API tools faq
paste
Guest User

Untitled

a guest
Jul 9th, 2012
218
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 53.22 KB | None | 0 0
raw download clone embed print report
  1. OTL logfile created on: 7/9/2012 6:44:03 PM - Run 2
  2. OTL by OldTimer - Version 3.2.53.1 Folder = C:\Users\User\Downloads
  3. 64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
  4. Internet Explorer (Version = 9.0.8112.16421)
  5. Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
  6.  
  7. 7.95 Gb Total Physical Memory | 5.76 Gb Available Physical Memory | 72.45% Memory free
  8. 15.89 Gb Paging File | 13.55 Gb Available in Paging File | 85.23% Paging File free
  9. Paging file location(s): ?:\pagefile.sys [binary data]
  10.  
  11. %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
  12. Drive C: | 465.66 Gb Total Space | 2.25 Gb Free Space | 0.48% Space Free | Partition Type: NTFS
  13. Drive D: | 7.87 Gb Total Space | 0.00 Gb Free Space | 0.00% Space Free | Partition Type: UDF
  14.  
  15. Computer Name: USER-PC | User Name: User | Logged in as Administrator.
  16. Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
  17. Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
  18.  
  19. [color=#E56717]========== Processes (SafeList) ==========[/color]
  20.  
  21. PRC - [2012/07/09 17:07:17 | 000,595,968 | ---- | M] (OldTimer Tools) -- C:\Users\User\Downloads\OTL.exe
  22. PRC - [2012/07/07 17:16:37 | 000,076,888 | ---- | M] () -- C:\Windows\SysWOW64\PnkBstrA.exe
  23. PRC - [2012/07/03 12:21:30 | 004,273,976 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
  24. PRC - [2012/07/03 12:21:29 | 000,044,808 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
  25. PRC - [2012/06/22 20:34:12 | 001,535,176 | ---- | M] (Adobe Systems, Inc.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_3_300_262.exe
  26. PRC - [2012/06/19 17:32:30 | 003,048,136 | ---- | M] (Skype Technologies S.A.) -- C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
  27. PRC - [2012/06/19 03:24:35 | 000,529,232 | ---- | M] (Valve Corporation) -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe
  28. PRC - [2012/06/16 00:22:38 | 000,913,888 | ---- | M] (Mozilla Corporation) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
  29. PRC - [2012/04/04 15:56:40 | 000,654,408 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
  30. PRC - [2012/04/04 15:56:38 | 000,462,408 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
  31. PRC - [2012/02/29 13:26:46 | 000,382,272 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
  32. PRC - [2011/10/21 05:09:36 | 000,198,032 | ---- | M] (Lavasoft) -- C:\ProgramData\Ad-Aware Browsing Protection\adawarebp.exe
  33. PRC - [2011/08/19 05:26:50 | 000,450,848 | ---- | M] (Logitech Inc.) -- C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\UMVPFSrv.exe
  34. PRC - [2011/08/12 12:18:42 | 000,205,336 | ---- | M] (Logitech Inc.) -- C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe
  35. PRC - [2011/03/14 10:22:06 | 002,125,472 | ---- | M] (Audible, Inc.) -- C:\Program Files (x86)\Audible\Bin\AudibleDownloadHelper.exe
  36. PRC - [2011/02/15 12:01:48 | 000,019,968 | ---- | M] (Fork Ltd.) -- C:\Prey\platform\windows\cronsvc.exe
  37. PRC - [2009/04/23 06:29:18 | 007,418,368 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
  38. PRC - [2009/04/23 06:29:14 | 007,424,000 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
  39. PRC - [2009/03/30 02:32:40 | 000,032,768 | R--- | M] () -- C:\Windows\DAODx.exe
  40. PRC - [2008/03/28 14:42:00 | 001,242,448 | ---- | M] (Valve Corporation) -- C:\Program Files (x86)\Steam\Steam.exe
  41. PRC - [2004/12/17 10:55:26 | 007,708,672 | ---- | M] () -- C:\Program Files (x86)\NETGEAR\WG311T\wlancfg5.exe
  42.  
  43.  
  44. [color=#E56717]========== Modules (No Company Name) ==========[/color]
  45.  
  46. MOD - [2012/06/22 20:34:12 | 009,459,912 | ---- | M] () -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_3_300_262.dll
  47. MOD - [2012/06/19 03:24:33 | 020,313,384 | ---- | M] () -- C:\Program Files (x86)\Steam\bin\libcef.dll
  48. MOD - [2012/06/19 03:24:31 | 000,895,312 | ---- | M] () -- C:\Program Files (x86)\Steam\bin\chromehtml.dll
  49. MOD - [2012/06/19 03:24:29 | 000,123,192 | ---- | M] () -- C:\Program Files (x86)\Steam\bin\avutil-51.dll
  50. MOD - [2012/06/19 03:24:26 | 000,190,776 | ---- | M] () -- C:\Program Files (x86)\Steam\bin\avformat-53.dll
  51. MOD - [2012/06/19 03:24:24 | 001,099,576 | ---- | M] () -- C:\Program Files (x86)\Steam\bin\avcodec-53.dll
  52. MOD - [2012/06/16 00:22:38 | 002,042,848 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
  53. MOD - [2012/02/29 13:26:28 | 000,360,768 | ---- | M] () -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\Nv3DVStreaming.dll
  54. MOD - [2012/02/20 21:29:04 | 000,087,912 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
  55. MOD - [2012/02/20 21:28:42 | 001,242,472 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
  56. MOD - [2011/08/12 12:18:56 | 000,342,552 | ---- | M] () -- C:\Program Files (x86)\Logitech\LWS\Webcam Software\QTXml4.dll
  57. MOD - [2011/08/12 12:18:56 | 000,128,536 | ---- | M] () -- C:\Program Files (x86)\Logitech\LWS\Webcam Software\ImageFormats\QJpeg4.dll
  58. MOD - [2011/08/12 12:18:56 | 000,029,208 | ---- | M] () -- C:\Program Files (x86)\Logitech\LWS\Webcam Software\ImageFormats\QGif4.dll
  59. MOD - [2011/08/12 12:18:54 | 007,956,504 | ---- | M] () -- C:\Program Files (x86)\Logitech\LWS\Webcam Software\QTGui4.dll
  60. MOD - [2011/08/12 12:18:54 | 002,145,304 | ---- | M] () -- C:\Program Files (x86)\Logitech\LWS\Webcam Software\QTCore4.dll
  61. MOD - [2009/04/16 13:02:16 | 000,970,752 | ---- | M] () -- C:\Program Files (x86)\OpenOffice.org 3\program\libxml2.dll
  62. MOD - [2009/03/30 02:32:40 | 000,032,768 | R--- | M] () -- C:\Windows\DAODx.exe
  63. MOD - [2004/12/20 14:52:16 | 000,065,536 | ---- | M] () -- C:\Program Files (x86)\NETGEAR\WG311T\WlanDll.dll
  64. MOD - [2004/12/17 10:55:26 | 007,708,672 | ---- | M] () -- C:\Program Files (x86)\NETGEAR\WG311T\wlancfg5.exe
  65.  
  66.  
  67. [color=#E56717]========== Win32 Services (SafeList) ==========[/color]
  68.  
  69. SRV:[b]64bit:[/b] - [2012/07/03 12:21:29 | 000,044,808 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
  70. SRV:[b]64bit:[/b] - [2010/10/26 17:42:16 | 005,790,064 | ---- | M] (Wacom Technology, Corp.) [Auto | Running] -- C:\Program Files\Tablet\Pen\Pen_Tablet.exe -- (TabletServicePen)
  71. SRV:[b]64bit:[/b] - [2010/10/26 17:42:16 | 000,487,280 | ---- | M] (Wacom Technology, Corp.) [Auto | Running] -- C:\Program Files\Tablet\Pen\Pen_TouchService.exe -- (TouchServicePen)
  72. SRV - [2012/07/07 20:31:46 | 000,257,224 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
  73. SRV - [2012/07/07 17:16:37 | 000,076,888 | ---- | M] () [Auto | Running] -- C:\Windows\SysWOW64\PnkBstrA.exe -- (PnkBstrA)
  74. SRV - [2012/06/26 15:35:20 | 000,008,704 | ---- | M] (Hi-Rez Studios) [Auto | Stopped] -- C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe -- (HiPatchService)
  75. SRV - [2012/06/19 17:32:30 | 003,048,136 | ---- | M] (Skype Technologies S.A.) [Auto | Running] -- C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe -- (Skype C2C Service)
  76. SRV - [2012/06/19 03:24:35 | 000,529,232 | ---- | M] (Valve Corporation) [On_Demand | Running] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
  77. SRV - [2012/06/16 00:22:38 | 000,113,120 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
  78. SRV - [2012/06/11 15:24:42 | 000,131,912 | ---- | M] (Desura Pty Ltd) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Desura\desura_service.exe -- (Desura Install Service)
  79. SRV - [2012/06/07 19:12:14 | 000,160,944 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
  80. SRV - [2012/04/04 15:56:40 | 000,654,408 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
  81. SRV - [2012/02/29 20:02:00 | 002,348,352 | ---- | M] (NVIDIA Corporation) [Auto | Stopped] -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService)
  82. SRV - [2012/02/29 13:26:46 | 000,382,272 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
  83. SRV - [2011/08/19 05:26:50 | 000,450,848 | ---- | M] (Logitech Inc.) [Auto | Running] -- C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\UMVPFSrv.exe -- (UMVPFSrv)
  84. SRV - [2011/02/15 12:01:48 | 000,019,968 | ---- | M] (Fork Ltd.) [Auto | Running] -- C:\Prey\platform\windows\cronsvc.exe -- (CronService)
  85. SRV - [2010/11/20 08:19:20 | 000,397,824 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysWOW64\inetsrv\iisw3adm.dll -- (WAS)
  86. SRV - [2010/11/20 08:19:20 | 000,397,824 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\inetsrv\iisw3adm.dll -- (W3SVC)
  87. SRV - [2010/11/20 08:18:03 | 000,061,440 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\inetsrv\apphostsvc.dll -- (AppHostSvc)
  88. SRV - [2010/03/18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
  89. SRV - [2009/06/10 17:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
  90.  
  91.  
  92. [color=#E56717]========== Driver Services (SafeList) ==========[/color]
  93.  
  94. DRV:[b]64bit:[/b] - [2012/07/03 12:21:52 | 000,958,400 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\SysNative\drivers\aswSnx.sys -- (aswSnx)
  95. DRV:[b]64bit:[/b] - [2012/07/03 12:21:52 | 000,355,856 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswSP.sys -- (aswSP)
  96. DRV:[b]64bit:[/b] - [2012/07/03 12:21:52 | 000,071,064 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswMonFlt.sys -- (aswMonFlt)
  97. DRV:[b]64bit:[/b] - [2012/07/03 12:21:52 | 000,059,728 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswTdi.sys -- (aswTdi)
  98. DRV:[b]64bit:[/b] - [2012/07/03 12:21:52 | 000,054,072 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswRdr2.sys -- (aswRdr)
  99. DRV:[b]64bit:[/b] - [2012/07/03 12:21:51 | 000,025,232 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswFsBlk.sys -- (aswFsBlk)
  100. DRV:[b]64bit:[/b] - [2012/05/19 14:36:16 | 000,283,200 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01)
  101. DRV:[b]64bit:[/b] - [2012/04/04 15:56:40 | 000,024,904 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\mbam.sys -- (MBAMProtector)
  102. DRV:[b]64bit:[/b] - [2012/03/01 02:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
  103. DRV:[b]64bit:[/b] - [2012/02/15 11:01:50 | 000,052,736 | ---- | M] (Apple, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbaapl64.sys -- (USBAAPL64)
  104. DRV:[b]64bit:[/b] - [2012/01/18 06:44:36 | 004,865,568 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LVUVC64.sys -- (LVUVC64) Logitech Webcam 500(UVC)
  105. DRV:[b]64bit:[/b] - [2012/01/18 06:44:28 | 000,351,136 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\lvrs64.sys -- (LVRS64)
  106. DRV:[b]64bit:[/b] - [2012/01/17 08:45:56 | 000,188,224 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvhda64v.sys -- (NVHDA)
  107. DRV:[b]64bit:[/b] - [2011/08/01 15:59:06 | 000,045,416 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\point64.sys -- (Point64)
  108. DRV:[b]64bit:[/b] - [2011/06/10 06:34:52 | 000,539,240 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
  109. DRV:[b]64bit:[/b] - [2011/03/11 02:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
  110. DRV:[b]64bit:[/b] - [2011/03/11 02:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
  111. DRV:[b]64bit:[/b] - [2011/03/04 01:46:20 | 000,078,976 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amd_sata.sys -- (amd_sata)
  112. DRV:[b]64bit:[/b] - [2011/03/04 01:46:20 | 000,038,528 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amd_xata.sys -- (amd_xata)
  113. DRV:[b]64bit:[/b] - [2011/02/24 10:30:50 | 000,389,608 | ---- | M] (ASMedia Technology Inc) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\asmtxhci.sys -- (asmtxhci)
  114. DRV:[b]64bit:[/b] - [2011/02/24 10:30:50 | 000,126,952 | ---- | M] (ASMedia Technology Inc) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\asmthub3.sys -- (asmthub3)
  115. DRV:[b]64bit:[/b] - [2010/12/16 00:06:46 | 000,047,232 | R--- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\usbfilter.sys -- (usbfilter)
  116. DRV:[b]64bit:[/b] - [2010/11/20 09:33:35 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
  117. DRV:[b]64bit:[/b] - [2010/11/20 07:07:05 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
  118. DRV:[b]64bit:[/b] - [2010/10/11 15:19:36 | 000,018,288 | ---- | M] (Wacom Technology) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\wacmoumonitor.sys -- (wacmoumonitor)
  119. DRV:[b]64bit:[/b] - [2010/10/11 15:19:28 | 000,012,848 | ---- | M] (Wacom Technology) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\wacommousefilter.sys -- (wacommousefilter)
  120. DRV:[b]64bit:[/b] - [2010/10/11 15:19:26 | 000,016,168 | ---- | M] (Wacom Technology) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\wacomvhid.sys -- (wacomvhid)
  121. DRV:[b]64bit:[/b] - [2009/10/07 01:45:50 | 000,030,232 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\LVPr2M64.sys -- (LVPr2M64)
  122. DRV:[b]64bit:[/b] - [2009/10/05 16:34:00 | 001,542,656 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\athrx.sys -- (athr)
  123. DRV:[b]64bit:[/b] - [2009/08/21 01:52:10 | 000,079,976 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\xusb21.sys -- (xusb21)
  124. DRV:[b]64bit:[/b] - [2009/07/13 21:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
  125. DRV:[b]64bit:[/b] - [2009/07/13 21:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
  126. DRV:[b]64bit:[/b] - [2009/07/13 21:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
  127. DRV:[b]64bit:[/b] - [2009/07/13 20:39:20 | 000,023,040 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WSDPrint.sys -- (WSDPrintDevice)
  128. DRV:[b]64bit:[/b] - [2009/07/13 20:35:32 | 000,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\serscan.sys -- (StillCam)
  129. DRV:[b]64bit:[/b] - [2009/06/10 16:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
  130. DRV:[b]64bit:[/b] - [2009/06/10 16:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
  131. DRV:[b]64bit:[/b] - [2009/06/10 16:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
  132. DRV:[b]64bit:[/b] - [2009/06/10 16:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
  133. DRV:[b]64bit:[/b] - [2009/05/18 13:17:08 | 000,034,152 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)
  134. DRV - [2009/07/13 21:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)
  135.  
  136.  
  137. [color=#E56717]========== Standard Registry (SafeList) ==========[/color]
  138.  
  139.  
  140. [color=#E56717]========== Internet Explorer ==========[/color]
  141.  
  142. IE:[b]64bit:[/b] - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
  143. IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
  144. IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
  145. IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
  146. IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
  147.  
  148. IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp
  149. IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-US
  150. IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 73 93 CD 0E 3B 53 CD 01 [binary data]
  151. IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
  152. IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
  153. IE - HKCU\..\SearchScopes\{A531D99C-5A22-449b-83DA-872725C6D0ED}: "URL" = http://search.alot.com/web?q={searchTerms}
  154. IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
  155. IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
  156.  
  157. [color=#E56717]========== FireFox ==========[/color]
  158.  
  159. FF - prefs.js..browser.startup.homepage: "http://www.yahoo.com/"
  160. FF - user.js - File not found
  161.  
  162. FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_3_300_262.dll File not found
  163. FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.4.0: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
  164. FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.4.0: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
  165. FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
  166. FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
  167. FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_3_300_262.dll ()
  168. FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
  169. FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
  170. FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.4.1: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
  171. FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre7\bin\new_plugin\npjp2.dll File not found
  172. FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.4.1: C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll (Oracle Corporation)
  173. FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
  174. FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
  175. FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
  176. FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
  177. FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
  178. FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.0: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
  179. FF - HKLM\Software\MozillaPlugins\@wacom.com/wacom-plugin,version=1.1.0.5: C:\Program Files (x86)\TabletPlugins\npwacom.dll (Wacom, Inc.)
  180. FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
  181. FF - HKCU\Software\MozillaPlugins\ubisoft.com/uplaypc: C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll (Ubisoft)
  182.  
  183. FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\AVAST Software\Avast\WebRep\FF [2012/07/08 18:07:23 | 000,000,000 | ---D | M]
  184. FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 13.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012/07/09 14:44:11 | 000,000,000 | ---D | M]
  185. FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 13.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins
  186. FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 13.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012/07/09 14:44:11 | 000,000,000 | ---D | M]
  187. FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 13.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins
  188.  
  189. [2012/05/02 15:30:24 | 000,000,000 | ---D | M] (No name found) -- C:\Users\User\AppData\Roaming\Mozilla\Extensions
  190. [2012/07/09 14:44:08 | 000,000,000 | ---D | M] (No name found) -- C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\wji57v52.default\extensions
  191. [2012/07/09 14:44:08 | 000,000,000 | ---D | M] (Ad-Aware Security Toolbar) -- C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\wji57v52.default\extensions\{87934c42-161d-45bc-8cef-ef18abe2a30c}
  192. [2012/07/09 14:44:08 | 000,000,000 | ---D | M] (Lavasoft Search Plugin) -- C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\wji57v52.default\extensions\jid1-yZwVFzbsyfMrqQ@jetpack
  193. [2012/06/16 00:22:39 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
  194. [2012/06/22 11:12:39 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
  195. [2012/06/16 00:22:38 | 000,085,472 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
  196. [2012/04/20 21:18:25 | 000,002,252 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml
  197. [2012/04/20 21:18:25 | 000,002,040 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\twitter.xml
  198.  
  199. O1 HOSTS File: ([2009/06/10 17:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
  200. O2:[b]64bit:[/b] - BHO: (avast! WebRep) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
  201. O2:[b]64bit:[/b] - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
  202. O2:[b]64bit:[/b] - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
  203. O2 - BHO: (Ad-Aware Security Toolbar) - {6c97a91e-4524-4019-86af-2aa2d567bf5c} - C:\Program Files (x86)\adawaretb\adawareDx.dll ()
  204. O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
  205. O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
  206. O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
  207. O3:[b]64bit:[/b] - HKLM\..\Toolbar: (avast! WebRep) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
  208. O3 - HKLM\..\Toolbar: (Ad-Aware Security Toolbar) - {6c97a91e-4524-4019-86af-2aa2d567bf5c} - C:\Program Files (x86)\adawaretb\adawareDx.dll ()
  209. O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
  210. O4:[b]64bit:[/b] - HKLM..\Run: [IntelliPoint] c:\Program Files\Microsoft IntelliPoint\ipoint.exe (Microsoft Corporation)
  211. O4:[b]64bit:[/b] - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
  212. O4:[b]64bit:[/b] - HKLM..\Run: [XboxStat] C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe (Microsoft Corporation)
  213. O4 - HKLM..\Run: [Ad-Aware Browsing Protection] C:\ProgramData\Ad-Aware Browsing Protection\adawarebp.exe (Lavasoft)
  214. O4 - HKLM..\Run: [amd_dc_opt] C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe (AMD)
  215. O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
  216. O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software)
  217. O4 - HKLM..\Run: [LWS] C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe (Logitech Inc.)
  218. O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
  219. O4 - HKCU..\Run: [DAEMON Tools Lite] C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
  220. O4 - HKCU..\Run: [Steam] C:\Program Files (x86)\Steam\Steam.exe (Valve Corporation)
  221. O4 - Startup: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.1.lnk = C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe ()
  222. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
  223. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
  224. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
  225. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
  226. O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
  227. O9 - Extra 'Tools' menuitem : Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
  228. O10:[b]64bit:[/b] - NameSpace_Catalog5\Catalog_Entries64\000000000005 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
  229. O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
  230. O13[b]64bit:[/b] - gopher Prefix: missing
  231. O13 - gopher Prefix: missing
  232. O15 - HKCU\..Trusted Domains: clonewarsadventures.com ([]* in Trusted sites)
  233. O15 - HKCU\..Trusted Domains: freerealms.com ([]* in Trusted sites)
  234. O15 - HKCU\..Trusted Domains: soe.com ([]* in Trusted sites)
  235. O15 - HKCU\..Trusted Domains: sony.com ([]* in Trusted sites)
  236. O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.7.0/jinstall-1_7_0_04-windows-i586.cab (Java Plug-in 10.4.0)
  237. O16 - DPF: {CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_25-windows-i586.cab (Java Plug-in 1.6.0_25)
  238. O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_25-windows-i586.cab (Java Plug-in 1.7.0_04)
  239. O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 24.247.24.53 66.189.0.100 24.178.162.3
  240. O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{925EA149-B9B9-42B6-B10E-B0665CC24189}: DhcpNameServer = 24.247.24.53 66.189.0.100 24.178.162.3
  241. O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{9D8321D9-E93D-4A33-9AA7-83EA8B7C05AF}: DhcpNameServer = 24.247.24.53 66.189.0.100 24.178.162.3
  242. O18:[b]64bit:[/b] - Protocol\Handler\skype4com - No CLSID value found
  243. O18:[b]64bit:[/b] - Protocol\Handler\skype-ie-addon-data - No CLSID value found
  244. O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
  245. O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
  246. O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
  247. O20:[b]64bit:[/b] - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
  248. O20:[b]64bit:[/b] - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
  249. O20:[b]64bit:[/b] - HKLM Winlogon: VMApplet - (/pagefile) - File not found
  250. O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
  251. O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
  252. O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
  253. O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
  254. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
  255. O32 - HKLM CDRom: AutoRun - 1
  256. O32 - AutoRun File - [2011/10/24 05:35:04 | 000,161,070 | R--- | M] () - D:\autorun.ico -- [ UDF ]
  257. O32 - AutoRun File - [2011/10/24 05:34:22 | 000,000,047 | R--- | M] () - D:\autorun.inf -- [ UDF ]
  258. O33 - MountPoints2\{4f0c5e68-9498-11e1-bf53-806e6f6e6963}\Shell - "" = AutoRun
  259. O33 - MountPoints2\{4f0c5e68-9498-11e1-bf53-806e6f6e6963}\Shell\AutoRun\command - "" = D:\Setup.exe -- [2011/10/24 05:35:04 | 000,378,144 | R--- | M] (Microsoft Corporation)
  260. O34 - HKLM BootExecute: (autocheck autochk *)
  261. O35:[b]64bit:[/b] - HKLM\..comfile [open] -- "%1" %*
  262. O35:[b]64bit:[/b] - HKLM\..exefile [open] -- "%1" %*
  263. O35 - HKLM\..comfile [open] -- "%1" %*
  264. O35 - HKLM\..exefile [open] -- "%1" %*
  265. O37:[b]64bit:[/b] - HKLM\...com [@ = comfile] -- "%1" %*
  266. O37:[b]64bit:[/b] - HKLM\...exe [@ = exefile] -- "%1" %*
  267. O37 - HKLM\...com [@ = comfile] -- "%1" %*
  268. O37 - HKLM\...exe [@ = exefile] -- "%1" %*
  269. O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
  270. O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
  271. O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
  272.  
  273. [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
  274.  
  275. [2012/07/09 18:36:30 | 000,000,000 | ---D | C] -- C:\Windows\SysNative
  276. [2012/07/09 18:36:06 | 000,000,000 | ---D | C] -- C:\_OTL
  277. [2012/07/09 17:50:56 | 004,731,392 | ---- | C] (AVAST Software) -- C:\Users\User\Desktop\aswMBR.exe
  278. [2012/07/09 17:08:53 | 000,000,000 | ---D | C] -- C:\ProgramData\GFI Software
  279. [2012/07/09 17:07:57 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Roaming\Malwarebytes
  280. [2012/07/09 17:07:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
  281. [2012/07/09 17:07:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
  282. [2012/07/09 17:07:51 | 000,024,904 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
  283. [2012/07/09 17:07:51 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
  284. [2012/07/09 15:14:24 | 000,000,000 | ---D | C] -- C:\Users\User\Documents\dnschanger-stinger
  285. [2012/07/09 14:44:57 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Local\adaware
  286. [2012/07/09 14:44:10 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Local\adawarebp
  287. [2012/07/09 14:44:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Ad-Aware Browsing Protection
  288. [2012/07/09 14:44:09 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Toolbar Cleaner
  289. [2012/07/09 14:44:07 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\adawaretb
  290. [2012/07/08 21:42:57 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Local\SCE
  291. [2012/07/08 03:00:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\World of Warcraft
  292. [2012/07/08 03:00:05 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\World of Warcraft
  293. [2012/07/08 03:00:05 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Blizzard Entertainment
  294. [2012/07/08 02:59:51 | 000,000,000 | ---D | C] -- C:\ProgramData\Blizzard Entertainment
  295. [2012/07/07 20:34:59 | 000,000,000 | -HSD | C] -- C:\Windows\SysNative\%APPDATA%
  296. [2012/07/07 17:16:10 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Local\PunkBuster
  297. [2012/07/07 13:51:50 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Wise Installation Wizard
  298. [2012/07/03 10:20:30 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Prey
  299. [2012/07/03 10:20:29 | 000,000,000 | ---D | C] -- C:\Prey
  300. [2012/07/03 10:19:20 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GoldenEye Source v4.1
  301. [2012/07/01 03:09:17 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
  302. [2012/07/01 03:08:59 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
  303. [2012/07/01 03:08:59 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\iTunes
  304. [2012/07/01 03:08:59 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
  305. [2012/07/01 03:06:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
  306. [2012/06/28 03:24:07 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Local\Chromium
  307. [2012/06/28 03:23:06 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Chart Controls
  308. [2012/06/28 03:20:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hi-Rez Studios
  309. [2012/06/28 03:20:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Hi-Rez Studios
  310. [2012/06/28 03:20:13 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Hi-Rez Studios
  311. [2012/06/25 00:00:09 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Local\201280
  312. [2012/06/24 00:27:36 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Local\dxhr
  313. [2012/06/24 00:25:12 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Local\28050
  314. [2012/06/23 15:48:13 | 000,000,000 | ---D | C] -- C:\Users\User\Documents\Telltale Games
  315. [2012/06/23 15:46:12 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Telltale Games
  316. [2012/06/23 15:39:25 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Roaming\LoneSurvivor
  317. [2012/06/22 11:15:39 | 002,622,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wucltux.dll
  318. [2012/06/22 11:15:39 | 000,057,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuauclt.exe
  319. [2012/06/22 11:15:39 | 000,044,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wups2.dll
  320. [2012/06/22 11:15:26 | 000,701,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuapi.dll
  321. [2012/06/22 11:15:26 | 000,099,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wudriver.dll
  322. [2012/06/22 11:15:26 | 000,038,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wups.dll
  323. [2012/06/22 11:15:16 | 000,186,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuwebv.dll
  324. [2012/06/22 11:15:16 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuapp.exe
  325. [2012/06/19 17:53:13 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Fraps
  326. [2012/06/16 09:21:45 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Local\Macromedia
  327. [2012/06/15 10:56:33 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Roaming\cYo
  328. [2012/06/15 10:56:33 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Local\cYo
  329. [2012/06/15 10:55:48 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ComicRack
  330. [2012/06/15 10:55:47 | 000,000,000 | ---D | C] -- C:\Program Files\ComicRack
  331. [2012/06/13 03:01:07 | 000,096,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll
  332. [2012/06/13 03:01:07 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
  333. [2012/06/13 03:01:06 | 000,237,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll
  334. [2012/06/13 03:01:06 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll
  335. [2012/06/13 03:01:05 | 000,248,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
  336. [2012/06/13 03:01:05 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
  337. [2012/06/13 03:01:05 | 000,173,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe
  338. [2012/06/13 03:01:05 | 000,142,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe
  339. [2012/06/13 03:01:03 | 002,311,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
  340. [2012/06/13 03:01:03 | 001,494,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl
  341. [2012/06/13 03:01:03 | 001,427,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
  342. [2012/06/13 03:01:02 | 000,818,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
  343. [2012/06/13 03:01:02 | 000,716,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
  344. [2012/06/12 20:27:41 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Audible
  345. [2012/06/12 20:27:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AudibleManager
  346. [2012/06/12 20:27:40 | 000,000,000 | ---D | C] -- C:\Users\User\Documents\Audible
  347. [2012/06/12 20:27:40 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Audible
  348. [2012/06/12 15:19:03 | 000,149,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpcorekmts.dll
  349. [2012/06/12 15:19:03 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpwsx.dll
  350. [2012/06/12 15:19:03 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdrmemptylst.exe
  351. [2012/06/12 15:19:01 | 005,559,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe
  352. [2012/06/12 15:19:00 | 003,913,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntoskrnl.exe
  353. [2012/06/12 15:18:59 | 003,968,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntkrnlpa.exe
  354. [2012/06/12 15:18:55 | 003,216,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msi.dll
  355. [2012/06/12 15:18:49 | 001,462,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\crypt32.dll
  356. [2012/06/12 15:18:44 | 000,140,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cryptnet.dll
  357. [2012/06/12 06:11:11 | 000,000,000 | ---D | C] -- C:\Fraps
  358. [2012/06/11 15:25:16 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Local\Desura
  359. [2012/06/11 15:24:50 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Desura
  360. [2012/06/11 15:14:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Desura
  361. [2012/06/11 15:14:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Desura
  362. [2012/06/11 15:14:08 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Desura
  363. [2012/06/10 17:13:45 | 000,000,000 | ---D | C] -- C:\Users\User\Documents\BotaniculaSaves
  364. [2 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
  365.  
  366. [color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
  367.  
  368. [2012/07/09 18:47:17 | 000,014,832 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
  369. [2012/07/09 18:47:17 | 000,014,832 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
  370. [2012/07/09 18:40:12 | 000,000,029 | ---- | M] () -- C:\Windows\SysWow64\TempWmicBatchFile.bat
  371. [2012/07/09 18:38:25 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
  372. [2012/07/09 18:38:19 | 000,000,000 | ---- | M] () -- C:\Windows\SysNative\drivers\lvuvc.hs
  373. [2012/07/09 18:38:12 | 2105,356,287 | -HS- | M] () -- C:\hiberfil.sys
  374. [2012/07/09 18:34:10 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
  375. [2012/07/09 17:51:13 | 004,731,392 | ---- | M] (AVAST Software) -- C:\Users\User\Desktop\aswMBR.exe
  376. [2012/07/09 14:53:28 | 000,000,000 | ---- | M] () -- C:\Windows\SysNative\SBRC.dat
  377. [2012/07/08 18:07:24 | 000,000,000 | ---- | M] () -- C:\Windows\SysWow64\config.nt
  378. [2012/07/08 03:00:13 | 000,001,064 | ---- | M] () -- C:\Users\Public\Desktop\World of Warcraft.lnk
  379. [2012/07/07 21:54:46 | 000,298,016 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.xtr
  380. [2012/07/07 21:54:46 | 000,298,016 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.exe
  381. [2012/07/07 21:44:02 | 000,298,016 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.ex0
  382. [2012/07/07 20:31:46 | 000,426,184 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
  383. [2012/07/07 20:31:46 | 000,070,344 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
  384. [2012/07/07 17:16:37 | 000,076,888 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrA.exe
  385. [2012/07/05 01:29:35 | 003,130,440 | ---- | M] () -- C:\Windows\SysWow64\pbsvc_blr.exe
  386. [2012/07/03 12:21:52 | 000,958,400 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSnx.sys
  387. [2012/07/03 12:21:52 | 000,355,856 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSP.sys
  388. [2012/07/03 12:21:52 | 000,071,064 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswMonFlt.sys
  389. [2012/07/03 12:21:52 | 000,059,728 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswTdi.sys
  390. [2012/07/03 12:21:52 | 000,054,072 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswRdr2.sys
  391. [2012/07/03 12:21:51 | 000,025,232 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswFsBlk.sys
  392. [2012/07/03 12:21:32 | 000,041,224 | ---- | M] (AVAST Software) -- C:\Windows\avastSS.scr
  393. [2012/07/03 12:21:28 | 000,227,648 | ---- | M] (AVAST Software) -- C:\Windows\SysWow64\aswBoot.exe
  394. [2012/07/03 12:21:18 | 000,285,328 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\aswBoot.exe
  395. [2012/07/03 10:19:20 | 000,001,971 | ---- | M] () -- C:\Users\Public\Desktop\GoldenEye Souce v4.1.lnk
  396. [2012/07/02 14:55:40 | 000,001,066 | ---- | M] () -- C:\Users\User\Desktop\GBA.lnk
  397. [2012/07/02 14:55:28 | 000,000,617 | ---- | M] () -- C:\Users\User\Desktop\DS.lnk
  398. [2012/07/01 03:09:17 | 000,001,783 | ---- | M] () -- C:\Users\Public\Desktop\iTunes.lnk
  399. [2012/06/29 19:52:18 | 000,102,691 | ---- | M] () -- C:\Users\User\Documents\ERMAHGERD.jpg
  400. [2012/06/28 21:10:43 | 000,023,447 | ---- | M] () -- C:\Users\User\Documents\Betakey!.png
  401. [2012/06/24 19:00:56 | 000,000,222 | ---- | M] () -- C:\Users\User\Desktop\Deus Ex Human Revolution - The Missing Link.url
  402. [2012/06/24 19:00:52 | 000,000,221 | ---- | M] () -- C:\Users\User\Desktop\Deus Ex Human Revolution.url
  403. [2012/06/24 12:49:49 | 000,000,727 | ---- | M] () -- C:\Users\User\Desktop\Lone Survivor.lnk
  404. [2012/06/19 17:53:13 | 000,000,572 | ---- | M] () -- C:\Users\User\Desktop\Fraps.lnk
  405. [2012/06/19 16:00:21 | 000,000,221 | ---- | M] () -- C:\Users\User\Desktop\The Witcher 2 Assassin of Kings Enhanced Edition.url
  406. [2012/06/19 16:00:09 | 000,000,221 | ---- | M] () -- C:\Users\User\Desktop\Osmos.url
  407. [2012/06/15 10:55:48 | 000,000,840 | ---- | M] () -- C:\Users\Public\Desktop\ComicRack.lnk
  408. [2012/06/13 03:25:22 | 000,286,568 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
  409. [2012/06/13 03:07:42 | 000,871,586 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
  410. [2012/06/13 03:07:42 | 000,717,764 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
  411. [2012/06/13 03:07:42 | 000,140,256 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
  412. [2012/06/13 01:32:39 | 000,000,136 | ---- | M] () -- C:\Users\User\Desktop\Batman Arkham City™ - Shortcut.lnk
  413. [2012/06/12 20:27:40 | 000,002,115 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Audible Download Manager.lnk
  414. [2012/06/12 06:13:12 | 000,011,505 | ---- | M] () -- C:\Users\User\Documents\Academic Statement of Purpose.odt
  415. [2012/06/11 15:26:15 | 000,001,234 | ---- | M] () -- C:\Users\User\Desktop\Project Zomboid.lnk
  416. [2012/06/11 15:14:09 | 000,001,859 | ---- | M] () -- C:\Users\Public\Desktop\Desura.lnk
  417. [2012/06/10 22:50:19 | 000,001,121 | ---- | M] () -- C:\Users\User\Desktop\Battle for Wesnoth.lnk
  418. [2012/06/10 22:48:22 | 000,000,221 | ---- | M] () -- C:\Users\User\Desktop\Assassin's Creed Brotherhood.url
  419. [2 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
  420.  
  421. [color=#E56717]========== Files Created - No Company Name ==========[/color]
  422.  
  423. [2012/07/09 14:53:28 | 000,000,000 | ---- | C] () -- C:\Windows\SysNative\SBRC.dat
  424. [2012/07/08 03:00:05 | 000,001,064 | ---- | C] () -- C:\Users\Public\Desktop\World of Warcraft.lnk
  425. [2012/07/07 17:16:15 | 000,298,016 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.xtr
  426. [2012/07/07 13:52:15 | 003,130,440 | ---- | C] () -- C:\Windows\SysWow64\pbsvc_blr.exe
  427. [2012/07/03 11:24:51 | 000,000,029 | ---- | C] () -- C:\Windows\SysWow64\TempWmicBatchFile.bat
  428. [2012/07/03 10:19:20 | 000,001,971 | ---- | C] () -- C:\Users\Public\Desktop\GoldenEye Souce v4.1.lnk
  429. [2012/07/02 14:55:40 | 000,001,066 | ---- | C] () -- C:\Users\User\Desktop\GBA.lnk
  430. [2012/07/02 14:55:28 | 000,000,617 | ---- | C] () -- C:\Users\User\Desktop\DS.lnk
  431. [2012/07/01 03:09:17 | 000,001,783 | ---- | C] () -- C:\Users\Public\Desktop\iTunes.lnk
  432. [2012/06/29 19:51:52 | 000,102,691 | ---- | C] () -- C:\Users\User\Documents\ERMAHGERD.jpg
  433. [2012/06/28 21:10:37 | 000,023,447 | ---- | C] () -- C:\Users\User\Documents\Betakey!.png
  434. [2012/06/24 19:00:56 | 000,000,222 | ---- | C] () -- C:\Users\User\Desktop\Deus Ex Human Revolution - The Missing Link.url
  435. [2012/06/24 19:00:52 | 000,000,221 | ---- | C] () -- C:\Users\User\Desktop\Deus Ex Human Revolution.url
  436. [2012/06/24 12:49:49 | 000,000,727 | ---- | C] () -- C:\Users\User\Desktop\Lone Survivor.lnk
  437. [2012/06/19 17:53:13 | 000,000,572 | ---- | C] () -- C:\Users\User\Desktop\Fraps.lnk
  438. [2012/06/19 16:00:21 | 000,000,221 | ---- | C] () -- C:\Users\User\Desktop\The Witcher 2 Assassin of Kings Enhanced Edition.url
  439. [2012/06/15 10:55:48 | 000,000,840 | ---- | C] () -- C:\Users\Public\Desktop\ComicRack.lnk
  440. [2012/06/13 01:32:39 | 000,000,136 | ---- | C] () -- C:\Users\User\Desktop\Batman Arkham City™ - Shortcut.lnk
  441. [2012/06/12 20:27:40 | 000,002,115 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Audible Download Manager.lnk
  442. [2012/06/11 15:26:15 | 000,001,234 | ---- | C] () -- C:\Users\User\Desktop\Project Zomboid.lnk
  443. [2012/06/11 15:14:09 | 000,001,859 | ---- | C] () -- C:\Users\Public\Desktop\Desura.lnk
  444. [2012/06/10 22:50:19 | 000,001,121 | ---- | C] () -- C:\Users\User\Desktop\Battle for Wesnoth.lnk
  445. [2012/06/10 00:53:32 | 000,011,505 | ---- | C] () -- C:\Users\User\Documents\Academic Statement of Purpose.odt
  446. [2012/05/20 22:44:06 | 000,000,292 | ---- | C] () -- C:\Windows\vtmb.ini
  447. [2012/05/05 12:43:32 | 000,298,016 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.exe
  448. [2012/05/05 12:43:31 | 000,076,888 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrA.exe
  449. [2012/05/05 12:17:01 | 000,851,432 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
  450. [2012/05/03 17:14:16 | 000,000,296 | ---- | C] () -- C:\Windows\game.ini
  451. [2012/02/29 13:26:56 | 000,416,064 | ---- | C] () -- C:\Windows\SysWow64\nvStreaming.exe
  452. [2011/09/28 17:44:14 | 000,179,271 | ---- | C] () -- C:\Windows\SysWow64\xlive.dll.cat
  453. [2011/08/19 05:26:20 | 010,898,456 | ---- | C] () -- C:\Windows\SysWow64\LogiDPP.dll
  454. [2011/08/19 05:26:20 | 000,336,408 | ---- | C] () -- C:\Windows\SysWow64\DevManagerCore.dll
  455. [2011/08/19 05:26:20 | 000,104,472 | ---- | C] () -- C:\Windows\SysWow64\LogiDPPApp.exe
  456.  
  457. [color=#E56717]========== Custom Scans ==========[/color]
  458.  
  459. [color=#A23BEC]< MD5 for: SERVICES >[/color]
  460. [2009/06/10 17:00:26 | 000,017,463 | ---- | M] () MD5=D9E1A01B480D961B7CF0509D597A92D6 -- C:\Windows\SysNative\drivers\etc\services
  461. [2009/06/10 17:00:26 | 000,017,463 | ---- | M] () MD5=D9E1A01B480D961B7CF0509D597A92D6 -- C:\Windows\winsxs\amd64_microsoft-windows-w..nfrastructure-other_31bf3856ad364e35_6.1.7600.16385_none_6079f415110c0210\services
  462.  
  463. [color=#A23BEC]< MD5 for: SERVICES.EXE >[/color]
  464. [2009/07/13 21:39:37 | 000,328,704 | ---- | M] (Microsoft Corporation) MD5=014A9CB92514E27C0107614DF764BC06 -- C:\Windows\SysNative\services.exe
  465. [2009/07/13 21:39:37 | 000,328,704 | ---- | M] (Microsoft Corporation) MD5=014A9CB92514E27C0107614DF764BC06 -- C:\Windows\SysNative\services.exe
  466. [2009/07/13 21:39:37 | 000,328,704 | ---- | M] (Microsoft Corporation) MD5=24ACB7E5BE595468E3B9AA488B9B4FCB -- C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_2b54b20ee6fa07b1\services.exe
  467.  
  468. [color=#A23BEC]< MD5 for: SERVICES.EXE.MUI >[/color]
  469. [2009/07/13 22:25:40 | 000,017,408 | ---- | M] (Microsoft Corporation) MD5=6507BF0DC2D1F5F32493C288EAA59277 -- C:\Windows\SysNative\en-US\services.exe.mui
  470. [2009/07/13 22:25:40 | 000,017,408 | ---- | M] (Microsoft Corporation) MD5=6507BF0DC2D1F5F32493C288EAA59277 -- C:\Windows\SysNative\en-US\services.exe.mui
  471. [2009/07/13 22:25:40 | 000,017,408 | ---- | M] (Microsoft Corporation) MD5=6507BF0DC2D1F5F32493C288EAA59277 -- C:\Windows\winsxs\amd64_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.1.7600.16385_en-us_c5f238be3fa63468\services.exe.mui
  472.  
  473. [color=#A23BEC]< MD5 for: SERVICES.LNK >[/color]
  474. [2009/07/14 00:54:05 | 000,001,288 | ---- | M] () MD5=CA0D9F4743DFF86EBAF09D763139E958 -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\services.lnk
  475. [2009/07/14 00:54:05 | 000,001,288 | ---- | M] () MD5=CA0D9F4743DFF86EBAF09D763139E958 -- C:\Users\All Users\Microsoft\Windows\Start Menu\Programs\Administrative Tools\services.lnk
  476.  
  477. [color=#A23BEC]< MD5 for: SERVICES.MOF >[/color]
  478. [2009/06/10 16:44:06 | 000,002,866 | ---- | M] () MD5=26A11C895A7F0B6D32105EBE127D8500 -- C:\Windows\SysNative\wbem\services.mof
  479. [2009/06/10 16:44:06 | 000,002,866 | ---- | M] () MD5=26A11C895A7F0B6D32105EBE127D8500 -- C:\Windows\SysNative\wbem\services.mof
  480. [2009/06/10 16:44:06 | 000,002,866 | ---- | M] () MD5=26A11C895A7F0B6D32105EBE127D8500 -- C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_2b54b20ee6fa07b1\services.mof
  481.  
  482. [color=#A23BEC]< MD5 for: SERVICES.MSC >[/color]
  483. [2009/07/13 22:23:30 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\SysNative\en-US\services.msc
  484. [2009/07/13 22:23:30 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\SysNative\en-US\services.msc
  485. [2009/06/10 16:38:36 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\SysNative\services.msc
  486. [2009/06/10 16:38:36 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\SysNative\services.msc
  487. [2009/07/13 22:08:50 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\SysWOW64\en-US\services.msc
  488. [2009/06/10 17:21:09 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\SysWOW64\services.msc
  489. [2009/07/13 22:23:30 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\winsxs\amd64_microsoft-windows-s..cessnapin.resources_31bf3856ad364e35_6.1.7600.16385_en-us_003408aa160fce5b\services.msc
  490. [2009/06/10 16:38:36 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\winsxs\amd64_microsoft-windows-servicessnapin_31bf3856ad364e35_6.1.7600.16385_none_2b58d44b5f6beb8a\services.msc
  491. [2009/07/13 22:08:50 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\winsxs\x86_microsoft-windows-s..cessnapin.resources_31bf3856ad364e35_6.1.7600.16385_en-us_a4156d265db25d25\services.msc
  492. [2009/06/10 17:21:09 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\winsxs\x86_microsoft-windows-servicessnapin_31bf3856ad364e35_6.1.7600.16385_none_cf3a38c7a70e7a54\services.msc
  493.  
  494. [color=#A23BEC]< MD5 for: SERVICES.PTXML >[/color]
  495. [2009/07/13 16:16:17 | 000,001,061 | ---- | M] () MD5=640D7DD61B1CFA6C96F80F68F78CDFA7 -- C:\Windows\SysNative\wdi\perftrack\Services.ptxml
  496. [2009/07/13 16:16:17 | 000,001,061 | ---- | M] () MD5=640D7DD61B1CFA6C96F80F68F78CDFA7 -- C:\Windows\SysNative\wdi\perftrack\Services.ptxml
  497. [2009/07/13 16:16:17 | 000,001,061 | ---- | M] () MD5=640D7DD61B1CFA6C96F80F68F78CDFA7 -- C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_2b54b20ee6fa07b1\Services.ptxml
  498.  
  499. [color=#A23BEC]< MD5 for: SERVICES.RDB >[/color]
  500. [2009/04/24 00:34:14 | 005,472,256 | ---- | M] () MD5=81CCB59A28A03DB55807B883CB679027 -- C:\Program Files (x86)\OpenOffice.org 3\Basis\program\services.rdb
  501. [2009/04/24 00:35:04 | 000,262,144 | ---- | M] () MD5=81CCB59A28A03DB55807B883CB679027 -- C:\Program Files (x86)\OpenOffice.org 3\URE\misc\services.rdb
  502. [2009/04/24 00:34:14 | 005,472,256 | ---- | M] () MD5=81CCB59A28A03DB55807B883CB679027 -- C:\Users\User\AppData\Local\Temp\services.rdb
  503.  
  504. < End of report >
Advertisement
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!