API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Nov 27th, 2011
291
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 76.43 KB | None | 0 0
raw download clone embed print report
  1. OTL logfile created on: 11/27/2011 10:09:49 AM - Run 2
  2. OTL by OldTimer - Version 3.2.31.0 Folder = C:\Users\Oliver Tran\Desktop\New folder
  3. 64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
  4. Internet Explorer (Version = 9.0.8112.16421)
  5. Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
  6.  
  7. 3.75 Gb Total Physical Memory | 2.03 Gb Available Physical Memory | 54.27% Memory free
  8. 7.49 Gb Paging File | 5.32 Gb Available in Paging File | 70.94% Paging File free
  9. Paging file location(s): ?:\pagefile.sys [binary data]
  10.  
  11. %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
  12. Drive C: | 250.63 Gb Total Space | 45.68 Gb Free Space | 18.22% Space Free | Partition Type: NTFS
  13. Drive D: | 47.46 Gb Total Space | 35.53 Gb Free Space | 74.86% Space Free | Partition Type: NTFS
  14.  
  15. Computer Name: OLIVERS-PC | User Name: Oliver Tran | Logged in as Administrator.
  16. Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
  17. Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
  18.  
  19. [color=#E56717]========== Processes (SafeList) ==========[/color]
  20.  
  21. PRC - C:\Users\Oliver Tran\Desktop\New folder\OTL.exe (OldTimer Tools)
  22. PRC - C:\Users\Oliver Tran\AppData\Local\Google\Google Talk Plugin\googletalkplugin.exe (Google)
  23. PRC - C:\Program Files (x86)\IObit\Advanced SystemCare 5\ASCTray.exe (IObit)
  24. PRC - C:\Program Files (x86)\IObit\Advanced SystemCare 5\ASCService.exe (IObit)
  25. PRC - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\ATH.exe (Apple Inc.)
  26. PRC - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\SyncServer.exe (Apple Inc.)
  27. PRC - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
  28. PRC - C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe (ESET)
  29. PRC - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
  30. PRC - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
  31. PRC - C:\Program Files (x86)\TeamViewer\Version6\TeamViewer_Service.exe (TeamViewer GmbH)
  32. PRC - C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe (WIBU-SYSTEMS AG)
  33. PRC - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
  34. PRC - C:\Windows\qnote.exe (The High Roller © Inc.)
  35. PRC - C:\Windows\SysWOW64\wbem\WmiPrvSE.exe (Microsoft Corporation)
  36. PRC - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe (Adobe Systems Incorporated)
  37. PRC - C:\Program Files (x86)\MagicDisc\MagicDisc.exe (MagicISO, Inc.)
  38. PRC - C:\Program Files (x86)\SMINST\BLService.exe ()
  39.  
  40.  
  41. [color=#E56717]========== Modules (No Company Name) ==========[/color]
  42.  
  43. MOD - C:\Users\Oliver Tran\AppData\Local\Google\Chrome\Application\15.0.874.121\ppgooglenaclpluginchrome.dll ()
  44. MOD - C:\Users\Oliver Tran\AppData\Local\Google\Chrome\Application\15.0.874.121\pdf.dll ()
  45. MOD - C:\Users\Oliver Tran\AppData\Local\Google\Chrome\Application\15.0.874.121\avutil-51.dll ()
  46. MOD - C:\Users\Oliver Tran\AppData\Local\Google\Chrome\Application\15.0.874.121\avformat-53.dll ()
  47. MOD - C:\Users\Oliver Tran\AppData\Local\Google\Chrome\Application\15.0.874.121\avcodec-53.dll ()
  48. MOD - C:\Users\Oliver Tran\AppData\Local\Google\Chrome\Application\15.0.874.121\gcswf32.dll ()
  49. MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualBas#\32f68764be7200d3796b55e377311245\Microsoft.VisualBasic.ni.dll ()
  50. MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\b2622080e047040fa044dd21a04ff10d\System.Runtime.Remoting.ni.dll ()
  51. MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\6e592e424a204aafeadbe22b6b31b9db\System.Windows.Forms.ni.dll ()
  52. MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\3b2cfd85528a27eb71dc41d8067359a1\System.Drawing.ni.dll ()
  53. MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\130ad4d9719e566ca933ac7158a04203\System.Xml.ni.dll ()
  54. MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\2d5bcbeb9475ef62189f605bcca1cec6\System.Configuration.ni.dll ()
  55. MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System\abab08afa60a6f06bdde0fcc9649c379\System.ni.dll ()
  56. MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\a1a82db68b3badc7c27ea1f6579d22c5\mscorlib.ni.dll ()
  57. MOD - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll ()
  58. MOD - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll ()
  59.  
  60.  
  61. [color=#E56717]========== Win32 Services (SafeList) ==========[/color]
  62.  
  63. SRV:[b]64bit:[/b] - (ekrn) -- C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe (ESET)
  64. SRV:[b]64bit:[/b] - (!SASCORE) -- C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE (SUPERAntiSpyware.com)
  65. SRV:[b]64bit:[/b] - (hpsrv) -- C:\Windows\SysNative\hpservice.exe (Hewlett-Packard Company)
  66. SRV:[b]64bit:[/b] - (UxTuneUp) -- C:\Windows\SysNative\uxtuneup.dll (TuneUp Software)
  67. SRV:[b]64bit:[/b] - (STacSV) -- C:\Windows\SysNative\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_960c1f056a541068\stacsv64.exe (IDT, Inc.)
  68. SRV:[b]64bit:[/b] - (AMD External Events Utility) -- C:\Windows\SysNative\atiesrxx.exe (AMD)
  69. SRV:[b]64bit:[/b] - (WinDefend) -- C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
  70. SRV:[b]64bit:[/b] - (AppMgmt) -- C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)
  71. SRV:[b]64bit:[/b] - (AESTFilters) -- C:\Windows\SysNative\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_960c1f056a541068\AESTSr64.exe (Andrea Electronics Corporation)
  72. SRV:[b]64bit:[/b] - (AgereModemAudio) -- C:\Program Files\LSI SoftModem\agr64svc.exe (Agere Systems)
  73. SRV - (AdvancedSystemCareService5) -- C:\Program Files (x86)\IObit\Advanced SystemCare 5\ASCService.exe (IObit)
  74. SRV - (IHA_MessageCenter) -- C:\Program Files (x86)\Verizon\IHA_MessageCenter\Bin\Verizon_IHAMessageCenter.exe (Verizon)
  75. SRV - (MBAMService) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
  76. SRV - (TeamViewer6) -- C:\Program Files (x86)\TeamViewer\Version6\TeamViewer_Service.exe (TeamViewer GmbH)
  77. SRV - (CodeMeter.exe) -- C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe (WIBU-SYSTEMS AG)
  78. SRV - (cmdagent) -- C:\Program Files (x86)\COMODO\COMODO Internet Security\cmdagent.exe (COMODO)
  79. SRV - (AdobeARMservice) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
  80. SRV - (UxTuneUp) -- C:\Windows\SysWOW64\uxtuneup.dll (TuneUp Software)
  81. SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation)
  82. SRV - (SwitchBoard) -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
  83. SRV - (clr_optimization_v2.0.50727_32) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation)
  84. SRV - (Recovery Service for Windows) -- C:\Program Files (x86)\SMINST\BLService.exe ()
  85. SRV - (TVCapSvc) TV Background Capture Service (TVBCS) -- C:\Program Files (x86)\Hewlett-Packard\Media\TV\Kernel\TV\TVCapSvc.exe ()
  86. SRV - (TVSched) TV Task Scheduler (TVTS) -- C:\Program Files (x86)\Hewlett-Packard\Media\TV\Kernel\TV\TVSched.exe ()
  87.  
  88.  
  89. [color=#E56717]========== Driver Services (SafeList) ==========[/color]
  90.  
  91. DRV:[b]64bit:[/b] - (MBAMProtector) -- C:\Windows\SysNative\drivers\mbam.sys (Malwarebytes Corporation)
  92. DRV:[b]64bit:[/b] - (eamonm) -- C:\Windows\SysNative\drivers\eamonm.sys (ESET)
  93. DRV:[b]64bit:[/b] - (epfw) -- C:\Windows\SysNative\drivers\epfw.sys (ESET)
  94. DRV:[b]64bit:[/b] - (ehdrv) -- C:\Windows\SysNative\drivers\ehdrv.sys (ESET)
  95. DRV:[b]64bit:[/b] - (epfwwfp) -- C:\Windows\SysNative\drivers\epfwwfp.sys (ESET)
  96. DRV:[b]64bit:[/b] - (EpfwLWF) -- C:\Windows\SysNative\drivers\EpfwLWF.sys (ESET)
  97. DRV:[b]64bit:[/b] - (Point64) -- C:\Windows\SysNative\drivers\point64.sys (Microsoft Corporation)
  98. DRV:[b]64bit:[/b] - (SASDIFSV) -- C:\Program Files\SUPERAntiSpyware\sasdifsv64.sys (SUPERAdBlocker.com and SUPERAntiSpyware.com)
  99. DRV:[b]64bit:[/b] - (SASKUTIL) -- C:\Program Files\SUPERAntiSpyware\saskutil64.sys (SUPERAdBlocker.com and SUPERAntiSpyware.com)
  100. DRV:[b]64bit:[/b] - (hpdskflt) -- C:\Windows\SysNative\drivers\hpdskflt.sys (Hewlett-Packard Company)
  101. DRV:[b]64bit:[/b] - (Accelerometer) -- C:\Windows\SysNative\drivers\Accelerometer.sys (Hewlett-Packard Company)
  102. DRV:[b]64bit:[/b] - (USBAAPL64) -- C:\Windows\SysNative\drivers\usbaapl64.sys (Apple, Inc.)
  103. DRV:[b]64bit:[/b] - (IDMWFP) -- C:\Windows\SysNative\drivers\idmwfp.sys (Tonec Inc.)
  104. DRV:[b]64bit:[/b] - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices)
  105. DRV:[b]64bit:[/b] - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices)
  106. DRV:[b]64bit:[/b] - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company)
  107. DRV:[b]64bit:[/b] - (TsUsbFlt) -- C:\Windows\SysNative\drivers\TsUsbFlt.sys (Microsoft Corporation)
  108. DRV:[b]64bit:[/b] - (RdpVideoMiniport) -- C:\Windows\SysNative\drivers\rdpvideominiport.sys (Microsoft Corporation)
  109. DRV:[b]64bit:[/b] - (RTL8167) -- C:\Windows\SysNative\drivers\Rt64win7.sys (Realtek )
  110. DRV:[b]64bit:[/b] - (hcwhdpvr) -- C:\Windows\SysNative\drivers\hcwhdpvr.sys (Hauppauge, Inc.)
  111. DRV:[b]64bit:[/b] - (SynTP) -- C:\Windows\SysNative\drivers\SynTP.sys (Synaptics Incorporated)
  112. DRV:[b]64bit:[/b] - (SCDEmu) -- C:\Windows\SysNative\drivers\scdemu.sys (PowerISO Computing, Inc.)
  113. DRV:[b]64bit:[/b] - (STHDA) -- C:\Windows\SysNative\drivers\stwrt64.sys (IDT, Inc.)
  114. DRV:[b]64bit:[/b] - (athr) -- C:\Windows\SysNative\drivers\athrx.sys (Atheros Communications, Inc.)
  115. DRV:[b]64bit:[/b] - (atikmdag) -- C:\Windows\SysNative\drivers\atikmdag.sys (ATI Technologies Inc.)
  116. DRV:[b]64bit:[/b] - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.)
  117. DRV:[b]64bit:[/b] - (LSI_SAS2) -- C:\Windows\SysNative\drivers\lsi_sas2.sys (LSI Corporation)
  118. DRV:[b]64bit:[/b] - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology)
  119. DRV:[b]64bit:[/b] - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (Broadcom Corporation)
  120. DRV:[b]64bit:[/b] - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (Broadcom Corporation)
  121. DRV:[b]64bit:[/b] - (b57nd60a) -- C:\Windows\SysNative\drivers\b57nd60a.sys (Broadcom Corporation)
  122. DRV:[b]64bit:[/b] - (hcw85cir) -- C:\Windows\SysNative\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.)
  123. DRV:[b]64bit:[/b] - (HpqKbFiltr) -- C:\Windows\SysNative\drivers\HpqKbFiltr.sys (Hewlett-Packard Development Company, L.P.)
  124. DRV:[b]64bit:[/b] - (mcdbus) -- C:\Windows\SysNative\drivers\mcdbus.sys (MagicISO, Inc.)
  125. DRV:[b]64bit:[/b] - (AgereSoftModem) -- C:\Windows\SysNative\drivers\agrsm64.sys (Agere Systems)
  126. DRV:[b]64bit:[/b] - (USBModem) -- C:\Windows\SysNative\drivers\lgx64modem.sys (LG Electronics Inc.)
  127. DRV:[b]64bit:[/b] - (UsbDiag) -- C:\Windows\SysNative\drivers\lgx64diag.sys (LG Electronics Inc.)
  128. DRV:[b]64bit:[/b] - (usbbus) -- C:\Windows\SysNative\drivers\lgx64bus.sys (LG Electronics Inc.)
  129. DRV:[b]64bit:[/b] - (RTL8169) -- C:\Windows\SysNative\drivers\Rtlh64.sys (Realtek Corporation )
  130. DRV:[b]64bit:[/b] - (JMCR) -- C:\Windows\SysNative\drivers\jmcr.sys (JMicron Technology Corporation)
  131. DRV:[b]64bit:[/b] - (usbfilter) -- C:\Windows\SysNative\drivers\usbfilter.sys (Advanced Micro Devices Inc.)
  132. DRV:[b]64bit:[/b] - (AtiPcie) ATI PCI Express (3GIO) -- C:\Windows\SysNative\drivers\AtiPcie.sys (ATI Technologies Inc.)
  133. DRV:[b]64bit:[/b] - (GEARAspiWDM) -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys (GEAR Software Inc.)
  134. DRV:[b]64bit:[/b] - (enecir) -- C:\Windows\SysNative\drivers\enecir.sys (ENE TECHNOLOGY INC.)
  135. DRV:[b]64bit:[/b] - (PinnacleMarvinAVS) -- C:\Windows\SysNative\drivers\MarvinAVS64.sys (Pinnacle a division of Avid Technology, Inc.)
  136. DRV:[b]64bit:[/b] - (MarvinBus) -- C:\Windows\SysNative\drivers\MarvinBus64.sys (Pinnacle Systems GmbH)
  137. DRV - (TuneUpUtilitiesDrv) -- C:\Program Files (x86)\TuneUp Utilities 2010\TuneUpUtilitiesDriver64.sys (TuneUp Software)
  138. DRV - (WIMMount) -- C:\Windows\SysWOW64\drivers\wimmount.sys (Microsoft Corporation)
  139. DRV - (mcdbus) -- C:\Windows\SysWOW64\drivers\mcdbus.sys (MagicISO, Inc.)
  140. DRV - ({55662437-DA8C-40c0-AADA-2C816A897A49}) -- C:\Program Files (x86)\Hewlett-Packard\Media\DVD\000.fcl (CyberLink Corp.)
  141.  
  142.  
  143. [color=#E56717]========== Standard Registry (SafeList) ==========[/color]
  144.  
  145.  
  146. [color=#E56717]========== Internet Explorer ==========[/color]
  147.  
  148. IE:[b]64bit:[/b] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_us&c=91&bd=Pavilion&pf=cnnb
  149. IE:[b]64bit:[/b] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_us&c=91&bd=Pavilion&pf=cnnb
  150. IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.poony.info/
  151.  
  152. IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.supportforums.net/
  153. IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
  154. IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
  155. IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
  156.  
  157. [color=#E56717]========== FireFox ==========[/color]
  158.  
  159. FF - prefs.js..browser.startup.homepage: "http://www.supportforums.net/index.php"
  160.  
  161. FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
  162. FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32.dll ()
  163. FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
  164. FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
  165. FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
  166. FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
  167. FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\4.0.60831.0\npctrl.dll ( Microsoft Corporation)
  168. FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
  169. FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
  170. FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
  171. FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
  172. FF - HKCU\Software\MozillaPlugins\@talk.google.com/GoogleTalkPlugin: C:\Users\Oliver Tran\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
  173. FF - HKCU\Software\MozillaPlugins\@talk.google.com/O3DPlugin: C:\Users\Oliver Tran\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll ()
  174. FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Oliver Tran\AppData\Local\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
  175. FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Oliver Tran\AppData\Local\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
  176.  
  177. 64bit-FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\PROGRAM FILES\ESET\ESET SMART SECURITY\MOZILLA THUNDERBIRD [2011/11/11 19:13:38 | 000,000,000 | ---D | M]
  178. FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2011/11/11 19:13:38 | 000,000,000 | ---D | M]
  179. FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\mozilla_cc@internetdownloadmanager.com: C:\Users\Oliver Tran\AppData\Roaming\IDM\idmmzcc3 [2011/05/13 18:43:25 | 000,000,000 | ---D | M]
  180. FF - HKEY_CURRENT_USER\software\mozilla\SeaMonkey\Extensions\\mozilla_cc@internetdownloadmanager.com: C:\Users\Oliver Tran\AppData\Roaming\IDM\idmmzcc3 [2011/05/13 18:43:25 | 000,000,000 | ---D | M]
  181.  
  182. [2010/09/07 15:16:12 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Oliver Tran\AppData\Roaming\Mozilla\Extensions
  183. [2010/09/07 15:16:12 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Oliver Tran\AppData\Roaming\Mozilla\Extensions\mozswing@mozswing.org
  184. [2011/03/29 19:34:35 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Oliver Tran\AppData\Roaming\Mozilla\Firefox\Profiles\g3iha29a.default\extensions
  185. () (No name found) -- C:\USERS\OLIVER TRAN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\G3IHA29A.DEFAULT\EXTENSIONS\{19503E42-CA3C-4C27-B1E2-9CDB2170EE34}.XPI
  186. () (No name found) -- C:\USERS\OLIVER TRAN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\G3IHA29A.DEFAULT\EXTENSIONS\{D10D0BF8-F5B5-C8B4-A8B2-2B9879E08C5D}.XPI
  187. () (No name found) -- C:\USERS\OLIVER TRAN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\G3IHA29A.DEFAULT\EXTENSIONS\ADBLOCKPOPUPS@JESSEHAKANEN.NET.XPI
  188. [2010/09/07 00:51:40 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\WINDOWS\MICROSOFT.NET\FRAMEWORK\V3.5\WINDOWS PRESENTATION FOUNDATION\DOTNETASSISTANTEXTENSION
  189.  
  190. [color=#E56717]========== Chrome ==========[/color]
  191.  
  192. CHR - default_search_provider: Google (Enabled)
  193. CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
  194. CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms}
  195. CHR - plugin: Shockwave Flash (Enabled) = C:\Users\Oliver Tran\AppData\Local\Google\Chrome\Application\15.0.874.121\gcswf32.dll
  196. CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\system32\Macromed\Flash\NPSWF32.dll
  197. CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin.dll
  198. CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin2.dll
  199. CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin3.dll
  200. CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin4.dll
  201. CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin5.dll
  202. CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin6.dll
  203. CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin7.dll
  204. CHR - plugin: Java Deployment Toolkit 6.0.240.7 (Enabled) = C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll
  205. CHR - plugin: Java(TM) Platform SE 6 U24 (Enabled) = C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll
  206. CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
  207. CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files (x86)\Microsoft Silverlight\4.0.60831.0\npctrl.dll
  208. CHR - plugin: Microsoft\u00AE Windows Media Player Firefox Plugin (Enabled) = C:\PFiles\Plugins\np-mswmp.dll
  209. CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
  210. CHR - plugin: Native Client (Enabled) = C:\Users\Oliver Tran\AppData\Local\Google\Chrome\Application\15.0.874.121\ppGoogleNaClPluginChrome.dll
  211. CHR - plugin: Chrome PDF Viewer (Disabled) = C:\Users\Oliver Tran\AppData\Local\Google\Chrome\Application\15.0.874.121\pdf.dll
  212. CHR - plugin: Google Talk Plugin (Enabled) = C:\Users\Oliver Tran\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll
  213. CHR - plugin: Google Talk Plugin Video Accelerator (Enabled) = C:\Users\Oliver Tran\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll
  214. CHR - plugin: Windows Live\u0099 Photo Gallery (Enabled) = C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
  215. CHR - plugin: iTunes Application Detector (Enabled) = C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll
  216. CHR - plugin: Google Update (Enabled) = C:\Users\Oliver Tran\AppData\Local\Google\Update\1.3.21.69\npGoogleUpdate3.dll
  217. CHR - plugin: Windows Presentation Foundation (Enabled) = c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
  218. CHR - plugin: Default Plug-in (Enabled) = default_plugin
  219. CHR - Extension: AdBlock = C:\Users\Oliver Tran\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.4.30_0\
  220.  
  221. O1 HOSTS File: ([2011/07/16 16:20:11 | 000,000,635 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
  222. O1 - Hosts: 127.0.0.1 activate.adobe.com
  223. O1 - Hosts: 127.0.0.1 practivate.adobe.com
  224. O1 - Hosts: 127.0.0.1 ereg.adobe.com
  225. O1 - Hosts: 127.0.0.1 activate.wip3.adobe.com
  226. O1 - Hosts: 127.0.0.1 wip3.adobe.com
  227. O1 - Hosts: 127.0.0.1 3dns-3.adobe.com
  228. O1 - Hosts: 127.0.0.1 3dns-2.adobe.com
  229. O1 - Hosts: 127.0.0.1 adobe-dns.adobe.com
  230. O1 - Hosts: 127.0.0.1 adobe-dns-2.adobe.com
  231. O1 - Hosts: 127.0.0.1 adobe-dns-3.adobe.com
  232. O1 - Hosts: 127.0.0.1 ereg.wip3.adobe.com
  233. O1 - Hosts: 127.0.0.1 activate-sea.adobe.com
  234. O1 - Hosts: 127.0.0.1 wwis-dubc1-vip60.adobe.com
  235. O1 - Hosts: 127.0.0.1 activate-sjc0.adobe.com
  236. O1 - Hosts: 127.0.0.1 hl2rcv.adobe.com
  237. O1 - Hosts: 127.0.0.1 adobeereg.com
  238. O1 - Hosts: 127.0.0.1 adeactivate.adobe.com
  239. O1 - Hosts: 127.0.0.1 125.252.224.90
  240. O1 - Hosts: 127.0.0.1 125.252.224.91
  241. O2:[b]64bit:[/b] - BHO: (no name) - {0055C089-8582-441B-A0BF-17B458C2A3A8} - No CLSID value found.
  242. O4:[b]64bit:[/b] - HKLM..\Run: [COMODO Internet Security] C:\Program Files (x86)\COMODO\COMODO Internet Security\cfp.exe (COMODO)
  243. O4:[b]64bit:[/b] - HKLM..\Run: [egui] C:\Program Files\ESET\ESET Smart Security\egui.exe (ESET)
  244. O4:[b]64bit:[/b] - HKLM..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe (IDT, Inc.)
  245. O4 - HKLM..\Run: [HP Health Check Scheduler] c:\Program Files (x86)\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe (Hewlett-Packard)
  246. O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
  247. O4 - HKLM..\Run: [Malwarebytes' Anti-Malware (reboot)] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation)
  248. O4 - HKCU..\Run: [Advanced SystemCare 5] C:\Program Files (x86)\IObit\Advanced SystemCare 5\ASCTray.exe (IObit)
  249. O4 - HKCU..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE (SUPERAntiSpyware.com)
  250. O4 - Startup: C:\Users\Oliver Tran\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MagicDisc.lnk = C:\Program Files (x86)\MagicDisc\MagicDisc.exe (MagicISO, Inc.)
  251. O4 - Startup: C:\Users\Oliver Tran\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\NoteStryker!.exe (MaiTriCks Inc.)
  252. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
  253. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
  254. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 255
  255. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
  256. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableStatusMessages = 0
  257. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: VerboseStatus = 0
  258. O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = [binary data]
  259. O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 255
  260. O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoViewContextMenu = 0
  261. O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoTrayItemsDisplay = 0
  262. O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoDispSettingsPage = 0
  263. O8:[b]64bit:[/b] - Extra context menu item: Download all links with IDM - C:\Program Files (x86)\Internet Download Manager\IEGetAll.htm File not found
  264. O8:[b]64bit:[/b] - Extra context menu item: Download with IDM - C:\Program Files (x86)\Internet Download Manager\IEExt.htm File not found
  265. O8:[b]64bit:[/b] - Extra context menu item: Download with Mipony - C:\Program Files (x86)\MiPony\Browser\IEContext.htm ()
  266. O8 - Extra context menu item: Download all links with IDM - C:\Program Files (x86)\Internet Download Manager\IEGetAll.htm File not found
  267. O8 - Extra context menu item: Download with IDM - C:\Program Files (x86)\Internet Download Manager\IEExt.htm File not found
  268. O8 - Extra context menu item: Download with Mipony - C:\Program Files (x86)\MiPony\Browser\IEContext.htm ()
  269. O10:[b]64bit:[/b] - NameSpace_Catalog5\Catalog_Entries64\000000000010 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
  270. O10 - NameSpace_Catalog5\Catalog_Entries\000000000010 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
  271. O13[b]64bit:[/b] - gopher Prefix: missing
  272. O13 - gopher Prefix: missing
  273. O15 - HKCU\..Trusted Ranges: Range1 ([http] in Local intranet)
  274. O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24)
  275. O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab (Java Plug-in 1.6.0_07)
  276. O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24)
  277. O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24)
  278. O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
  279. O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{67C5332F-FEFE-4899-9937-36649AED0A3D}: NameServer = 156.154.70.22,156.154.71.22
  280. O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{6B377D2E-9A1F-4AA8-8AA0-EFF5DB8A58B7}: DhcpNameServer = 192.168.1.1
  281. O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{6B377D2E-9A1F-4AA8-8AA0-EFF5DB8A58B7}: NameServer = 156.154.70.22,156.154.71.22
  282. O18:[b]64bit:[/b] - Protocol\Handler\grooveLocalGWS - No CLSID value found
  283. O18:[b]64bit:[/b] - Protocol\Handler\ms-help - No CLSID value found
  284. O18:[b]64bit:[/b] - Protocol\Handler\wlpg - No CLSID value found
  285. O20:[b]64bit:[/b] - AppInit_DLLs: (C:\Windows\system32\guard64.dll) - C:\Windows\SysNative\guard64.dll (COMODO)
  286. O20 - AppInit_DLLs: (C:\Windows\SysWOW64\guard32.dll) -C:\Windows\SysWOW64\guard32.dll (COMODO)
  287. O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
  288. O20:[b]64bit:[/b] - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
  289. O20:[b]64bit:[/b] - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
  290. O20:[b]64bit:[/b] - HKLM Winlogon: VMApplet - (/pagefile) - File not found
  291. O20 - HKLM Winlogon: Shell - (explorer.exe) -C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
  292. O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) -C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
  293. O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
  294. O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
  295. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
  296. O24 - Desktop WallPaper: C:\Windows\Web\Wallpaper\Bronze1.jpg
  297. O24 - Desktop BackupWallPaper: C:\Windows\Web\Wallpaper\Bronze1.jpg
  298. O32 - HKLM CDRom: AutoRun - 1
  299. O33 - MountPoints2\{68e7189e-0bd2-11e0-962a-00235a313bef}\Shell - "" = AutoRun
  300. O33 - MountPoints2\{68e7189e-0bd2-11e0-962a-00235a313bef}\Shell\AutoRun\command - "" = F:\LaunchU3.exe -a
  301. O33 - MountPoints2\{7d443675-1847-11e1-a4e7-00235a313bef}\Shell - "" = AutoRun
  302. O33 - MountPoints2\{7d443675-1847-11e1-a4e7-00235a313bef}\Shell\AutoRun\command - "" = F:\autorun.exe
  303. O33 - MountPoints2\F\Shell - "" = AutoRun
  304. O33 - MountPoints2\F\Shell\AutoRun\command - "" = F:\autorun.exe
  305. O33 - MountPoints2\G\Shell - "" = AutoRun
  306. O33 - MountPoints2\G\Shell\AutoRun\command - "" = G:\LaunchU3.exe -a
  307. O34 - HKLM BootExecute: (autocheck autochk *)
  308. O35:[b]64bit:[/b] - HKLM\..comfile [open] -- "%1" %*
  309. O35:[b]64bit:[/b] - HKLM\..exefile [open] -- "%1" %*
  310. O35 - HKLM\..comfile [open] -- "%1" %*
  311. O35 - HKLM\..exefile [open] -- "%1" %*
  312. O37:[b]64bit:[/b] - HKLM\...com [@ = comfile] -- "%1" %*
  313. O37:[b]64bit:[/b] - HKLM\...exe [@ = exefile] -- "%1" %*
  314. O37 - HKLM\...com [@ = comfile] -- "%1" %*
  315. O37 - HKLM\...exe [@ = exefile] -- "%1" %*
  316.  
  317. NetSvcs:[b]64bit:[/b] UxTuneUp - C:\Windows\SysNative\uxtuneup.dll (TuneUp Software)
  318. NetSvcs:[b]64bit:[/b] AppMgmt - C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)
  319.  
  320. MsConfig:64bit - State: "bootini" - Reg Error: Key error.
  321. MsConfig:64bit - State: "startup" - Reg Error: Key error.
  322. MsConfig:64bit - State: "services" - Reg Error: Key error.
  323.  
  324. SafeBootMin:[b]64bit:[/b] !SASCORE - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE (SUPERAntiSpyware.com)
  325. SafeBootMin:[b]64bit:[/b] AppMgmt - C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)
  326. SafeBootMin:[b]64bit:[/b] Base - Driver Group
  327. SafeBootMin:[b]64bit:[/b] Boot Bus Extender - Driver Group
  328. SafeBootMin:[b]64bit:[/b] Boot file system - Driver Group
  329. SafeBootMin:[b]64bit:[/b] File system - Driver Group
  330. SafeBootMin:[b]64bit:[/b] Filter - Driver Group
  331. SafeBootMin:[b]64bit:[/b] HelpSvc - Service
  332. SafeBootMin:[b]64bit:[/b] MCODS - Reg Error: Value error.
  333. SafeBootMin:[b]64bit:[/b] PCI Configuration - Driver Group
  334. SafeBootMin:[b]64bit:[/b] PNP Filter - Driver Group
  335. SafeBootMin:[b]64bit:[/b] Primary disk - Driver Group
  336. SafeBootMin:[b]64bit:[/b] sacsvr - Service
  337. SafeBootMin:[b]64bit:[/b] SCSI Class - Driver Group
  338. SafeBootMin:[b]64bit:[/b] System Bus Extender - Driver Group
  339. SafeBootMin:[b]64bit:[/b] vmms - Service
  340. SafeBootMin:[b]64bit:[/b] WinDefend - C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
  341. SafeBootMin:[b]64bit:[/b] {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
  342. SafeBootMin:[b]64bit:[/b] {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
  343. SafeBootMin:[b]64bit:[/b] {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
  344. SafeBootMin:[b]64bit:[/b] {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
  345. SafeBootMin:[b]64bit:[/b] {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
  346. SafeBootMin:[b]64bit:[/b] {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
  347. SafeBootMin:[b]64bit:[/b] {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
  348. SafeBootMin:[b]64bit:[/b] {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
  349. SafeBootMin:[b]64bit:[/b] {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
  350. SafeBootMin:[b]64bit:[/b] {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
  351. SafeBootMin:[b]64bit:[/b] {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
  352. SafeBootMin:[b]64bit:[/b] {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
  353. SafeBootMin:[b]64bit:[/b] {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
  354. SafeBootMin:[b]64bit:[/b] {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
  355. SafeBootMin:[b]64bit:[/b] {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
  356. SafeBootMin:[b]64bit:[/b] {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
  357. SafeBootMin:[b]64bit:[/b] {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices
  358. SafeBootMin: Base - Driver Group
  359. SafeBootMin: Boot Bus Extender - Driver Group
  360. SafeBootMin: Boot file system - Driver Group
  361. SafeBootMin: File system - Driver Group
  362. SafeBootMin: Filter - Driver Group
  363. SafeBootMin: HelpSvc - Service
  364. SafeBootMin: MCODS - Reg Error: Value error.
  365. SafeBootMin: PCI Configuration - Driver Group
  366. SafeBootMin: PNP Filter - Driver Group
  367. SafeBootMin: Primary disk - Driver Group
  368. SafeBootMin: sacsvr - Service
  369. SafeBootMin: SCSI Class - Driver Group
  370. SafeBootMin: System Bus Extender - Driver Group
  371. SafeBootMin: vmms - Service
  372. SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
  373. SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
  374. SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
  375. SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
  376. SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
  377. SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
  378. SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
  379. SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
  380. SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
  381. SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
  382. SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
  383. SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
  384. SafeBootMin: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
  385. SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
  386. SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
  387. SafeBootMin: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
  388. SafeBootMin: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices
  389.  
  390. SafeBootNet:[b]64bit:[/b] !SASCORE - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE (SUPERAntiSpyware.com)
  391. SafeBootNet:[b]64bit:[/b] AppMgmt - C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)
  392. SafeBootNet:[b]64bit:[/b] Base - Driver Group
  393. SafeBootNet:[b]64bit:[/b] Boot Bus Extender - Driver Group
  394. SafeBootNet:[b]64bit:[/b] Boot file system - Driver Group
  395. SafeBootNet:[b]64bit:[/b] File system - Driver Group
  396. SafeBootNet:[b]64bit:[/b] Filter - Driver Group
  397. SafeBootNet:[b]64bit:[/b] HelpSvc - Service
  398. SafeBootNet:[b]64bit:[/b] Messenger - Service
  399. SafeBootNet:[b]64bit:[/b] NDIS Wrapper - Driver Group
  400. SafeBootNet:[b]64bit:[/b] NetBIOSGroup - Driver Group
  401. SafeBootNet:[b]64bit:[/b] NetDDEGroup - Driver Group
  402. SafeBootNet:[b]64bit:[/b] Network - Driver Group
  403. SafeBootNet:[b]64bit:[/b] NetworkProvider - Driver Group
  404. SafeBootNet:[b]64bit:[/b] PCI Configuration - Driver Group
  405. SafeBootNet:[b]64bit:[/b] PNP Filter - Driver Group
  406. SafeBootNet:[b]64bit:[/b] PNP_TDI - Driver Group
  407. SafeBootNet:[b]64bit:[/b] Primary disk - Driver Group
  408. SafeBootNet:[b]64bit:[/b] rdsessmgr - Service
  409. SafeBootNet:[b]64bit:[/b] sacsvr - Service
  410. SafeBootNet:[b]64bit:[/b] SCSI Class - Driver Group
  411. SafeBootNet:[b]64bit:[/b] Streams Drivers - Driver Group
  412. SafeBootNet:[b]64bit:[/b] System Bus Extender - Driver Group
  413. SafeBootNet:[b]64bit:[/b] TDI - Driver Group
  414. SafeBootNet:[b]64bit:[/b] vmms - Service
  415. SafeBootNet:[b]64bit:[/b] WinDefend - C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
  416. SafeBootNet:[b]64bit:[/b] WudfUsbccidDriver - Driver
  417. SafeBootNet:[b]64bit:[/b] {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
  418. SafeBootNet:[b]64bit:[/b] {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
  419. SafeBootNet:[b]64bit:[/b] {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
  420. SafeBootNet:[b]64bit:[/b] {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
  421. SafeBootNet:[b]64bit:[/b] {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
  422. SafeBootNet:[b]64bit:[/b] {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
  423. SafeBootNet:[b]64bit:[/b] {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
  424. SafeBootNet:[b]64bit:[/b] {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
  425. SafeBootNet:[b]64bit:[/b] {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
  426. SafeBootNet:[b]64bit:[/b] {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
  427. SafeBootNet:[b]64bit:[/b] {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
  428. SafeBootNet:[b]64bit:[/b] {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
  429. SafeBootNet:[b]64bit:[/b] {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
  430. SafeBootNet:[b]64bit:[/b] {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
  431. SafeBootNet:[b]64bit:[/b] {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
  432. SafeBootNet:[b]64bit:[/b] {50DD5230-BA8A-11D1-BF5D-0000F805F530} - Smart card readers
  433. SafeBootNet:[b]64bit:[/b] {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
  434. SafeBootNet:[b]64bit:[/b] {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
  435. SafeBootNet:[b]64bit:[/b] {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
  436. SafeBootNet:[b]64bit:[/b] {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
  437. SafeBootNet:[b]64bit:[/b] {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
  438. SafeBootNet:[b]64bit:[/b] {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices
  439. SafeBootNet: Base - Driver Group
  440. SafeBootNet: Boot Bus Extender - Driver Group
  441. SafeBootNet: Boot file system - Driver Group
  442. SafeBootNet: File system - Driver Group
  443. SafeBootNet: Filter - Driver Group
  444. SafeBootNet: HelpSvc - Service
  445. SafeBootNet: Messenger - Service
  446. SafeBootNet: NDIS Wrapper - Driver Group
  447. SafeBootNet: NetBIOSGroup - Driver Group
  448. SafeBootNet: NetDDEGroup - Driver Group
  449. SafeBootNet: Network - Driver Group
  450. SafeBootNet: NetworkProvider - Driver Group
  451. SafeBootNet: PCI Configuration - Driver Group
  452. SafeBootNet: PNP Filter - Driver Group
  453. SafeBootNet: PNP_TDI - Driver Group
  454. SafeBootNet: Primary disk - Driver Group
  455. SafeBootNet: rdsessmgr - Service
  456. SafeBootNet: sacsvr - Service
  457. SafeBootNet: SCSI Class - Driver Group
  458. SafeBootNet: Streams Drivers - Driver Group
  459. SafeBootNet: System Bus Extender - Driver Group
  460. SafeBootNet: TDI - Driver Group
  461. SafeBootNet: vmms - Service
  462. SafeBootNet: WudfUsbccidDriver - Driver
  463. SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
  464. SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
  465. SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
  466. SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
  467. SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
  468. SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
  469. SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
  470. SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
  471. SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
  472. SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
  473. SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
  474. SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
  475. SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
  476. SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
  477. SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
  478. SafeBootNet: {50DD5230-BA8A-11D1-BF5D-0000F805F530} - Smart card readers
  479. SafeBootNet: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
  480. SafeBootNet: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
  481. SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
  482. SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
  483. SafeBootNet: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
  484. SafeBootNet: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices
  485.  
  486. ActiveX:[b]64bit:[/b] {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0
  487. ActiveX:[b]64bit:[/b] {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
  488. ActiveX:[b]64bit:[/b] {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
  489. ActiveX:[b]64bit:[/b] {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
  490. ActiveX:[b]64bit:[/b] {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
  491. ActiveX:[b]64bit:[/b] {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
  492. ActiveX:[b]64bit:[/b] {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
  493. ActiveX:[b]64bit:[/b] {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
  494. ActiveX:[b]64bit:[/b] {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
  495. ActiveX:[b]64bit:[/b] {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
  496. ActiveX:[b]64bit:[/b] {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
  497. ActiveX:[b]64bit:[/b] {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
  498. ActiveX:[b]64bit:[/b] {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
  499. ActiveX:[b]64bit:[/b] {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\System32\ie4uinit.exe -BaseSettings
  500. ActiveX:[b]64bit:[/b] {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\system32\Rundll32.exe C:\Windows\system32\mscories.dll,Install
  501. ActiveX:[b]64bit:[/b] {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
  502. ActiveX:[b]64bit:[/b] {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
  503. ActiveX:[b]64bit:[/b] {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
  504. ActiveX:[b]64bit:[/b] {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
  505. ActiveX:[b]64bit:[/b] {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4} - .NET Framework
  506. ActiveX:[b]64bit:[/b] {FEBEF00C-046D-438D-8A88-BF94A6C9E703} - .NET Framework
  507. ActiveX:[b]64bit:[/b] >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\system32\unregmp2.exe /ShowWMP
  508. ActiveX:[b]64bit:[/b] >{26923b43-4d38-484f-9b9e-de460746276c} - C:\Windows\System32\ie4uinit.exe -UserIconConfig
  509. ActiveX:[b]64bit:[/b] >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\iedkcs32.dll",BrandIEActiveSetup SIGNUP
  510. ActiveX: {08B0E5C0-4FCB-11CF-AAA5-00401C608500} - Microsoft VM
  511. ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0
  512. ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
  513. ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
  514. ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles(x86)%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
  515. ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
  516. ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
  517. ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
  518. ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
  519. ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
  520. ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
  521. ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
  522. ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
  523. ActiveX: {7C028AF8-F614-47B3-82DA-BA94E41B1089} - .NET Framework
  524. ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
  525. ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\SysWOW64\ie4uinit.exe -BaseSettings
  526. ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\SysWOW64\Rundll32.exe C:\Windows\SysWOW64\mscories.dll,Install
  527. ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
  528. ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
  529. ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
  530. ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
  531. ActiveX: {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4} - .NET Framework
  532. ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\system32\unregmp2.exe /ShowWMP
  533. ActiveX: >{26923b43-4d38-484f-9b9e-de460746276c} - C:\Windows\SysWOW64\ie4uinit.exe -UserIconConfig
  534. ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - "C:\Windows\SysWOW64\rundll32.exe" "C:\Windows\SysWOW64\iedkcs32.dll",BrandIEActiveSetup SIGNUP
  535.  
  536. Drivers32:[b]64bit:[/b] msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
  537. Drivers32:[b]64bit:[/b] VIDC.FPS1 - frapsv64.dll (Beepa P/L)
  538. Drivers32:[b]64bit:[/b] vidc.tscc - C:\Windows\SysWOW64\tsccvid64.dll (TechSmith Corporation)
  539. Drivers32: msacm.l3acm - C:\Windows\SysWOW64\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
  540. Drivers32: msacm.l3codecp - C:\Windows\SysWow64\l3codecp.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
  541. Drivers32: msacm.vorbis - C:\Windows\SysWow64\vorbis.acm (HMS http://hp.vector.co.jp/authors/VA012897/)
  542. Drivers32: vidc.cvid - C:\Windows\SysWow64\iccvid.dll (Radius Inc.)
  543. Drivers32: vidc.tscc - C:\Windows\SysWOW64\tsccvid.dll (TechSmith Corporation)
  544.  
  545. CREATERESTOREPOINT
  546. Restore point Set: OTL Restore Point
  547.  
  548. [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
  549.  
  550. [2011/11/27 10:06:43 | 000,000,000 | ---D | C] -- C:\Users\Oliver Tran\AppData\Local\Adobe
  551. [2011/11/26 17:10:57 | 000,000,000 | ---D | C] -- C:\Users\Oliver Tran\AppData\Local\Apple Computer
  552. [2011/11/26 14:29:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare 5
  553. [2011/11/26 01:47:01 | 000,000,000 | ---D | C] -- C:\Users\Oliver Tran\Desktop\Untitled
  554. [2011/11/26 01:08:05 | 000,000,000 | ---D | C] -- C:\Users\Oliver Tran\Desktop\New folder
  555. [2011/11/25 13:04:33 | 000,000,000 | ---D | C] -- C:\Users\Oliver Tran\Desktop\Everything
  556. [2011/11/25 12:21:10 | 000,406,528 | ---- | C] (Propellerhead Software AB) -- C:\Windows\SysWow64\ReWire.dll
  557. [2011/11/25 12:21:10 | 000,338,432 | ---- | C] (Propellerhead Software AB) -- C:\Windows\SysWow64\REX Shared Library.dll
  558. [2011/11/25 11:59:40 | 000,000,000 | ---D | C] -- C:\Users\Oliver Tran\Desktop\True Reason
  559. [2011/11/25 10:50:36 | 000,000,000 | ---D | C] -- C:\Users\Oliver Tran\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MagicDisc
  560. [2011/11/25 10:50:36 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MagicDisc
  561. [2011/11/25 10:48:35 | 000,255,552 | ---- | C] (MagicISO, Inc.) -- C:\Windows\SysWow64\drivers\mcdbus.sys
  562. [2011/11/25 10:48:35 | 000,255,552 | ---- | C] (MagicISO, Inc.) -- C:\Windows\SysNative\drivers\mcdbus.sys
  563. [2011/11/25 10:48:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MagicDisc
  564. [2011/11/24 19:09:04 | 000,000,000 | ---D | C] -- C:\Users\Oliver Tran\AppData\Roaming\vlc
  565. [2011/11/24 19:08:50 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
  566. [2011/11/24 19:08:22 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\VideoLAN
  567. [2011/11/21 21:31:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
  568. [2011/11/21 21:27:59 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
  569. [2011/11/11 22:47:20 | 000,000,000 | ---D | C] -- C:\Users\Oliver Tran\AppData\Roaming\Mael
  570. [2011/11/11 22:41:50 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HxD Hex Editor
  571. [2011/11/11 22:41:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\HxD
  572. [2011/11/11 22:33:53 | 000,000,000 | -HSD | C] -- C:\Config.Msi
  573. [2011/11/11 19:13:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
  574. [2011/11/11 19:13:08 | 000,000,000 | ---D | C] -- C:\ProgramData\ESET
  575. [2011/11/11 19:13:08 | 000,000,000 | ---D | C] -- C:\Program Files\ESET
  576. [2011/11/11 18:08:26 | 000,000,000 | ---D | C] -- C:\Users\Oliver Tran\AppData\Local\XboxMB
  577. [2011/11/11 18:08:16 | 000,000,000 | ---D | C] -- C:\Users\Oliver Tran\AppData\Local\Xenocode
  578. [2011/11/02 19:41:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
  579. [2011/10/30 10:53:54 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WCF RIA Services V1.0 SP1
  580. [2011/10/30 10:53:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight 4 SDK
  581. [2011/10/28 21:13:55 | 000,000,000 | ---D | C] -- C:\Users\Oliver Tran\Documents\Aiseesoft Studio
  582. [2011/10/28 21:13:39 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Aiseesoft Studio
  583. [2011/10/28 21:11:17 | 000,000,000 | ---D | C] -- C:\Users\Oliver Tran\AppData\Local\{77ED989B-A646-4A89-AC29-91392AB3F4CB}
  584.  
  585. [color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
  586.  
  587. [2011/11/27 10:04:46 | 000,013,136 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
  588. [2011/11/27 10:04:46 | 000,013,136 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
  589. [2011/11/27 10:02:49 | 000,660,530 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
  590. [2011/11/27 10:02:49 | 000,121,426 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
  591. [2011/11/27 10:02:48 | 000,779,266 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
  592. [2011/11/27 09:56:07 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
  593. [2011/11/27 09:55:53 | 3018,190,848 | -HS- | M] () -- C:\hiberfil.sys
  594. [2011/11/26 20:09:34 | 007,708,986 | ---- | M] () -- C:\Users\Oliver Tran\Desktop\Blood Sugar - Pendulum (HQ).mp3
  595. [2011/11/26 19:54:01 | 000,000,932 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3942442562-1150499698-2605017499-1001UA.job
  596. [2011/11/26 19:27:00 | 000,000,522 | ---- | M] () -- C:\Windows\tasks\SUPERAntiSpyware Scheduled Task f6a5f60f-5c82-488f-bd8d-47964c146d50.job
  597. [2011/11/26 18:50:42 | 000,001,176 | ---- | M] () -- C:\Users\Public\Desktop\Paint.NET.lnk
  598. [2011/11/26 15:54:01 | 000,000,880 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3942442562-1150499698-2605017499-1001Core.job
  599. [2011/11/26 14:29:40 | 000,001,247 | ---- | M] () -- C:\Users\Public\Desktop\Quick Care.lnk
  600. [2011/11/26 14:29:40 | 000,001,225 | ---- | M] () -- C:\Users\Public\Desktop\Advanced SystemCare 5.lnk
  601. [2011/11/26 14:13:14 | 000,005,632 | ---- | M] () -- C:\Users\Oliver Tran\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
  602. [2011/11/26 08:45:59 | 001,294,838 | ---- | M] () -- C:\Users\Oliver Tran\Desktop\somethin.rns
  603. [2011/11/26 02:26:01 | 000,172,454 | ---- | M] () -- C:\Users\Oliver Tran\Desktop\Sleek.rns
  604. [2011/11/26 02:00:07 | 000,000,522 | ---- | M] () -- C:\Windows\tasks\SUPERAntiSpyware Scheduled Task 91f24d16-24a6-44d0-9238-ce7e5f72d1c7.job
  605. [2011/11/25 19:10:34 | 038,400,124 | ---- | M] () -- C:\Users\Oliver Tran\Desktop\Sleek.wav
  606. [2011/11/25 16:51:39 | 000,327,766 | ---- | M] () -- C:\Users\Oliver Tran\Desktop\On The Eigth Day.rns
  607. [2011/11/25 15:29:48 | 003,072,124 | ---- | M] () -- C:\Users\Oliver Tran\Desktop\Document 1.wav
  608. [2011/11/25 12:21:10 | 000,406,528 | ---- | M] (Propellerhead Software AB) -- C:\Windows\SysWow64\ReWire.dll
  609. [2011/11/25 12:21:10 | 000,338,432 | ---- | M] (Propellerhead Software AB) -- C:\Windows\SysWow64\REX Shared Library.dll
  610. [2011/11/25 12:18:14 | 000,001,061 | ---- | M] () -- C:\Users\Public\Desktop\Reason.lnk
  611. [2011/11/25 10:50:37 | 000,000,993 | ---- | M] () -- C:\Users\Oliver Tran\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MagicDisc.lnk
  612. [2011/11/11 17:59:09 | 005,220,624 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
  613.  
  614. [color=#E56717]========== Files Created - No Company Name ==========[/color]
  615.  
  616. [2011/11/26 20:10:04 | 007,708,986 | ---- | C] () -- C:\Users\Oliver Tran\Desktop\Blood Sugar - Pendulum (HQ).mp3
  617. [2011/11/26 18:50:42 | 000,001,176 | ---- | C] () -- C:\Users\Public\Desktop\Paint.NET.lnk
  618. [2011/11/26 14:29:40 | 000,001,247 | ---- | C] () -- C:\Users\Public\Desktop\Quick Care.lnk
  619. [2011/11/26 14:29:40 | 000,001,225 | ---- | C] () -- C:\Users\Public\Desktop\Advanced SystemCare 5.lnk
  620. [2011/11/26 08:45:55 | 001,294,838 | ---- | C] () -- C:\Users\Oliver Tran\Desktop\somethin.rns
  621. [2011/11/25 19:10:15 | 038,400,124 | ---- | C] () -- C:\Users\Oliver Tran\Desktop\Sleek.wav
  622. [2011/11/25 19:07:38 | 000,172,454 | ---- | C] () -- C:\Users\Oliver Tran\Desktop\Sleek.rns
  623. [2011/11/25 16:51:38 | 000,327,766 | ---- | C] () -- C:\Users\Oliver Tran\Desktop\On The Eigth Day.rns
  624. [2011/11/25 15:29:42 | 003,072,124 | ---- | C] () -- C:\Users\Oliver Tran\Desktop\Document 1.wav
  625. [2011/11/25 12:18:14 | 000,001,061 | ---- | C] () -- C:\Users\Public\Desktop\Reason.lnk
  626. [2011/11/25 10:50:36 | 000,000,993 | ---- | C] () -- C:\Users\Oliver Tran\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MagicDisc.lnk
  627. [2011/06/19 22:22:57 | 000,026,962 | ---- | C] () -- C:\Users\Oliver Tran\AppData\Roaming\UserTile.png
  628. [2011/04/16 14:30:18 | 000,214,237 | ---- | C] () -- C:\Users\Oliver Tran\AppData\Local\debuggee.mdmp
  629. [2011/04/02 11:24:16 | 000,005,632 | ---- | C] () -- C:\Users\Oliver Tran\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
  630. [2011/03/05 22:59:26 | 000,000,406 | RHS- | C] () -- C:\ProgramData\ntuser.pol
  631. [2011/01/12 18:51:00 | 000,001,048 | ---- | C] () -- C:\Users\Oliver Tran\AppData\Local\Local.lnk
  632. [2010/12/29 22:33:19 | 000,065,536 | ---- | C] () -- C:\Windows\SysWow64\dmcrypto.dll
  633. [2010/12/29 22:32:01 | 000,002,336 | ---- | C] () -- C:\Windows\HCWPNP.INI
  634. [2010/12/20 11:24:01 | 000,231,424 | ---- | C] () -- C:\Users\Oliver Tran\AppData\Roaming\chrtmp
  635. [2010/09/30 18:19:48 | 000,000,132 | ---- | C] () -- C:\Users\Oliver Tran\AppData\Roaming\Adobe PNG Format CS5 Prefs
  636. [2010/09/07 14:05:35 | 000,773,482 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
  637. [2010/09/07 00:31:41 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
  638. [2010/09/05 21:21:32 | 000,117,248 | ---- | C] () -- C:\Windows\SysWow64\EhStorAuthn.dll
  639. [2009/10/24 12:06:04 | 000,079,360 | ---- | C] () -- C:\Windows\SysWow64\Eziriz.bin
  640. [2009/07/13 21:38:36 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
  641. [2009/07/13 18:35:51 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT
  642. [2009/07/13 18:34:42 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat
  643. [2009/07/13 16:10:29 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
  644. [2009/07/13 15:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
  645. [2009/07/13 13:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
  646. [2009/06/10 13:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat
  647. [2009/04/07 23:04:50 | 000,000,012 | ---- | C] () -- C:\Windows\bthservsdp.dat
  648. [2007/04/27 10:43:58 | 000,120,200 | ---- | C] () -- C:\Windows\SysWow64\DLLDEV32i.dll
  649.  
  650. [color=#E56717]========== Custom Scans ==========[/color]
  651.  
  652.  
  653. [color=#A23BEC]< %systemroot%\*. /mp /s >[/color]
  654.  
  655. [color=#A23BEC]< %systemroot%\system32\*.dll /lockedfiles >[/color]
  656.  
  657. [color=#A23BEC]< %systemroot%\system32\*.exe /lockedfiles >[/color]
  658.  
  659. [color=#A23BEC]< %systemroot%\Tasks\*.job /lockedfiles >[/color]
  660.  
  661. [color=#A23BEC]< %systemroot%\system32\drivers\*.sys /lockedfiles >[/color]
  662.  
  663. [color=#A23BEC]< %systemroot%\System32\config\*.sav >[/color]
  664.  
  665. [color=#A23BEC]< %systemroot%\system32\*.sys >[/color]
  666.  
  667. [color=#A23BEC]< %systemroot%\system32\drivers\*.dll >[/color]
  668.  
  669. [color=#A23BEC]< %systemroot%\system32\drivers\*.ini >[/color]
  670.  
  671. [color=#A23BEC]< %systemroot%\system32\drivers\*.exe >[/color]
  672.  
  673. [color=#A23BEC]< %SYSTEMDRIVE%\*.* >[/color]
  674. [2010/11/20 04:40:07 | 000,383,786 | RHS- | M] () -- C:\bootmgr
  675. [2010/09/07 01:25:27 | 000,008,192 | RHS- | M] () -- C:\BOOTSECT.BAK
  676. [2010/09/07 09:25:40 | 000,438,840 | RHS- | M] () -- C:\bootxez
  677. [2011/04/30 23:08:19 | 000,243,208 | -HS- | M] () -- C:\Help_MKWD_AssetId.H1W
  678. [2011/04/30 23:08:20 | 000,206,316 | -HS- | M] () -- C:\Help_MKWD_BestBet.H1W
  679. [2011/04/30 23:08:22 | 000,503,152 | -HS- | M] () -- C:\Help_MTOC_help.H1H
  680. [2011/04/30 23:08:22 | 000,014,832 | -HS- | M] () -- C:\Help_MValidator.H1D
  681. [2011/11/27 09:55:53 | 3018,190,848 | -HS- | M] () -- C:\hiberfil.sys
  682. [2010/09/20 20:12:27 | 000,399,415 | RHS- | M] () -- C:\KGRBZ
  683. [2006/12/01 22:37:14 | 000,904,704 | ---- | M] (Microsoft Corporation) -- C:\msdia80.dll
  684. [2011/11/27 09:55:58 | 4024,258,560 | -HS- | M] () -- C:\pagefile.sys
  685. [2010/11/06 17:52:09 | 000,000,000 | ---- | M] () -- C:\user.js
  686. [2010/09/20 20:12:28 | 000,000,020 | RHS- | M] () -- C:\win7.ld
  687.  
  688. [color=#A23BEC]< %PROGRAMFILES%\*. >[/color]
  689. [2011/09/13 17:55:58 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Adobe
  690. [2011/04/05 17:41:39 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Adobe Media Player
  691. [2011/10/28 21:13:39 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Aiseesoft Studio
  692. [2010/09/07 00:37:37 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\AMD
  693. [2011/10/22 14:55:02 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\AnvSoft
  694. [2011/07/16 15:18:50 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Apple Software Update
  695. [2011/01/17 14:48:10 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\ArcSoft
  696. [2010/10/09 17:47:24 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\ASIO4ALL v2
  697. [2010/09/07 00:37:38 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Atheros
  698. [2010/09/07 00:37:38 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\ATI Technologies
  699. [2011/04/21 10:55:00 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Audacity 1.3 Beta (Unicode)
  700. [2011/04/01 07:48:05 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Auslogics
  701. [2011/09/17 10:20:19 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Auto Clicker
  702. [2011/10/11 13:46:53 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Bonjour
  703. [2010/12/22 16:45:59 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\CardRecovery
  704. [2011/10/22 08:27:38 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\CCleaner
  705. [2010/09/07 00:37:56 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Cisco
  706. [2011/10/02 10:42:50 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\CodeMeter
  707. [2011/11/24 17:23:25 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Common Files
  708. [2011/05/07 15:07:16 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\COMODO
  709. [2011/04/01 09:02:57 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\CyberLink
  710. [2011/07/29 20:05:21 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Datel
  711. [2011/10/21 21:16:42 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\DigiDNA
  712. [2011/04/23 17:20:24 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Eazfuscator.NET
  713. [2011/04/29 17:56:05 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\epson
  714. [2011/04/30 15:39:45 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\FFmpeg for Audacity
  715. [2010/10/01 22:50:36 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\FinalUninstaller
  716. [2010/09/07 00:48:49 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Hewlett-Packard
  717. [2010/09/07 00:49:35 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Hewlett-Packard Company
  718. [2010/09/07 00:49:36 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Hp
  719. [2010/09/07 14:23:07 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\HTML Help Workshop
  720. [2011/11/11 22:41:50 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\HxD
  721. [2011/10/11 14:11:18 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Hyperdesktop
  722. [2010/09/07 21:47:39 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\IcoFX 1.6
  723. [2010/10/28 17:26:00 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Icon Generator Pro
  724. [2011/11/26 14:57:18 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\iExplorer
  725. [2010/09/07 14:40:23 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\IIS
  726. [2011/10/21 21:24:02 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Image-Line
  727. [2010/10/02 08:48:57 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\ImgBurn
  728. [2011/04/01 09:03:08 | 000,000,000 | -H-D | M] -- C:\Program Files (x86)\InstallShield Installation Information
  729. [2011/05/14 07:28:33 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Internet Download Manager
  730. [2011/10/11 18:05:01 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Internet Explorer
  731. [2011/11/26 14:29:19 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\IObit
  732. [2011/11/21 21:30:54 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\iTunes
  733. [2011/02/22 18:46:34 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Java
  734. [2010/09/07 18:27:27 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Lame for Audacity
  735. [2010/09/07 18:24:32 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\LG Electronics
  736. [2011/05/14 14:42:13 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\LibUSB-Win32
  737. [2010/11/06 11:13:23 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\LimeWire
  738. [2011/04/09 22:31:55 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\LogicNP Software
  739. [2011/11/25 15:15:52 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\MagicDisc
  740. [2011/09/13 17:22:37 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
  741. [2010/09/07 14:40:35 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Microsoft ASP.NET
  742. [2010/09/07 14:26:38 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Microsoft F#
  743. [2010/12/01 18:32:02 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Microsoft Office
  744. [2010/11/27 16:56:32 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Microsoft Office 2010
  745. [2011/10/30 10:53:41 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Microsoft SDKs
  746. [2011/10/11 18:04:51 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Microsoft Silverlight
  747. [2010/09/07 14:57:17 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Microsoft SQL Server
  748. [2011/04/18 15:09:22 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
  749. [2010/10/25 08:35:21 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Microsoft Sync Framework
  750. [2010/09/07 14:55:31 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Microsoft Synchronization Services
  751. [2010/12/01 18:31:53 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Microsoft Visual Studio
  752. [2010/09/07 14:48:20 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Microsoft Visual Studio 10.0
  753. [2010/12/01 18:26:26 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Microsoft Visual Studio 8
  754. [2010/09/07 14:13:31 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Microsoft Visual Studio 9.0
  755. [2011/04/01 08:56:02 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Microsoft Works
  756. [2010/09/07 10:51:46 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Microsoft.NET
  757. [2011/04/30 19:13:13 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\MiPony
  758. [2010/12/01 18:32:09 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\MSBuild
  759. [2011/09/11 20:09:46 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\mSeven Software
  760. [2010/09/05 17:47:08 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\MSXML 4.0
  761. [2011/03/26 10:37:31 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\OllyDbg
  762. [2010/10/08 20:01:18 | 000,000,000 | R--D | M] -- C:\Program Files (x86)\Online Services
  763. [2010/10/09 17:44:40 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Outsim
  764. [2011/05/07 22:23:34 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Pingdom
  765. [2011/11/24 17:23:25 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Pinnacle
  766. [2010/09/07 08:01:21 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\PowerISO
  767. [2011/11/25 12:16:33 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Propellerhead
  768. [2011/11/02 19:41:45 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\QuickTime
  769. [2010/09/07 00:50:36 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Realtek
  770. [2009/07/13 21:32:38 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Reference Assemblies
  771. [2011/04/18 13:58:19 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Reflector
  772. [2010/09/07 10:03:06 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Sling Media
  773. [2011/04/12 18:43:12 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\SMINST
  774. [2011/01/01 20:37:48 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Sony
  775. [2011/04/30 15:27:49 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Team Viewer
  776. [2011/08/01 19:11:57 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\TeamViewer
  777. [2011/03/20 10:48:09 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\TechSmith
  778. [2011/04/21 19:51:37 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Trend Micro
  779. [2010/09/22 16:39:18 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\TuneUp Utilities 2010
  780. [2009/07/13 20:57:06 | 000,000,000 | -H-D | M] -- C:\Program Files (x86)\Uninstall Information
  781. [2011/02/12 09:45:07 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\uTorrent
  782. [2011/04/16 07:02:19 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Verizon
  783. [2011/11/24 19:08:22 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\VideoLAN
  784. [2011/05/13 19:30:52 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\VstPlugins
  785. [2010/09/07 00:50:41 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Windows Calendar
  786. [2008/01/20 19:09:47 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Windows Collaboration
  787. [2009/07/13 21:37:47 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Windows Defender
  788. [2011/04/18 15:09:07 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Windows Live
  789. [2011/04/09 15:55:21 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Windows Mail
  790. [2011/04/09 15:55:21 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Windows Media Player
  791. [2009/07/13 21:32:38 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Windows NT
  792. [2010/09/07 00:50:41 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Windows Photo Gallery
  793. [2011/04/09 15:55:21 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Windows Photo Viewer
  794. [2011/04/09 15:55:21 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Windows Portable Devices
  795. [2011/04/09 15:55:21 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Windows Sidebar
  796. [2010/09/07 00:50:45 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\winrar
  797. [2010/09/07 21:53:22 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Xilisoft
  798.  
  799. [color=#A23BEC]< %appdata%\*.* >[/color]
  800. [2011/10/14 19:13:25 | 000,000,132 | ---- | M] () -- C:\Users\Oliver Tran\AppData\Roaming\Adobe PNG Format CS5 Prefs
  801. [2010/12/20 11:01:11 | 000,231,424 | ---- | M] () -- C:\Users\Oliver Tran\AppData\Roaming\chrtmp
  802. [2011/06/19 22:22:57 | 000,026,962 | ---- | M] () -- C:\Users\Oliver Tran\AppData\Roaming\UserTile.png
  803.  
  804.  
  805. [color=#A23BEC]< MD5 for: AGP440.SYS >[/color]
  806. [2009/07/13 17:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\SysNative\drivers\AGP440.sys
  807. [2009/07/13 17:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\SysNative\DriverStore\FileRepository\machine.inf_amd64_neutral_a2f120466549d68b\AGP440.sys
  808. [2009/07/13 17:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\winsxs\amd64_machine.inf_31bf3856ad364e35_6.1.7600.16385_none_1607dee2d861e021\AGP440.sys
  809. [2009/07/13 17:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\winsxs\amd64_machine.inf_31bf3856ad364e35_6.1.7601.17514_none_1838f2aad55063bb\AGP440.sys
  810.  
  811. [color=#A23BEC]< MD5 for: ATAPI.SYS >[/color]
  812. [2009/07/13 17:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\drivers\atapi.sys
  813. [2009/07/13 17:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\DriverStore\FileRepository\mshdc.inf_amd64_neutral_aad30bdeec04ea5e\atapi.sys
  814. [2009/07/13 17:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7600.16385_none_392d19c13b3ad543\atapi.sys
  815. [2009/07/13 17:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7601.17514_none_3b5e2d89382958dd\atapi.sys
  816.  
  817. [color=#A23BEC]< MD5 for: CNGAUDIT.DLL >[/color]
  818. [2009/07/13 17:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\SysWOW64\cngaudit.dll
  819. [2009/07/13 17:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_e83a414890e8132b\cngaudit.dll
  820. [2009/07/13 17:40:20 | 000,018,944 | ---- | M] (Microsoft Corporation) MD5=86FE1B1F8FD42CD0DB641AB1CDB13093 -- C:\Windows\SysNative\cngaudit.dll
  821. [2009/07/13 17:40:20 | 000,018,944 | ---- | M] (Microsoft Corporation) MD5=86FE1B1F8FD42CD0DB641AB1CDB13093 -- C:\Windows\winsxs\amd64_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_4458dccc49458461\cngaudit.dll
  822.  
  823. [color=#A23BEC]< MD5 for: DISK.SYS >[/color]
  824. [2009/07/13 17:47:48 | 000,073,280 | ---- | M] (Microsoft Corporation) MD5=9819EEE8B5EA3784EC4AF3B137A5244C -- C:\Windows\SysNative\drivers\disk.sys
  825. [2009/07/13 17:47:48 | 000,073,280 | ---- | M] (Microsoft Corporation) MD5=9819EEE8B5EA3784EC4AF3B137A5244C -- C:\Windows\SysNative\DriverStore\FileRepository\disk.inf_amd64_neutral_10ce25bbc5a9cc43\disk.sys
  826. [2009/07/13 17:47:48 | 000,073,280 | ---- | M] (Microsoft Corporation) MD5=9819EEE8B5EA3784EC4AF3B137A5244C -- C:\Windows\winsxs\amd64_disk.inf_31bf3856ad364e35_6.1.7600.16385_none_55bb738b8ddd8a01\disk.sys
  827.  
  828. [color=#A23BEC]< MD5 for: IASTORV.SYS >[/color]
  829. [2010/11/20 05:33:38 | 000,410,496 | ---- | M] (Intel Corporation) MD5=3DF4395A7CF8B7A72A5F4606366B8C2D -- C:\Windows\SysNative\DriverStore\FileRepository\iastorv.inf_amd64_neutral_668286aa35d55928\iaStorV.sys
  830. [2010/11/20 05:33:38 | 000,410,496 | ---- | M] (Intel Corporation) MD5=3DF4395A7CF8B7A72A5F4606366B8C2D -- C:\Windows\winsxs\amd64_iastorv.inf_31bf3856ad364e35_6.1.7601.17514_none_0d3757e79e6784d0\iaStorV.sys
  831. [2011/03/10 22:19:16 | 000,410,496 | ---- | M] (Intel Corporation) MD5=5B3DE7208E5000D5B451B9D290D2579C -- C:\Windows\winsxs\amd64_iastorv.inf_31bf3856ad364e35_6.1.7601.21680_none_0d714416b7c182d5\iaStorV.sys
  832. [2011/03/10 22:41:26 | 000,410,496 | ---- | M] (Intel Corporation) MD5=AAAF44DB3BD0B9D1FB6969B23ECC8366 -- C:\Windows\SysNative\drivers\iaStorV.sys
  833. [2011/03/10 22:41:26 | 000,410,496 | ---- | M] (Intel Corporation) MD5=AAAF44DB3BD0B9D1FB6969B23ECC8366 -- C:\Windows\SysNative\DriverStore\FileRepository\iastorv.inf_amd64_neutral_0bcee2057afcc090\iaStorV.sys
  834. [2011/03/10 22:41:26 | 000,410,496 | ---- | M] (Intel Corporation) MD5=AAAF44DB3BD0B9D1FB6969B23ECC8366 -- C:\Windows\winsxs\amd64_iastorv.inf_31bf3856ad364e35_6.1.7601.17577_none_0cf9793d9e95787b\iaStorV.sys
  835. [2011/03/10 22:23:00 | 000,410,496 | ---- | M] (Intel Corporation) MD5=B75E45C564E944A2657167D197AB29DA -- C:\Windows\winsxs\amd64_iastorv.inf_31bf3856ad364e35_6.1.7600.16778_none_0b141c81a16e25e6\iaStorV.sys
  836. [2011/03/10 22:25:49 | 000,410,496 | ---- | M] (Intel Corporation) MD5=BFDC9D75698800CFE4D1698BF2750EA2 -- C:\Windows\winsxs\amd64_iastorv.inf_31bf3856ad364e35_6.1.7600.20921_none_0bccc8c8ba6985c1\iaStorV.sys
  837. [2009/07/13 17:48:04 | 000,410,688 | ---- | M] (Intel Corporation) MD5=D83EFB6FD45DF9D55E9A1AFC63640D50 -- C:\Windows\winsxs\amd64_iastorv.inf_31bf3856ad364e35_6.1.7600.16385_none_0b06441fa1790136\iaStorV.sys
  838.  
  839. [color=#A23BEC]< MD5 for: NETLOGON.DLL >[/color]
  840. [2009/07/13 17:41:52 | 000,692,736 | ---- | M] (Microsoft Corporation) MD5=956D030D375F207B22FB111E06EF9C35 -- C:\Windows\winsxs\amd64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7600.16385_none_59aca8ea51aaeefe\netlogon.dll
  841. [2010/11/20 05:27:22 | 000,695,808 | ---- | M] (Microsoft Corporation) MD5=AA339DD8BB128EF66660DFBBB59043D3 -- C:\Windows\SysNative\netlogon.dll
  842. [2010/11/20 05:27:22 | 000,695,808 | ---- | M] (Microsoft Corporation) MD5=AA339DD8BB128EF66660DFBBB59043D3 -- C:\Windows\winsxs\amd64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7601.17514_none_5bddbcb24e997298\netlogon.dll
  843. [2010/11/20 04:20:28 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=C1809B9907ADEDAF16F50C894100883B -- C:\Windows\SysWOW64\netlogon.dll
  844. [2010/11/20 04:20:28 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=C1809B9907ADEDAF16F50C894100883B -- C:\Windows\winsxs\wow64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7601.17514_none_6632670482fa3493\netlogon.dll
  845. [2009/07/13 17:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\winsxs\wow64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7600.16385_none_6401533c860bb0f9\netlogon.dll
  846.  
  847. [color=#A23BEC]< MD5 for: NVSTOR.SYS >[/color]
  848. [2009/07/13 17:45:45 | 000,167,488 | ---- | M] (NVIDIA Corporation) MD5=477DC4D6DEB99BE37084C9AC6D013DA1 -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7600.16385_none_95cfb4ced8afab0e\nvstor.sys
  849. [2011/03/10 22:23:06 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=6C1D5F70E7A6A3FD1C90D840EDC048B9 -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7600.16778_none_95dd8d30d8a4cfbe\nvstor.sys
  850. [2011/03/10 22:25:53 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=AE274836BA56518E279087363A781214 -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7600.20921_none_96963977f1a02f99\nvstor.sys
  851. [2011/03/10 22:19:21 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=D23C7E8566DA2B8A7C0DBBB761D54888 -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7601.21680_none_983ab4c5eef82cad\nvstor.sys
  852. [2011/03/10 22:41:34 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=DAB0E87525C10052BF65F06152F37E4A -- C:\Windows\SysNative\drivers\nvstor.sys
  853. [2011/03/10 22:41:34 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=DAB0E87525C10052BF65F06152F37E4A -- C:\Windows\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_neutral_0276fc3b3ea60d41\nvstor.sys
  854. [2011/03/10 22:41:34 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=DAB0E87525C10052BF65F06152F37E4A -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7601.17577_none_97c2e9ecd5cc2253\nvstor.sys
  855. [2010/11/20 05:33:48 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=F7CD50FE7139F07E77DA8AC8033D1832 -- C:\Windows\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_neutral_dd659ed032d28a14\nvstor.sys
  856. [2010/11/20 05:33:48 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=F7CD50FE7139F07E77DA8AC8033D1832 -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7601.17514_none_9800c896d59e2ea8\nvstor.sys
  857.  
  858. [color=#A23BEC]< MD5 for: SCECLI.DLL >[/color]
  859. [2009/07/13 17:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\winsxs\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_9e577e55272d37b4\scecli.dll
  860. [2009/07/13 17:41:53 | 000,232,448 | ---- | M] (Microsoft Corporation) MD5=398712DDDAEFB85EDF61DF6A07B65C79 -- C:\Windows\winsxs\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_9402d402f2cc75b9\scecli.dll
  861. [2010/11/20 04:21:04 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\SysWOW64\scecli.dll
  862. [2010/11/20 04:21:04 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\winsxs\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7601.17514_none_a088921d241bbb4e\scecli.dll
  863. [2010/11/20 05:27:25 | 000,232,960 | ---- | M] (Microsoft Corporation) MD5=ED78427259134C63ED69804D2132B86C -- C:\Windows\SysNative\scecli.dll
  864. [2010/11/20 05:27:25 | 000,232,960 | ---- | M] (Microsoft Corporation) MD5=ED78427259134C63ED69804D2132B86C -- C:\Windows\winsxs\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7601.17514_none_9633e7caefbaf953\scecli.dll
  865.  
  866. [color=#A23BEC]< MD5 for: USBSTOR.SYS >[/color]
  867. [2009/07/13 16:06:34 | 000,089,600 | ---- | M] (Microsoft Corporation) MD5=080D3820DA6C046BE82FC8B45A893E83 -- C:\Windows\winsxs\amd64_usbstor.inf_31bf3856ad364e35_6.1.7600.16385_none_a47b405db18421ea\USBSTOR.SYS
  868. [2011/03/10 20:21:50 | 000,091,648 | ---- | M] (Microsoft Corporation) MD5=36106AC439EDFBB7B8BDBF99079C7590 -- C:\Windows\winsxs\amd64_usbstor.inf_31bf3856ad364e35_6.1.7601.21680_none_a6e64054c7cca389\USBSTOR.SYS
  869. [2011/03/10 20:29:51 | 000,091,136 | ---- | M] (Microsoft Corporation) MD5=3A6CB8C3B8904F01E73D10081B7D0EC7 -- C:\Windows\winsxs\amd64_usbstor.inf_31bf3856ad364e35_6.1.7600.20921_none_a541c506ca74a675\USBSTOR.SYS
  870. [2010/11/20 02:44:05 | 000,091,648 | ---- | M] (Microsoft Corporation) MD5=D76510CFA0FC09023077F22C2F979D86 -- C:\Windows\SysNative\DriverStore\FileRepository\usbstor.inf_amd64_neutral_0725c2806a159a9d\USBSTOR.SYS
  871. [2010/11/20 02:44:05 | 000,091,648 | ---- | M] (Microsoft Corporation) MD5=D76510CFA0FC09023077F22C2F979D86 -- C:\Windows\winsxs\amd64_usbstor.inf_31bf3856ad364e35_6.1.7601.17514_none_a6ac5425ae72a584\USBSTOR.SYS
  872. [2011/03/10 20:31:17 | 000,091,136 | ---- | M] (Microsoft Corporation) MD5=F39983647BC1F3E6100778DDFE9DCE29 -- C:\Windows\winsxs\amd64_usbstor.inf_31bf3856ad364e35_6.1.7600.16778_none_a48918bfb179469a\USBSTOR.SYS
  873. [2011/03/10 20:37:16 | 000,091,648 | ---- | M] (Microsoft Corporation) MD5=FED648B01349A3C8395A5169DB5FB7D6 -- C:\Windows\SysNative\drivers\USBSTOR.SYS
  874. [2011/03/10 20:37:16 | 000,091,648 | ---- | M] (Microsoft Corporation) MD5=FED648B01349A3C8395A5169DB5FB7D6 -- C:\Windows\SysNative\DriverStore\FileRepository\usbstor.inf_amd64_neutral_26b33263a639795d\USBSTOR.SYS
  875. [2011/03/10 20:37:16 | 000,091,648 | ---- | M] (Microsoft Corporation) MD5=FED648B01349A3C8395A5169DB5FB7D6 -- C:\Windows\winsxs\amd64_usbstor.inf_31bf3856ad364e35_6.1.7601.17577_none_a66e757baea0992f\USBSTOR.SYS
  876.  
  877. [color=#A23BEC]< HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs >[/color]
  878.  
  879. [color=#E56717]========== Alternate Data Streams ==========[/color]
  880.  
  881. @Alternate Data Stream - 131 bytes -> C:\ProgramData\Temp:07BF512B
  882.  
  883. < End of report >
  884.  
  885.  
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!