35f1f5f5e883a1
Created: 9/28/2012 11:32:56 AM
Detections: 1
Determination: Inconclusive
- Bkav FE as HW32.Nonim (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\windows\system32\drivers\usbprint.sys
Publisher: Microsoft Corporation
MD5: b51e52acf758be00ef3a58ea452fe360
SHA-1: 6b582d9e12063a38119e74a60276aa09ddbb9a32
Created: 11/2/2006 4:14:58 AM
Detections: 1
Determination: Inconclusive
- Bkav FE as HW32.Nonim (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\users\oxford\appdata\local\google\update\googleupdate.exe
Publisher: Google Inc.
Signer: Google Inc
MD5: f02a533f517eb38333cb12a9e8963773
SHA-1: 258810d71436c5157cd0752bd13ce1de20f27eb2
Created: 12/28/2011 10:31:25 AM
Detections: 1
Determination: Inconclusive
- F-Prot as W32/Ransom.AD2.gen (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\program files\ati technologies\ati.ace\core-static\atiacmxx.dll
Publisher: Advanced Micro Devices, Inc.
MD5: ae0b4d25045a559e5e536925ecc8ecab
SHA-1: 71a6234f01f921d906a703dc0c669556dbc20926
Created: 7/2/2008 12:56:52 PM
Detections: 1
Determination: Inconclusive
- Boost by Reason as Optional.AdvancedMicroDevices.I

---------------------------------------------------------------------------------

File path: c:\windows\temp\securityscan_release.exe
Publisher: McAfee, Inc.
Signer: McAfee, Inc.
MD5: 08f0a96a9e4c5218e384f51bbb698df4
SHA-1: 9dfef792b67e5952407036ccbdb80fa9445b721a
Created: 5/24/2013 10:59:21 PM
Detections: 1
Determination: Inconclusive
- Commtouch SDK as W32/Trojan.ZWEI-8016 (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\users\oxford\appdata\local\temp\7z920.exe
Publisher:
MD5: b3fdf6e7b0aecd48ca7e4921773fb606
SHA-1: 55283ad59439134673fc32fc097bdd9ae920fbc6
Created: 6/3/2013 4:28:53 PM
Detections: 1
Determination: Inconclusive
- Bkav FE as W32.Clod966.Trojan (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\users\oxford\appdata\local\temp\apnstub.exe
Publisher: Ask.com
Signer: Ask.com
MD5: ce755676ae6d27a1efeefb0f3c70a929
SHA-1: 9d730a0b6235c8599c076b277ad8754247587e6a
Created: 1/1/0001 12:00:00 AM
Detections: 5
Determination: Adware
- Dr.Web as Trojan.DownLoader7.16675 (Undefined malware)
- ESET NOD32 as Win32/Bundled.Toolbar.Ask (variant) (Undefined malware)
- Reason Heuristics as PUP.Ask.H (Adware)
- Boost by Reason as Optional.Ask.H
- Filseclab Twister as W32.Bundled.Toolbar.Ask.lrsp (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\users\oxford\appdata\local\temp\googleupdatesetup.exe17056c
Publisher: Google Inc.
Signer: Google Inc
MD5: a6f8d4fbc12177a75ab4c06d059229b6
SHA-1: 3403381c7fef04c040a96f0d19c6311b4826ad75
Created: 7/14/2013 6:45:14 PM
Detections: 1
Determination: Inconclusive
- Antiy Labs AVL as Trojan/Win32.Generic (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\users\oxford\appdata\local\temp\quarantine.exe
Publisher:
MD5: 6661d7aabd1ba067da6abec5fc1383a1
SHA-1: aa2d1725b19f620006dcacbbaf2049862ea726f3
Created: 3/2/2014 2:39:04 PM
Detections: 2
Determination: Inconclusive
- CMC Antivirus as Trojan.Win32.Generic!O (Undefined malware)
- Antiy Labs AVL as Trojan/Win32.Autoit.aza (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\users\oxford\appdata\local\temp\wssetup.exe
Publisher:
Signer: Perion Network Ltd.
MD5: 5c511f04d2d3d46e18fced760ba28300
SHA-1: 864c429f7ad1b2183862d5f760fb7f5d33a952c8
Created: 1/1/0001 12:00:00 AM
Detections: 6
Determination: Adware
- Boost by Reason as Adware.Installer.Perion.H
- Dr.Web as Adware.SweetIM.28 (Adware)
- Kingsoft AntiVirus as Win32.Troj.Generic.a.(kcloud) (Undefined malware)
- ESET NOD32 as Win32/SweetIM (Adware)
- VIPRE Antivirus as Sweetpacks/SweetIM (Adware)
- Reason Heuristics as PUP.Installer.Perion.H (Adware)

---------------------------------------------------------------------------------

File path: c:\users\oxford\appdata\local\temp\{eddcb2d9-d99a-4c3a-a86a-7cb4796f5359}\googleupdatebroker.exe
Publisher: Google Inc.
Signer: Google Inc
MD5: 8f11f0321ed84b1533fc1384ac71ac8d
SHA-1: a7804dfa1dc256f0d5873c91f1a415688d37431d
Created: 6/26/2013 11:37:12 PM
Detections: 1
Determination: Inconclusive
- Bkav FE as W32.Clod159.Trojan (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\users\oxford\appdata\local\temp\{eddcb2d9-d99a-4c3a-a86a-7cb4796f5359}\googleupdateondemand.exe
Publisher: Google Inc.
Signer: Google Inc
MD5: 00f714ca28a01facb709486d6da306a8
SHA-1: 705a305f3eeaecbd06c22411e5c60bab03617e4c
Created: 6/26/2013 11:37:12 PM
Detections: 1
Determination: Inconclusive
- Bkav FE as W32.Clod684.Trojan (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\users\oxford\appdata\local\temp\ln2csm0x.tmp\leapfrogconnectsetup_mypals.exe
Publisher:
MD5: fe4c616834d21f2f788eec2d11a92c42
SHA-1: ee0606db6f37463f6f6c4f397588743375a4381d
Created: 12/25/2011 12:14:55 PM
Detections: 1
Determination: Inconclusive
- K7 Gateway Antivirus as Unwanted-File (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\users\oxford\appdata\local\temp\busc60c\ntredirectupdate.exe
Publisher:
Signer: Visual Tools
MD5: 7aea5232ca36b725dc2f66133910906a
SHA-1: 99aea32aa3a9b9a9e0cc3bc7b58f9674f22cb251
Created: 1/1/0001 12:00:00 AM
Detections: 1
Determination: Adware
- Reason Heuristics as PUP.VisualTools.Q (Adware)

---------------------------------------------------------------------------------

File path: c:\users\oxford\appdata\local\temp\bus457a\ff21v.exe
Publisher:
Signer: Visual Tools
MD5: e68248c32c5c8ee1cb2a36beaa74e6bf
SHA-1: b601b9cccc2a25da630286312406d4b45bede8a2
Created: 1/1/0001 12:00:00 AM
Detections: 2
Determination: Adware
- Reason Heuristics as PUP.VisualTools.F (Adware)
- Vba32 AntiVirus as suspected of Trojan.Downloader.gen.h (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\users\oxford\appdata\local\temp\97895916-bab0-7891-8646-1f960bcc1557\latest\guninstaller.exe
Publisher: Babylon Ltd.
Signer: Visual Tools
MD5: db521c3dc7b679226322033b09719eca
SHA-1: bf34901b092c0a8b44947f6f171a90058b6a824b
Created: 1/1/0001 12:00:00 AM
Detections: 4
Determination: Adware
- Boost by Reason as Adware.Installer.VisualTools.M
- Reason Heuristics as PUP.Installer.VisualTools.M (Adware)
- Trend Micro House Call as TROJ_GEN.F47V0726 (Undefined malware)
- Trend Micro as ADW_BABYLON (Adware)

---------------------------------------------------------------------------------

File path: c:\users\oxford\appdata\local\temp\{eddcb2d9-d99a-4c3a-a86a-7cb4796f5359}\npgoogleupdate3.dll
Publisher: Google Inc.
Signer: Google Inc
MD5: 3d928b3fe97c403a33f803b3d1a260c9
SHA-1: 825996f4d399b56eb3fa69ae170b55077ce7328c
Created: 6/26/2013 11:37:14 PM
Detections: 1
Determination: Inconclusive
- Antiy Labs AVL as Trojan/Win32.Generic (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\users\oxford\appdata\local\temp\busc60c\enhancednt.dll
Publisher:
Signer: Visual Tools
MD5: 4f507a8c6afb70c6fc1627dacc9f60e2
SHA-1: be3a5951f9d566e9c0b10b41781e42a3a8562b12
Created: 1/1/0001 12:00:00 AM
Detections: 8
Determination: Adware
- Reason Heuristics as PUP.Startup.VisualTools.K (Adware)
- Comodo Security as Application.Win32.Babylon.ad (Adware)
- Boost by Reason as Optional.Startup.VisualTools.K
- Malwarebytes as PUP.Optional.Delta.A (Adware)
- Bkav FE as HW32.Laneul (Undefined malware)
- Trend Micro House Call as TROJ_GEN.F47V0918 (Undefined malware)
- Dr.Web as DLOADER.Trojan (Undefined malware)
- ESET NOD32 as Win32/Toolbar.Babylon (variant) (Adware)

---------------------------------------------------------------------------------

File path: c:\users\oxford\appdata\local\temp\bus8ea9\busolution.dll
Publisher:
Signer: Visual Tools
MD5: 30fddc8310bdc66dbee77118f86e50c9
SHA-1: 671e3e4e9e4c9a039d9ad1479a0c91e670af18e3
Created: 1/1/0001 12:00:00 AM
Detections: 6
Determination: Adware
- Comodo Security as Application.Win32.AdWare.Agent.ba (Adware)
- Dr.Web as DLOADER.Trojan (Undefined malware)
- Reason Heuristics as PUP.VisualTools.K (Adware)
- Malwarebytes as PUP.Optional.BabSolution.A (Adware)
- Trend Micro House Call as TROJ_GEN.F47V0408 (Undefined malware)
- ESET NOD32 as Win32/Toolbar.Babylon (variant) (Adware)

---------------------------------------------------------------------------------

File path: c:\users\oxford\appdata\local\temp\97895916-bab0-7891-8646-1f960bcc1557\latest\busolformontiera.dll
Publisher:
MD5: 6c70e9d7e9c7b69f8a321047535f6c7a
SHA-1: 33f6209bf0b0a360306427cb95fd41131149fda9
Created: 7/30/2013 2:23:30 AM
Detections: 1
Determination: Inconclusive
- Bkav FE as HW32.Laneul (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\users\oxford\appdata\local\temp\97895916-bab0-7891-8646-1f960bcc1557\latest\busolution.dll
Publisher:
MD5: 598d57bdb4bd054e741e4ef75479ff10
SHA-1: da21a1bfec3c6f8a600a80dd1dcf9dcf3aa03f1a
Created: 7/28/2013 6:27:48 AM
Detections: 2
Determination: Inconclusive
- Dr.Web as Adware.Babylon.12 (Adware)
- Bkav FE as HW32.Laneul (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\users\oxford\appdata\local\temp\97895916-bab0-7891-8646-1f960bcc1557\latest\chrometoolbarsetup.dll
Publisher:
MD5: 6c70e9d7e9c7b69f8a321047535f6c7a
SHA-1: 33f6209bf0b0a360306427cb95fd41131149fda9
Created: 7/30/2013 2:23:30 AM
Detections: 1
Determination: Inconclusive
- Bkav FE as HW32.Laneul (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\users\oxford\appdata\local\temp\97895916-bab0-7891-8646-1f960bcc1557\latest\iehelper.dll
Publisher:
MD5: a21de5067618d4f2df261416315ed120
SHA-1: 7759a3318de2abc3755ebb7f50322c6d586b5286
Created: 1/1/0001 12:00:00 AM
Detections: 5
Determination: Adware
- ViRobot as Trojan.Win32.A.NSAnti.6144.B (Undefined malware)
- ESET NOD32 as Win32/Toolbar.Babylon (Adware)
- Kingsoft AntiVirus as Win32.Troj.Generic.a.(kcloud) (Undefined malware)
- NANO AntiVirus as Trojan.Win32.Ramnit.cqyaiq (Undefined malware)
- Bkav FE as W32.Clodce2.Trojan (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\users\oxford\desktop\adwcleaner.exe
Publisher:
MD5: 42f24559e8c472f6ff745bb7c5465fb2
SHA-1: 81ea2ca538e5c9a2bd7901f66f61dc20da8d2261
Created: 8/3/2008 3:39:48 AM
Detections: 2
Determination: Inconclusive
- CMC Antivirus as Trojan.Win32.Generic!O (Undefined malware)
- Antiy Labs AVL as Trojan/Win32.Autoit.aza (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\users\oxford\desktop\aswmbr.exe
Publisher: AVAST Software
MD5: 9302d77a9f6683672a4f231da2b86059
SHA-1: be772bc437fffe91d4b439838e34ff38b83ab096
Created: 6/18/2014 8:37:02 PM
Detections: 1
Determination: Inconclusive
- Kaspersky as HEUR:Backdoor.Win64.Generic (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\users\oxford\desktop\jrt.exe
Publisher:
MD5: ca630dbadeb5b6101531f986adfe46c9
SHA-1: 2955a2c5952fd33a9e57a2dadc9ff4ccdb46012a
Created: 8/3/2008 3:41:09 AM
Detections: 1
Determination: Inconclusive
- Qihoo 360 Security as virus.bat.reg.gen2 (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\users\oxford\desktop\otl.exe
Publisher: OldTimer Tools
MD5: 4adcfee16ee9978f06157634669d36fb
SHA-1: 30b37076552e49276836d02dd73d038c27dbbee9
Created: 8/3/2008 3:42:27 AM
Detections: 2
Determination: Inconclusive
- Agnitum Outpost as Packed/PECompact (Ignore)
- Bkav FE as HW32.CDB (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\windows\wolset.exe
Publisher:
MD5: f3413128740ea398f5a9efa3df830190
SHA-1: 3d484c8753ca30002105a50d36a68a5e6af4b7c8
Created: 1/1/0001 12:00:00 AM
Detections: 7
Determination: UndefinedMalware
- CMC Antivirus as IM-Worm.Win32.Sohanad!O (Undefined malware)
- F-Prot as W32/Undefined.Threat (Ignore)
- McAfee as Artemis!BC7ECB24F993 (Undefined malware)
- The Hacker as Trojan/Dropper.gen (Undefined malware)
- Comodo Security as Worm.Win32.AutoIt.~NS (Undefined malware)
- Prevx as High Risk Worm (Undefined malware)
- Reason Heuristics as Unnamed.Threat.11 (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\windows\system32\s64cpa.exe
Publisher: Atheros
MD5: 367285de8f637a8def0e6a4e494ffb7d
SHA-1: d1e1d1500a7bbfc48ec0e62676d8137c45f72dc3
Created: 5/14/2009 2:37:31 PM
Detections: 1
Determination: Inconclusive
- Sunbelt AntiMalware as Net-Worm.Win32.Bobic.k (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\windows\system32\tosmreg.exe
Publisher: Toshiba Corporation
MD5: 819690b5cd0ae24b6d4fd78b6b84f9a6
SHA-1: bba35c9d58f8043860ee63e6e3ba1b3e7341c6c5
Created: 5/14/2009 2:21:00 PM
Detections: 1
Determination: Inconclusive
- Antiy Labs AVL as Worm/Win32.Anilogo.gen (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\programdata\leapfrog\leapfrog connect\networksupport\avmanagerunified.dll
Publisher: OPSWAT, Inc.
Signer: OPSWAT, Inc.
MD5: 048a0b4924cfc1758e6131c84c10da4a
SHA-1: 5bfe811aaa3de04db1e52adeb6140c85279768e1
Created: 12/25/2011 12:32:13 PM
Detections: 2
Determination: Inconclusive
- VirusBuster as Packed/PECompact (Ignore)
- Clam AntiVirus as PUA.Packed.PECompact-1 (Ignore)

---------------------------------------------------------------------------------

File path: c:\programdata\leapfrog\leapfrog connect\networksupport\coreutils.dll
Publisher: OPSWAT, Inc.
Signer: OPSWAT, Inc.
MD5: 405be9250905ffad07984b3fb1f34749
SHA-1: 0fb51d23870a62b6ddf95f9d06bf2214f0c49cd6
Created: 12/25/2011 12:32:13 PM
Detections: 3
Determination: Inconclusive
- VirusBuster as Packed/PECompact (Ignore)
- eSafe as Suspicious File (Ignore)
- Clam AntiVirus as PUA.Packed.PECompact-1 (Ignore)

---------------------------------------------------------------------------------

File path: c:\programdata\leapfrog\leapfrog connect\networksupport\fwmanager.dll
Publisher: OPSWAT, Inc.
Signer: OPSWAT, Inc.
MD5: 42d358b3fecc5917cc6eb79055b114b2
SHA-1: ef2b832ff270262bca214fd3d4566ec06023d3af
Created: 12/25/2011 12:32:13 PM
Detections: 3
Determination: Inconclusive
- VirusBuster as Packed/PECompact (Ignore)
- eSafe as Suspicious File (Ignore)
- Clam AntiVirus as PUA.Packed.PECompact-1 (Ignore)

---------------------------------------------------------------------------------

File path: c:\programdata\leapfrog\leapfrog connect\networksupport\impl_antiviruslib.dll
Publisher: OPSWAT, Inc.
Signer: OPSWAT, Inc.
MD5: 7e2f2cab84653bd28020b2c376a6e9ff
SHA-1: df64867e4c31a3085e31b3ab00317c2349dcf711
Created: 12/25/2011 12:32:13 PM
Detections: 3
Determination: Inconclusive
- VirusBuster as Packed/PECompact (Ignore)
- eSafe as Suspicious File (Ignore)
- Clam AntiVirus as PUA.Packed.PECompact-1 (Ignore)

---------------------------------------------------------------------------------

File path: c:\programdata\leapfrog\leapfrog connect\networksupport\impl_firewalllib.dll
Publisher: OPSWAT, Inc.
Signer: OPSWAT, Inc.
MD5: 8065b2767cc8fe869e63c2d363f08f6a
SHA-1: d7382c0a5bb20e3191c19f80c1073153d7c06b1d
Created: 12/25/2011 12:32:13 PM
Detections: 3
Determination: Inconclusive
- VirusBuster as Packed/PECompact (Ignore)
- eSafe as Suspicious File (Ignore)
- Clam AntiVirus as PUA.Packed.PECompact-1 (Ignore)

---------------------------------------------------------------------------------

File path: c:\programdata\leapfrog\leapfrog connect\networksupport\impl_softwareproductlib.dll
Publisher: OPSWAT, Inc.
Signer: OPSWAT, Inc.
MD5: 8698874fc735e87f739ea03a556f4a3b
SHA-1: 3aa25573bd22ee8344a04713bfa899dc98ba4a4f
Created: 12/25/2011 12:32:13 PM
Detections: 3
Determination: Inconclusive
- eSafe as Suspicious File (Ignore)
- Clam AntiVirus as PUA.Packed.PECompact-1 (Ignore)
- VirusBuster as Packed/PECompact (Ignore)

---------------------------------------------------------------------------------

File path: c:\programdata\leapfrog\leapfrog connect\networksupport\impl_vpnclientlib.dll
Publisher: OPSWAT, Inc.
Signer: OPSWAT, Inc.
MD5: 09168f6c1a848a2a8643c190b3fa51b1
SHA-1: ea8fd0d2f83179d09eaad8d3d3ddfd4da3f92ffa
Created: 12/25/2011 12:32:13 PM
Detections: 3
Determination: Inconclusive
- VirusBuster as Packed/PECompact (Ignore)
- eSafe as Suspicious File (Ignore)
- Clam AntiVirus as PUA.Packed.PECompact-1 (Ignore)

---------------------------------------------------------------------------------

File path: c:\programdata\leapfrog\leapfrog connect\networksupport\oesiscore.dll
Publisher: OPSWAT, Inc.
Signer: OPSWAT, Inc.
MD5: 6d59d65bb7e404ad7a749e15f9f8f6f0
SHA-1: fa8c5c3e87fc8ad9d1e8a8a8affd0da0cdb0c796
Created: 12/25/2011 12:32:13 PM
Detections: 3
Determination: Inconclusive
- VirusBuster as Packed/PECompact (Ignore)
- eSafe as Suspicious File (Ignore)
- Clam AntiVirus as PUA.Packed.PECompact-1 (Ignore)

---------------------------------------------------------------------------------

File path: c:\users\oxford\appdata\local\temp\scoped_dir_3940_30532\webcakelayers.crx
Publisher:
MD5: 08d9d4982d07a67dd1fdfec1c26a2b4d
SHA-1: 07be1a271a189ebfbeedabd34313aa91b3a2d324
Created: 1/1/0001 12:00:00 AM
Detections: 5
Determination: Adware
- Microsoft Security Essentials as Threat.Undefined (Undefined malware)
- Reason Heuristics as Adware.WebCake.ChromePlugin.Q (Adware)
- Boost by Reason as Optional.ChromePlugin.Q
- Bkav FE as MW.Clod35b.Trojan (Undefined malware)
- IKARUS anti.virus as AdWare.WebCake (Adware)

---------------------------------------------------------------------------------

File path: c:\users\oxford\appdata\local\temp\scoped_dir_3940_26469\delta.crx
Publisher:
MD5: 7732bef52def6b441309a2b203cb62d0
SHA-1: 2a6db8ce0822699fbc013cb4a5469afd43dea12f
Created: 1/1/0001 12:00:00 AM
Detections: 2
Determination: Adware
- Boost by Reason as Optional.ChromePlugin.I
- Reason Heuristics as Adware.DeltaSearch.ChromePlugin.I (Adware)

---------------------------------------------------------------------------------

File path: c:\users\oxford\appdata\local\temp\97895916-bab0-7891-8646-1f960bcc1557\latest\delta.crx
Publisher:
MD5: 7732bef52def6b441309a2b203cb62d0
SHA-1: 2a6db8ce0822699fbc013cb4a5469afd43dea12f
Created: 1/1/0001 12:00:00 AM
Detections: 2
Determination: Adware
- Boost by Reason as Optional.ChromePlugin.I
- Reason Heuristics as Adware.DeltaSearch.ChromePlugin.I (Adware)

---------------------------------------------------------------------------------

File path: c:\program files\toshiba\toshiba recovery disc creator\toddsrv.exe
Publisher: TOSHIBA Corporation
Signer: TOSHIBA CORPORATION
MD5: c5ac715b65b01788abc22d10749dddd8
SHA-1: 4cfbf7d2257345eb1adf0a962c8d5acafad70350
Created: 11/21/2007 6:23:32 PM
Detections: 1
Determination: Inconclusive
- Bkav FE as HW32.Laneul (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\program files\toshiba\toshiba dvd player\tosmcelc.exe
Publisher:
MD5: c6bbcaf27b0e84e980d7f218602924bb
SHA-1: b00aff735819009896d04448aaea5954ad2dd3cb
Created: 5/14/2009 2:44:22 PM
Detections: 1
Determination: Inconclusive
- Clam AntiVirus as PUA.Win32.Packer.Msvcpp-1 (Ignore)

---------------------------------------------------------------------------------

File path: c:\program files\toshiba\toshiba disc creator\toddsrv.exe
Publisher: TOSHIBA Corporation
Signer: TOSHIBA CORPORATION
MD5: c5ac715b65b01788abc22d10749dddd8
SHA-1: 4cfbf7d2257345eb1adf0a962c8d5acafad70350
Created: 11/21/2007 6:23:32 PM
Detections: 1
Determination: Inconclusive
- Bkav FE as HW32.Laneul (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\program files\toshiba\tosapins\comps1\toshiba wps library (32-rslash-64bit)0\manual\b27724a.exe
Publisher:
Signer: TOSHIBA AMERICA INFORMATION SYSTEMS, INC.
MD5: c8e5ee724f2bedac58243467b87f704f
SHA-1: 096a831efc039c316ca2fd2254fdfd635e70b811
Created: 8/28/2008 7:26:54 PM
Detections: 1
Determination: Inconclusive
- Comodo Security as TrojWare.Win32.Agent.dzgr (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\program files\toshiba\tosapins\comps1\toshiba software modem0\manual\b26470a.exe
Publisher:
Signer: TOSHIBA AMERICA INFORMATION SYSTEMS, INC.
MD5: 56215b73a916395541d6bd367f8b343f
SHA-1: 0ebdf71d29154ad84bc57672e2cc9dfeae4b531d
Created: 8/28/2008 7:26:43 PM
Detections: 1
Determination: Inconclusive
- ByteHero BDV as Trojan.Malware.Obscu.Gen.001 (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\program files\toshiba\tosapins\comps1\toshiba remote control manager (32-rslash-64bit)0\manual\b27947a.exe
Publisher:
Signer: TOSHIBA AMERICA INFORMATION SYSTEMS, INC.
MD5: 330607fca577a210a305c1cc507ef83e
SHA-1: 52f486364602a8278f551f5ae993d5a842d2d17e
Created: 8/28/2008 7:26:39 PM
Detections: 1
Determination: Inconclusive
- ByteHero BDV as Trojan.Malware.Obscu.Gen.001 (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\program files\toshiba\tosapins\comps1\toshiba assist0\manual\b27945a.exe
Publisher:
Signer: TOSHIBA AMERICA INFORMATION SYSTEMS, INC.
MD5: 83551fd1989b13511ff24a62ea720b3b
SHA-1: 1a96ad7b8effb18898f8a108b8d2ca1df8fc0933
Created: 8/28/2008 7:26:16 PM
Detections: 1
Determination: Inconclusive
- ByteHero BDV as Trojan.Malware.Obscu.Gen.001 (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\program files\toshiba\tosapins\comps1\norton 360 patch (vista-rslash-xp)(english -and- spanish)0\manual\b27829a.exe
Publisher:
Signer: TOSHIBA AMERICA INFORMATION SYSTEMS, INC.
MD5: 0fd65066672b2ce8ba95fd0e1a3abcac
SHA-1: ce773629f11d9f2e3214d90338adf93c70338259
Created: 8/28/2008 7:25:55 PM
Detections: 1
Determination: Inconclusive
- ByteHero BDV as Trojan.Malware.Obscu.Gen.001 (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\program files\toshiba\tosapins\comps1\motorola modem driver (32-rslash-64bit)0\manual\b27983a.exe
Publisher:
Signer: TOSHIBA AMERICA INFORMATION SYSTEMS, INC.
MD5: 3a867df8b95978038ff2248a91c6802b
SHA-1: 64110433d5f54479d5b4bfa1221688c6377123ab
Created: 8/28/2008 7:25:30 PM
Detections: 1
Determination: Inconclusive
- ByteHero BDV as Trojan.Malware.Obscu.Gen.001 (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\program files\toshiba\tosapins\comps1\modem region select utility - motorola0\manual\b28038a.exe
Publisher:
Signer: TOSHIBA AMERICA INFORMATION SYSTEMS, INC.
MD5: 6a367044d021ab2af5e88ef459703ff7
SHA-1: ab51c9d1cbfb5273b4eb3c83134be8287bc54060
Created: 8/28/2008 7:25:27 PM
Detections: 1
Determination: Inconclusive
- ByteHero BDV as Trojan.Malware.Obscu.Gen.001 (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\program files\toshiba\tosapins\comps1\intuit quickbooks financial center0\manual\b28148a.exe
Publisher:
Signer: TOSHIBA AMERICA INFORMATION SYSTEMS, INC.
MD5: 3274f7f9f3c8e66ad35dbcbcd0fd2699
SHA-1: 068735986733947e13806217acb98aababf43a33
Created: 8/28/2008 7:25:26 PM
Detections: 1
Determination: Inconclusive
- ByteHero BDV as Trojan.Malware.Obscu.Gen.001 (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\program files\toshiba\tosapins\comps1\ati catalyst control center patch (32-rslash-64bit)0\manual\b28234a.exe
Publisher:
Signer: TOSHIBA AMERICA INFORMATION SYSTEMS, INC.
MD5: 72ee2c977baa46a8c837e0892b23a702
SHA-1: a19d15df9f6cd12d96edca7043768fb56019490a
Created: 9/5/2008 2:48:03 PM
Detections: 1
Determination: Inconclusive
- ByteHero BDV as Trojan.Malware.Obscu.Gen.001 (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\program files\toshiba\tosapins\comps1\adobe flash player 9 activex (english -and- spanish)(xp, vista)0\manual\b27318a.exe
Publisher:
Signer: TOSHIBA AMERICA INFORMATION SYSTEMS, INC.
MD5: 5bb39e5b0a2a7548751a5058fa85aa6a
SHA-1: c2c749daa928d24a51665f6a59d8f2d35ee1f84e
Created: 8/28/2008 7:24:35 PM
Detections: 2
Determination: Inconclusive
- eSafe as Win32.Genetik (Undefined malware)
- Comodo Security as UnclassifiedMalware (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\program files\toshiba\bluetooth toshiba stack\eccenter1.exe
Publisher: TOSHIBA CORPORATION.
MD5: 32487819196f147c93d0a5d5ddefb676
SHA-1: 8483875763ad4ea5d3b58342a387a4ad3294d0d1
Created: 11/1/2007 3:25:56 PM
Detections: 1
Determination: Inconclusive
- Clam AntiVirus as PUA.Win32.Packer.InstallerVise (Ignore)

---------------------------------------------------------------------------------

File path: c:\program files\quicktime\qttask.exe
Publisher: Apple Inc.
MD5: 8dda2b606279753601f9415da503ca63
SHA-1: 234f24bdb1bf04e9c38da19c4b628c5a344d8660
Created: 10/25/2012 4:12:14 AM
Detections: 1
Determination: Inconclusive
- Boost by Reason as Optional.Startup.Apple.G

---------------------------------------------------------------------------------

File path: c:\program files\quicktime\qtsystem\quicktimeupdatehelper.exe
Publisher: Apple Inc.
MD5: 32234ea65ddfd3d930a35b09ec787fa8
SHA-1: 6a62bdbb55dbd87080a9361d3e739d669275b683
Created: 10/25/2012 4:12:14 AM
Detections: 1
Determination: Inconclusive
- Boost by Reason as Optional.Apple.V

---------------------------------------------------------------------------------

File path: c:\program files\popcap games\plants vs. zombies\popuninstall.exe
Publisher:
Signer: PopCap Games
MD5: 47c599b47eb25769753ab75ab5866246
SHA-1: 2ece8e1242dc14723a8955223fa22efa83907a3c
Created: 7/6/2010 1:48:14 PM
Detections: 1
Determination: Inconclusive
- McAfee Web Gateway as Heuristic.BehavesLike.Win32.Suspicious.H (Ignore)

---------------------------------------------------------------------------------

File path: c:\program files\leapfrog\leapfrog connect\upcupdater.exe
Publisher: LeapFrog Enterprises, Inc.
Signer: LeapFrog Enterprises, Inc.
MD5: e96e0f7df7ca45c60da1955a18ef04d3
SHA-1: 6ef3f23c3f48220b452a7626c108d27bd4efb936
Created: 11/12/2011 12:35:50 PM
Detections: 1
Determination: Inconclusive
- ByteHero BDV as Trojan.Malware.Win32.xPack.i (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\program files\installshield installation information\{fedd27a0-b306-45ef-bf58-b527406b42c8}\setup.exe
Publisher: TOSHIBA Corporation
MD5: f5ab621da1fa7d54b3e01e8310659cb1
SHA-1: 9750067a49ba4c94bdd4174e8659423fafcd6de2
Created: 1/1/0001 12:00:00 AM
Detections: 4
Determination: UndefinedMalware
- Baidu Antivirus as Unnamed.Threat (Undefined malware)
- Agnitum Outpost as Trojan.Genome (Undefined malware)
- VIPRE Antivirus as Trojan.Win32.Generic (Undefined malware)
- Sunbelt AntiMalware as Porn-Dialer.Win32.CapreDeam.N (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\program files\common files\java\update\base images\jre1.6.0.b105\patch-jre1.6.0_06.b02\zipper.exe
Publisher:
MD5: eb3c4c7213c9e4bc587e733980a7924d
SHA-1: f6859f88b62062c2f0dd96396bde466f168c51a0
Created: 3/25/2008 6:43:16 AM
Detections: 1
Determination: Inconclusive
- Antiy Labs AVL as Virus/Win32.VB.gen (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\program files\common files\installshield\updateservice\issch.exe
Publisher: Macrovision Corporation
Signer: Macrovision Corporation
MD5: bd935d4f16c3b49ad58f6071a0affcf4
SHA-1: 128c2abb1a1f6d8e2a9d3d97b22d13593824820f
Created: 9/11/2006 4:40:34 AM
Detections: 1
Determination: Inconclusive
- The Hacker as Trojan/Menti.mtwj (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\program files\common files\installshield\driver\1150\intel 32\idrivert.exe
Publisher: Macrovision Corporation
MD5: daf66902f08796f9c694901660e5a64a
SHA-1: ca96dc67dd8adeb4d0fd93cbc2bf41a477d3be18
Created: 11/14/2005 2:06:04 AM
Detections: 1
Determination: Inconclusive
- Bkav FE as W32.Clod9d9.Trojan (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\program files\camera assistant software for toshiba\snctrl.exe
Publisher: Chicony RD Center
MD5: aa27c355949a45e7ffeadbf84f3d8bf4
SHA-1: cede4f90b61620574f4230a27bf716c55bb029a4
Created: 5/14/2009 2:46:47 PM
Detections: 1
Determination: Inconclusive
- AVG as Generic32 (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\program files\ati technologies\ati.ace\mom-installproxy\mom.exe
Publisher: Advanced Micro Devices Inc.
MD5: e681281d9bfc9d45d3b72532717e5880
SHA-1: ea9cb16169b46b2e0b81162c56831fd50b37e9a1
Created: 11/23/2007 5:08:58 PM
Detections: 1
Determination: Inconclusive
- Boost by Reason as Optional.AdvancedMicroDevices.D

---------------------------------------------------------------------------------

File path: c:\program files\ati technologies\ati.ace\core-static\clistart.exe
Publisher: Advanced Micro Devices, Inc.
MD5: bccf281901737cbfb5d3e4b1644cd79a
SHA-1: bb84a0382ef028e8699fadbe1350d25be5b83004
Created: 7/16/2008 6:57:18 PM
Detections: 1
Determination: Inconclusive
- Boost by Reason as Optional.Startup.AdvancedMicroDevices.I

---------------------------------------------------------------------------------

File path: c:\program files\ati technologies\ati.ace\core-static\installshell.exe
Publisher: AMD
MD5: 1bb130d5583485846805ad8a7ce962a9
SHA-1: e4dfe4702a5ca9f7099f251fb0deda5fa6f040cd
Created: 1/17/2007 11:57:34 AM
Detections: 1
Determination: Inconclusive
- ByteHero BDV as Trojan.Malware.Win32.xPack.m (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\program files\ati technologies\ati.ace\core-static\mom.exe
Publisher: Advanced Micro Devices Inc.
MD5: e681281d9bfc9d45d3b72532717e5880
SHA-1: ea9cb16169b46b2e0b81162c56831fd50b37e9a1
Created: 7/17/2007 1:13:56 PM
Detections: 1
Determination: Inconclusive
- Boost by Reason as Optional.AdvancedMicroDevices.D

---------------------------------------------------------------------------------

File path: c:\program files\ati technologies\ati.ace\branding\mom.exe
Publisher: Advanced Micro Devices Inc.
MD5: e681281d9bfc9d45d3b72532717e5880
SHA-1: ea9cb16169b46b2e0b81162c56831fd50b37e9a1
Created: 8/7/2008 12:34:14 PM
Detections: 1
Determination: Inconclusive
- Boost by Reason as Optional.AdvancedMicroDevices.D

---------------------------------------------------------------------------------

File path: c:\program files\adobe\adobe help viewer\1.0\ahv.exe
Publisher: Adobe Systems Incorporated
MD5: b0375fadbb808beaf33971aa2b1b56e2
SHA-1: 2b978167e0b264e7dd3484c61df8b31799f6867f
Created: 8/28/2006 1:08:14 AM
Detections: 1
Determination: Inconclusive
- The Hacker as Trojan/Injector.XQU.gen (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\program files\ulead systems\dvd moviefactory for toshiba\ulead dvd tweak and fit 2.1\uliblzw.dll
Publisher:
MD5: 8018545f7b5842cb1ffe6a6910722a4e
SHA-1: d5de48914d6790968ed37b25a980f23887a3418f
Created: 8/28/2008 5:11:26 PM
Detections: 1
Determination: Inconclusive
- Emsisoft Anti-Malware as Backdoor.Generic.99581 (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\program files\ulead systems\dvd moviefactory for toshiba\ulead dvd tweak and fit 2.1\vcvrt32.dll
Publisher: Ulead Systems, Inc.
MD5: 50522753302c0f6c39f9ff24e2d08fcc
SHA-1: 8f7de6acd54162f071fa86555c1142f8a1ed678a
Created: 8/28/2008 5:11:27 PM
Detections: 1
Determination: Inconclusive
- Antiy Labs AVL as Trojan/Win32.KeyLogger.gen (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\program files\ulead systems\dvd moviefactory for toshiba\ulead dvd moviefactory 5\mflogservice.dll
Publisher:
MD5: 10d9c58a656b0dae197df30fc5451981
SHA-1: c206905fa80fc0655d3d76c5022280d9557cc954
Created: 8/28/2008 5:09:39 PM
Detections: 1
Determination: Inconclusive
- Sunbelt AntiMalware as Henbang.A (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\program files\ulead systems\dvd moviefactory for toshiba\ulead dvd moviefactory 5\ucimg.dll
Publisher: Ulead Systems, Inc.
MD5: 9224dc1a21565b068594c8359f274207
SHA-1: 5190e89780ca92c7c20b7d3ca2364ad059372c80
Created: 8/28/2008 5:09:41 PM
Detections: 1
Determination: Inconclusive
- Emsisoft Anti-Malware as Gen:Adware.SMSHoax (Adware)

---------------------------------------------------------------------------------

File path: c:\program files\ulead systems\dvd moviefactory for toshiba\ulead dvd moviefactory 5\ulspdec.dll
Publisher: Ulead Systems, Inc.
MD5: 9b70b58ea65410140fa1f6972109af08
SHA-1: c713e682df22815871f454f7c491f7b2acce03b0
Created: 8/28/2008 5:09:43 PM
Detections: 1
Determination: Inconclusive
- Emsisoft Anti-Malware as Android.Trojan.Boqx (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\program files\ulead systems\dvd moviefactory for toshiba\ulead dvd moviefactory 5\umfcommdlg.dll
Publisher:
MD5: 91b8be671ec0af1be12654cb144199b7
SHA-1: 08521ddf19f7c128be63c595f0ba69ea5c55c102
Created: 8/28/2008 5:09:43 PM
Detections: 1
Determination: Inconclusive
- Sunbelt AntiMalware as AdWare.Win32.DN (Adware)

---------------------------------------------------------------------------------

File path: c:\program files\ulead systems\dvd moviefactory for toshiba\ulead dvd moviefactory 5\umfnormaledittask.dll
Publisher:
MD5: 0bed920f9c23bdd15ed306d947f62212
SHA-1: ac41d35eceb624a8e8ea44eeeafed9d7dedee0fb
Created: 8/28/2008 5:09:43 PM
Detections: 1
Determination: Inconclusive
- Sunbelt AntiMalware as AdWare.Win32.DN (Adware)

---------------------------------------------------------------------------------

File path: c:\program files\ulead systems\dvd moviefactory for toshiba\ulead dvd moviefactory 5\fio\fiorc2.dll
Publisher: Ulead Systems, Inc.
MD5: 9d4fe7df0bd0e45bcc2ba2c285ec8025
SHA-1: ba82b25e5f7d25fb53758de6d1def284d0634d12
Created: 8/28/2008 5:09:45 PM
Detections: 1
Determination: Inconclusive
- Emsisoft Anti-Malware as Packed.Win32.Krap.hm!A2 (Ignore)

---------------------------------------------------------------------------------

File path: c:\program files\ulead systems\dvd moviefactory for toshiba\ulead dvd discrecorder 2.2\ucimg.dll
Publisher: Ulead Systems, Inc.
MD5: 9224dc1a21565b068594c8359f274207
SHA-1: 5190e89780ca92c7c20b7d3ca2364ad059372c80
Created: 8/28/2008 5:10:30 PM
Detections: 1
Determination: Inconclusive
- Emsisoft Anti-Malware as Gen:Adware.SMSHoax (Adware)

---------------------------------------------------------------------------------

File path: c:\program files\ulead systems\dvd moviefactory for toshiba\ulead dvd discrecorder 2.2\ulspdec.dll
Publisher: Ulead Systems, Inc.
MD5: 9b70b58ea65410140fa1f6972109af08
SHA-1: c713e682df22815871f454f7c491f7b2acce03b0
Created: 8/28/2008 5:10:32 PM
Detections: 1
Determination: Inconclusive
- Emsisoft Anti-Malware as Android.Trojan.Boqx (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\program files\ulead systems\dvd moviefactory for toshiba\ulead dvd discrecorder 2.2\fio\fiorc2.dll
Publisher: Ulead Systems, Inc.
MD5: 9d4fe7df0bd0e45bcc2ba2c285ec8025
SHA-1: ba82b25e5f7d25fb53758de6d1def284d0634d12
Created: 8/28/2008 5:10:33 PM
Detections: 1
Determination: Inconclusive
- Emsisoft Anti-Malware as Packed.Win32.Krap.hm!A2 (Ignore)

---------------------------------------------------------------------------------

File path: c:\program files\toshiba\workssetup\msworks\pfiles\msworks\lffax13n.dll
Publisher: LEAD Technologies, Inc.
Signer: LEAD Technologies, Inc
MD5: 43a39f02783ec22ca3619dea72283c5c
SHA-1: 34aac01ef0160d3dbb03a6211eb38226f76e6e7f
Created: 9/26/2008 3:26:53 PM
Detections: 1
Determination: Inconclusive
- Antiy Labs AVL as Virus/Win32.Xpaj.gen (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\program files\toshiba\toshiba dvd player\tosdvdgm.dll
Publisher: TOSHIBA
MD5: 1797a4d43c579701c9a95ca417d6f5a2
SHA-1: 824ab645f710662f12ce29483742ff018f179fa1
Created: 5/14/2009 2:44:22 PM
Detections: 1
Determination: Inconclusive
- Bkav FE as HW32.CDB (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\program files\toshiba\pcdiag\mfc42.dll
Publisher: Microsoft Corporation
MD5: 71ad9ea933ace083add86bbe4f265d8b
SHA-1: 094929e01d6fcb22a0194f0b0ce32b7e3c80696b
Created: 3/30/2001 2:13:48 PM
Detections: 1
Determination: Inconclusive
- Emsisoft Anti-Malware as Gen:Variant.Adware.Strictor.18030 (Adware)

---------------------------------------------------------------------------------

File path: c:\program files\toshiba\bluetooth toshiba stack\ecc_panu.dll
Publisher: TOSHIBA CORPORATION
MD5: 3efb08a8cedd665ef2d0eb038c8fe0dc
SHA-1: 1cc2fccd93a3df2cf71605c0cc890a44e9a821ec
Created: 11/27/2007 5:11:14 PM
Detections: 1
Determination: Inconclusive
- Clam AntiVirus as PUA.Win32.Packer.Armadillo-93 (Ignore)

---------------------------------------------------------------------------------

File path: c:\program files\toshiba\bluetooth toshiba stack\ecc_spp.dll
Publisher: TOSHIBA CORPORATION
MD5: 5f0b4828c6bbf32f1a00867a582d040b
SHA-1: add16f8ce3c1094438faf052ef78618fb5e0034c
Created: 11/26/2007 6:13:30 PM
Detections: 1
Determination: Inconclusive
- Clam AntiVirus as PUA.Win32.Packer.Armadillo-93 (Ignore)

---------------------------------------------------------------------------------

File path: c:\program files\toshiba\bluetooth toshiba stack\ecw_asnk.dll
Publisher: TOSHIBA CORPORATION
MD5: d7b9e151af78f200bc18dde6788888ba
SHA-1: 3dff9a699895a7787f4fd31ff238058e40bcfb2f
Created: 11/27/2007 7:26:30 PM
Detections: 1
Determination: Inconclusive
- Clam AntiVirus as PUA.Win32.Packer.Armadillo-93 (Ignore)

---------------------------------------------------------------------------------

File path: c:\program files\toshiba\bluetooth toshiba stack\ecw_bwc.dll
Publisher: TOSHIBA CORPORATION
MD5: 58fbe05e9bdbf3e3453319b5e0af4857
SHA-1: f98d1023c08901087579fe58dc97977cf4a8936c
Created: 3/23/2007 9:58:34 PM
Detections: 1
Determination: Inconclusive
- Clam AntiVirus as PUA.Win32.Packer.Armadillo-93 (Ignore)

---------------------------------------------------------------------------------

File path: c:\program files\toshiba\bluetooth toshiba stack\ecw_fax.dll
Publisher: TOSHIBA CORPORATION
MD5: 688fe114029b1bb5c92d7cb5266b6d5f
SHA-1: 38e0f465646a7362c4d8ee6440ed01d06697bd6d
Created: 8/9/2007 11:13:34 PM
Detections: 1
Determination: Inconclusive
- Clam AntiVirus as PUA.Win32.Packer.Armadillo-93 (Ignore)

---------------------------------------------------------------------------------

File path: c:\program files\toshiba\bluetooth toshiba stack\ecw_gn.dll
Publisher: TOSHIBA CORPORATION
MD5: ddd65554978cd0d397ff40fc56a5437e
SHA-1: 23618807a7494516c568892f3dd38e31845008d9
Created: 12/4/2006 7:52:10 PM
Detections: 1
Determination: Inconclusive
- Clam AntiVirus as PUA.Win32.Packer.Armadillo-93 (Ignore)

---------------------------------------------------------------------------------

File path: c:\program files\popcap games\plants vs. zombies\bass.dll
Publisher: Un4seen Developments
MD5: 6731f160e001bb85ba930574b8d42776
SHA-1: aa2b48c55d9350be1ccf1dce921c33100e627378
Created: 4/5/2010 1:26:40 PM
Detections: 1
Determination: Inconclusive
- Bkav FE as HW32.CDB (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\program files\microsoft works\lffax13n.dll
Publisher: LEAD Technologies, Inc.
Signer: LEAD Technologies, Inc
MD5: 43a39f02783ec22ca3619dea72283c5c
SHA-1: 34aac01ef0160d3dbb03a6211eb38226f76e6e7f
Created: 1/23/2007 9:04:40 PM
Detections: 1
Determination: Inconclusive
- Antiy Labs AVL as Virus/Win32.Xpaj.gen (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\program files\leapfrog\leapfrog connect\styles\styleplugin_shell_englishus.dll
Publisher: LeapFrog Enterprises, Inc.
MD5: 20312e297ab8123b54098774de0e540d
SHA-1: 9503b030723c6cf414d9f270158c7a551680c067
Created: 11/12/2011 12:03:34 PM
Detections: 1
Determination: Inconclusive
- Bkav FE as HW32.CDB (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\program files\leapfrog\leapfrog connect\networksupport\avmanagerunified.dll
Publisher: OPSWAT, Inc.
Signer: OPSWAT, Inc.
MD5: 048a0b4924cfc1758e6131c84c10da4a
SHA-1: 5bfe811aaa3de04db1e52adeb6140c85279768e1
Created: 11/12/2011 10:57:36 AM
Detections: 2
Determination: Inconclusive
- VirusBuster as Packed/PECompact (Ignore)
- Clam AntiVirus as PUA.Packed.PECompact-1 (Ignore)

---------------------------------------------------------------------------------

File path: c:\program files\leapfrog\leapfrog connect\networksupport\coreutils.dll
Publisher: OPSWAT, Inc.
Signer: OPSWAT, Inc.
MD5: 405be9250905ffad07984b3fb1f34749
SHA-1: 0fb51d23870a62b6ddf95f9d06bf2214f0c49cd6
Created: 11/12/2011 10:57:36 AM
Detections: 3
Determination: Inconclusive
- VirusBuster as Packed/PECompact (Ignore)
- eSafe as Suspicious File (Ignore)
- Clam AntiVirus as PUA.Packed.PECompact-1 (Ignore)

---------------------------------------------------------------------------------

File path: c:\program files\leapfrog\leapfrog connect\networksupport\fwmanager.dll
Publisher: OPSWAT, Inc.
Signer: OPSWAT, Inc.
MD5: 42d358b3fecc5917cc6eb79055b114b2
SHA-1: ef2b832ff270262bca214fd3d4566ec06023d3af
Created: 11/12/2011 10:57:36 AM
Detections: 3
Determination: Inconclusive
- VirusBuster as Packed/PECompact (Ignore)
- eSafe as Suspicious File (Ignore)
- Clam AntiVirus as PUA.Packed.PECompact-1 (Ignore)

---------------------------------------------------------------------------------

File path: c:\program files\leapfrog\leapfrog connect\networksupport\impl_antiviruslib.dll
Publisher: OPSWAT, Inc.
Signer: OPSWAT, Inc.
MD5: 7e2f2cab84653bd28020b2c376a6e9ff
SHA-1: df64867e4c31a3085e31b3ab00317c2349dcf711
Created: 11/12/2011 10:57:38 AM
Detections: 3
Determination: Inconclusive
- VirusBuster as Packed/PECompact (Ignore)
- eSafe as Suspicious File (Ignore)
- Clam AntiVirus as PUA.Packed.PECompact-1 (Ignore)

---------------------------------------------------------------------------------

File path: c:\program files\leapfrog\leapfrog connect\networksupport\impl_firewalllib.dll
Publisher: OPSWAT, Inc.
Signer: OPSWAT, Inc.
MD5: 8065b2767cc8fe869e63c2d363f08f6a
SHA-1: d7382c0a5bb20e3191c19f80c1073153d7c06b1d
Created: 11/12/2011 10:57:38 AM
Detections: 3
Determination: Inconclusive
- VirusBuster as Packed/PECompact (Ignore)
- eSafe as Suspicious File (Ignore)
- Clam AntiVirus as PUA.Packed.PECompact-1 (Ignore)

---------------------------------------------------------------------------------

File path: c:\program files\leapfrog\leapfrog connect\networksupport\impl_softwareproductlib.dll
Publisher: OPSWAT, Inc.
Signer: OPSWAT, Inc.
MD5: 8698874fc735e87f739ea03a556f4a3b
SHA-1: 3aa25573bd22ee8344a04713bfa899dc98ba4a4f
Created: 11/12/2011 10:57:38 AM
Detections: 3
Determination: Inconclusive
- eSafe as Suspicious File (Ignore)
- Clam AntiVirus as PUA.Packed.PECompact-1 (Ignore)
- VirusBuster as Packed/PECompact (Ignore)

---------------------------------------------------------------------------------

File path: c:\program files\leapfrog\leapfrog connect\networksupport\impl_vpnclientlib.dll
Publisher: OPSWAT, Inc.
Signer: OPSWAT, Inc.
MD5: 09168f6c1a848a2a8643c190b3fa51b1
SHA-1: ea8fd0d2f83179d09eaad8d3d3ddfd4da3f92ffa
Created: 11/12/2011 10:57:38 AM
Detections: 3
Determination: Inconclusive
- VirusBuster as Packed/PECompact (Ignore)
- eSafe as Suspicious File (Ignore)
- Clam AntiVirus as PUA.Packed.PECompact-1 (Ignore)

---------------------------------------------------------------------------------

File path: c:\program files\leapfrog\leapfrog connect\networksupport\oesiscore.dll
Publisher: OPSWAT, Inc.
Signer: OPSWAT, Inc.
MD5: 6d59d65bb7e404ad7a749e15f9f8f6f0
SHA-1: fa8c5c3e87fc8ad9d1e8a8a8affd0da0cdb0c796
Created: 11/12/2011 10:57:38 AM
Detections: 3
Determination: Inconclusive
- VirusBuster as Packed/PECompact (Ignore)
- eSafe as Suspicious File (Ignore)
- Clam AntiVirus as PUA.Packed.PECompact-1 (Ignore)

---------------------------------------------------------------------------------

File path: c:\program files\java\jre1.6.0_06\bin\net.dll
Publisher: Sun Microsystems, Inc.
MD5: 22b2c8bcb3acff7d2289a31da5f3300e
SHA-1: 4764cf212a0a602592ff35d8fe34911fc6bf2e03
Created: 8/28/2008 5:01:35 PM
Detections: 1
Determination: Inconclusive
- Clam AntiVirus as Win.Trojan.Ramnit-1505 (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\program files\camera assistant software for toshiba\hookdll.dll
Publisher: Chicony
MD5: e7e49ed14a52d839dad6a7ef0251c16f
SHA-1: 550fbacd5eae9044d93211d0673e034f7b23b983
Created: 5/14/2009 2:46:47 PM
Detections: 1
Determination: Inconclusive
- Clam AntiVirus as PUA.Win32.Packer.BorlandCpp-9 (Ignore)

---------------------------------------------------------------------------------

File path: c:\program files\blaster\reading blaster ages 4-6\rb4-6.dll
Publisher: KA
MD5: e79277870b63cd9bd1d1a9e3f318bf59
SHA-1: 4b2e4fbf4bdd1e1ce67233643b24db62314f475b
Created: 11/8/2011 12:23:36 PM
Detections: 1
Determination: Inconclusive
- Prevx as Medium Risk Malware (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\program files\adobe\reader 8.0\reader\adobe_epic.dll
Publisher: Adobe Systems Incorporated
MD5: e168ac37ab342bdcb8b6a083bd851829
SHA-1: c64ea67d34479077a931571ddd796525cf116da2
Created: 9/15/2006 1:20:38 AM
Detections: 1
Determination: Inconclusive
- Bkav FE as HW32.Laneul (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\program files\common files\apple\mobile device support\netdrivers\netaapl.sys
Publisher: Apple Inc.
MD5: 1352e1648213551923a0a822e441553c
SHA-1: 707c1fff231116daf37e27fe21b747405a477fb4
Created: 8/2/2011 4:38:44 PM
Detections: 1
Determination: Inconclusive
- Bkav FE as HW32.Nonim (Undefined malware)

---------------------------------------------------------------------------------

File path: c:\program files\common files\apple\mobile device support\drivers\usbaapl.sys
Publisher: Apple, Inc.
MD5: 8bf5d980cdce35fb26f05047144bb57e
SHA-1: 5fa2d81ee81ba27a2f3dd3b19d35f1f5f5e883a1
Created: 9/28/2012 11:32:56 AM
Detections: 1
Determination: Inconclusive
- Bkav FE as HW32.Nonim (Undefined malware)

johnb35 · Jun 19, 2014

I would say that herdprotect is not a very accurate program. Those files are not malware. Those are legitimate files.

CharmPeddler · Jun 19, 2014

TDSSKILLER came back clean. Let me know if you want the report, its about 350k characters long.

CharmPeddler · Jun 20, 2014

ASWMBR results:
aswMBR version 1.0.1.2041 Copyright(c) 2014 AVAST Software
Run date: 2014-06-19 19:47:56
-----------------------------
19:47:56.448 OS Version: Windows 6.0.6002 Service Pack 2
19:47:56.448 Number of processors: 2 586 0x301
19:47:56.450 ComputerName: OXFORD-PC UserName: oxford
19:48:58.509 Initialize success
19:48:58.509 VM: initialized successfully
19:48:58.515 VM: outdated driver version !
19:49:03.316 AVAST engine defs: 14061800
19:51:11.006 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
19:51:11.010 Disk 0 Vendor: TOSHIBA_MK2555GSX FG001M Size: 238475MB BusType: 3
19:51:11.306 Disk 0 MBR read successfully
19:51:11.309 Disk 0 MBR scan
19:51:11.319 Disk 0 Windows VISTA default MBR code
19:51:11.351 Disk 0 Partition 1 00 27 Hidden NTFS WinRE NTFS 1500 MB offset 2048
19:51:11.370 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 229518 MB offset 3074048
19:51:11.438 Disk 0 Partition 3 00 17 Hidd HPFS/NTFS NTFS 7456 MB offset 473126912
19:51:11.495 Disk 0 scanning sectors +488396800
19:51:11.883 Disk 0 scanning C:\Windows\system32\drivers
19:51:52.491 Service scanning
19:53:39.933 Modules scanning
19:54:19.054 Disk 0 trace - called modules:
19:54:19.091 ntkrnlpa.exe CLASSPNP.SYS disk.sys ataport.SYS hal.dll PCIIDEX.SYS msahci.sys
19:54:19.112 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x86074030]
19:54:19.135 3 CLASSPNP.SYS[8350e8b3] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0x86052030]
19:54:24.511 AVAST engine scan C:\
22:55:04.354 File: C:\Windows\System32\sysprep\check_ac.exe **INFECTED** Win32:Evo-gen [Susp]
03:45:04.358 Scan finished successfully
09:49:23.958 Disk 0 MBR has been saved successfully to "C:\Users\oxford\Desktop\MBR.dat"
09:49:23.958 The log file has been saved successfully to "C:\Users\oxford\Desktop\aswMBR.txt"

johnb35 · Jun 20, 2014

Upload this file to www.virustotal.com and then give me the results link.

C:\Windows\System32\sysprep\check_ac.exe

Upload that file and then click on the scan it button. When you get the results back, copy and paste the url you get into your next reply.

CharmPeddler · Jun 20, 2014

looks to be clear. although when i copied it to the desktop (easier to find and upload) Avast popped up and said it was a virus and locked it down (just the desktop location though)

https://www.virustotal.com/en/file/...9c9c2c84576ed3b59a015d84/analysis/1403269405/

johnb35 · Jun 20, 2014

So did you upload the desktop file or the actual file I told you? I need the original file done. Can't copy the file to a different location.

Scan Results

New Member

New Member

Administrator

New Member

Well-Known Member

Well-Known Member

New Member

New Member

Well-Known Member

New Member

Well-Known Member

New Member

New Member

New Member

Administrator

New Member

New Member

Administrator

New Member

Administrator