API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Sep 22nd, 2017
105
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 36.71 KB | None | 0 0
raw download clone embed print report
  1. ComboFix 11-07-06.02 - Bdoom 07/06/2011 14:39:02.1.4 - x64
  2. Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.4095.2413 [GMT -5:00]
  3. Running from: c:\users\Bdoom\Downloads\ComboFix.exe
  4. AV: McAfee Anti-Virus and Anti-Spyware *Disabled/Updated* {86355677-4064-3EA7-ABB3-1B136EB04637}
  5. AV: Microsoft Security Essentials *Disabled/Updated* {108DAC43-C256-20B7-BB05-914135DA5160}
  6. FW: McAfee Firewall *Disabled* {BE0ED752-0A0B-3FFF-80EC-B2269063014C}
  7. SP: McAfee Anti-Virus and Anti-Spyware *Disabled/Updated* {3D54B793-665E-3129-9103-206115370C8A}
  8. SP: Microsoft Security Essentials *Disabled/Updated* {ABEC4DA7-E46C-2F39-81B5-AA334E5D1BDD}
  9. SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
  10. .
  11. .
  12. ((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
  13. .
  14. .
  15. c:\program files (x86)\Hyperionics DB Toolbar\tbHElper.dll
  16. c:\program files (x86)\Steam\Steam.exe
  17. c:\programdata\PCDr\5830\Downloads\2ee79d71-badc-46b4-b731-42b15f3cd1c3.dll
  18. c:\programdata\PCDr\5830\Downloads\3972fea3-214c-4935-a7d1-96bf66115683.dll
  19. c:\programdata\PCDr\5830\Downloads\3a79f062-8f3e-464f-9815-2c45840494ee.dll
  20. c:\programdata\PCDr\5830\Downloads\3e4c86d5-a5c1-4c3f-8fc7-6258992b16c5.dll
  21. c:\programdata\PCDr\5830\Downloads\493f295d-1a46-46f6-926c-63b474cedab4.dll
  22. c:\programdata\PCDr\5830\Downloads\5e1c102f-bfde-420c-87c0-64fe851888e5.dll
  23. c:\programdata\PCDr\5830\Downloads\6cf47205-6796-460b-806d-8f5f1a1f6b2e.dll
  24. c:\programdata\PCDr\5830\Downloads\7014e871-cc3b-4dec-b82b-bc70222b40ed.dll
  25. c:\programdata\PCDr\5830\Downloads\a4930af9-016c-4915-a740-a3364e7618aa.dll
  26. c:\programdata\PCDr\5830\Downloads\cf3463d8-8828-4f50-98c8-d04ca1fe42f3.dll
  27. c:\programdata\PCDr\5830\Downloads\e9bb45d9-5a2b-47e8-9c48-168276d422cc.dll
  28. c:\programdata\PCDr\5830\Downloads\fa623e3f-2030-4fff-ab0e-99695f323f7f.dll
  29. .
  30. .
  31. ((((((((((((((((((((((((( Files Created from 2011-06-06 to 2011-07-06 )))))))))))))))))))))))))))))))
  32. .
  33. .
  34. 2011-07-06 19:45 . 2011-07-06 19:45 -------- d-----w- c:\users\Default\AppData\Local\temp
  35. 2011-07-06 19:21 . 2011-06-07 17:10 8873296 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{DA802F00-9536-4E78-AB13-5BCAF25F7707}\mpengine.dll
  36. 2011-07-06 19:07 . 2011-07-06 19:07 -------- d-----w- C:\_OTL
  37. 2011-07-05 03:39 . 2011-07-05 03:41 -------- d-----w- C:\shady_cache2
  38. 2011-07-05 03:02 . 2011-07-05 03:03 -------- d-----w- c:\program files (x86)\SuperHideIP
  39. 2011-07-05 02:52 . 2011-07-05 02:52 -------- d-----w- c:\programdata\SuperHideIP
  40. 2011-07-05 01:27 . 2011-07-05 01:27 -------- d-----w- C:\.epicurus.cache
  41. 2011-07-05 01:24 . 2011-07-05 01:26 -------- d-----w- C:\DXv9_cache32
  42. 2011-07-04 06:34 . 2011-07-04 17:14 -------- d-----w- c:\programdata\Kaspersky Lab
  43. 2011-07-04 05:26 . 2011-07-04 05:26 -------- d-----w- c:\program files (x86)\FileZilla FTP Client
  44. 2011-07-02 01:38 . 2011-07-02 01:39 -------- d-----w- c:\programdata\Solidshield
  45. 2011-07-01 21:01 . 2011-07-01 21:01 -------- d-----w- c:\programdata\Ubisoft
  46. 2011-07-01 20:51 . 2011-07-01 20:51 189248 ----a-w- c:\windows\SysWow64\PnkBstrB.exe
  47. 2011-07-01 20:51 . 2011-07-01 20:51 75136 ----a-w- c:\windows\SysWow64\PnkBstrA.exe
  48. 2011-07-01 20:48 . 2009-09-04 22:44 517960 ----a-w- c:\windows\system32\XAudio2_5.dll
  49. 2011-07-01 20:48 . 2009-09-04 22:44 238936 ----a-w- c:\windows\SysWow64\xactengine3_5.dll
  50. 2011-07-01 20:48 . 2009-09-04 22:44 176968 ----a-w- c:\windows\system32\xactengine3_5.dll
  51. 2011-07-01 20:48 . 2009-09-04 22:29 1974616 ----a-w- c:\windows\SysWow64\D3DCompiler_42.dll
  52. 2011-07-01 20:48 . 2009-09-04 22:29 2582888 ----a-w- c:\windows\system32\D3DCompiler_42.dll
  53. 2011-07-01 20:48 . 2009-09-04 22:29 235344 ----a-w- c:\windows\SysWow64\d3dx11_42.dll
  54. 2011-07-01 20:48 . 2009-09-04 22:29 5501792 ----a-w- c:\windows\SysWow64\d3dcsx_42.dll
  55. 2011-07-01 20:48 . 2009-09-04 22:29 5554512 ----a-w- c:\windows\system32\d3dcsx_42.dll
  56. 2011-07-01 20:48 . 2009-09-04 22:29 285024 ----a-w- c:\windows\system32\d3dx11_42.dll
  57. 2011-07-01 20:48 . 2009-09-04 22:29 2475352 ----a-w- c:\windows\system32\D3DX9_42.dll
  58. 2011-07-01 20:25 . 2011-07-01 20:51 -------- d-----w- c:\program files (x86)\Ubisoft
  59. 2011-07-01 17:26 . 2011-07-01 17:26 -------- d-----w- c:\windows\SysWow64\spool
  60. 2011-06-30 07:00 . 2011-06-30 07:00 -------- d-----w- c:\program files (x86)\WB Games
  61. 2011-06-29 20:05 . 2011-06-29 20:20 -------- d-----w- c:\program files (x86)\Duke Nukem Forever
  62. 2011-06-29 19:16 . 2011-06-29 19:16 404640 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
  63. 2011-06-28 21:01 . 2011-06-28 21:01 -------- d-----w- c:\programdata\Electronic Arts
  64. 2011-06-28 21:01 . 2011-06-28 21:01 -------- d-----w- c:\programdata\EA Core
  65. 2011-06-28 20:43 . 2011-06-28 20:43 -------- d-----w- c:\program files (x86)\Electronic Arts
  66. 2011-06-28 08:45 . 2011-07-06 19:44 -------- d-----w- c:\program files (x86)\Hyperionics DB Toolbar
  67. 2011-06-28 08:44 . 2011-06-28 08:44 -------- d-----w- c:\program files (x86)\HyperCam 2
  68. 2011-06-25 03:40 . 2011-06-25 03:40 -------- d-----w- c:\program files (x86)\AMD APP
  69. 2011-06-25 03:40 . 2011-06-25 03:40 -------- d-----w- c:\program files\Common Files\ATI Technologies
  70. 2011-06-25 03:40 . 2011-06-25 03:40 -------- d-----w- c:\program files (x86)\Common Files\ATI Technologies
  71. 2011-06-25 03:40 . 2011-06-25 03:40 -------- d-----w- c:\programdata\AMD
  72. 2011-06-25 03:40 . 2010-02-18 14:18 46136 ----a-w- c:\windows\system32\drivers\amdiox64.sys
  73. 2011-06-25 03:38 . 2011-06-25 03:38 -------- d-----w- c:\program files\ATI
  74. 2011-06-25 03:13 . 2011-06-25 04:15 -------- d-----w- c:\program files (x86)\Common Files\Steam
  75. 2011-06-25 03:13 . 2011-07-06 19:44 -------- d-----w- c:\program files (x86)\Steam
  76. 2011-06-24 23:38 . 2011-06-24 23:38 -------- d-----w- c:\program files (x86)\Common Files\TortoiseOverlays
  77. 2011-06-24 23:38 . 2011-06-24 23:38 -------- d-----w- c:\program files (x86)\TortoiseSVN
  78. 2011-06-24 21:25 . 2011-05-16 23:35 231600 ----a-w- c:\windows\system32\drivers\VBoxDrv.sys
  79. 2011-06-24 21:25 . 2011-06-24 21:25 -------- dc----w- c:\windows\system32\DRVSTORE
  80. 2011-06-24 21:25 . 2011-05-16 23:35 56752 ----a-w- c:\windows\system32\drivers\VBoxUSBMon.sys
  81. 2011-06-24 21:25 . 2011-06-24 21:25 -------- d-----w- c:\program files\Oracle
  82. 2011-06-22 05:28 . 2011-06-22 05:28 -------- d-----w- c:\program files (x86)\Audacity
  83. 2011-06-22 01:35 . 2011-06-22 01:35 -------- d-----w- C:\.file_store_32
  84. 2011-06-22 00:36 . 2011-06-22 00:36 -------- d-----w- c:\windows\.file_store_32
  85. 2011-06-21 03:46 . 2011-06-27 07:25 -------- d-----w- C:\Hotspot Shield
  86. 2011-06-20 01:11 . 2011-06-20 01:13 -------- d-----w- c:\program files (x86)\WinWget
  87. 2011-06-19 22:03 . 2011-06-19 22:05 -------- d-----w- c:\program files\NetBeans 7.0
  88. 2011-06-19 15:06 . 2011-06-19 15:06 -------- d-----w- c:\program files (x86)\Common Files\Java
  89. 2011-06-18 20:49 . 2011-06-18 20:49 159744 ----a-w- c:\program files (x86)\Internet Explorer\Plugins\npqtplugin7.dll
  90. 2011-06-18 20:49 . 2011-06-18 20:49 159744 ----a-w- c:\program files (x86)\Internet Explorer\Plugins\npqtplugin6.dll
  91. 2011-06-18 20:49 . 2011-06-18 20:49 159744 ----a-w- c:\program files (x86)\Internet Explorer\Plugins\npqtplugin5.dll
  92. 2011-06-18 20:49 . 2011-06-18 20:49 159744 ----a-w- c:\program files (x86)\Internet Explorer\Plugins\npqtplugin4.dll
  93. 2011-06-18 20:49 . 2011-06-18 20:49 159744 ----a-w- c:\program files (x86)\Internet Explorer\Plugins\npqtplugin3.dll
  94. 2011-06-18 20:49 . 2011-06-18 20:49 159744 ----a-w- c:\program files (x86)\Internet Explorer\Plugins\npqtplugin2.dll
  95. 2011-06-18 20:49 . 2011-06-18 20:49 159744 ----a-w- c:\program files (x86)\Internet Explorer\Plugins\npqtplugin.dll
  96. 2011-06-18 20:48 . 2011-06-18 20:48 -------- d-----w- c:\programdata\Apple Computer
  97. 2011-06-18 20:47 . 2011-06-18 20:47 -------- d-----w- c:\program files (x86)\Common Files\Apple
  98. 2011-06-18 20:47 . 2011-06-18 20:47 -------- d-----w- c:\program files (x86)\Apple Software Update
  99. 2011-06-18 20:47 . 2011-06-18 20:47 -------- d-----w- c:\programdata\Apple
  100. 2011-06-18 20:40 . 2011-06-18 20:40 -------- d-----w- c:\program files (x86)\CandySoft
  101. 2011-06-18 20:23 . 2011-06-18 20:23 -------- d-----r- C:\MSOCache
  102. 2011-06-17 13:41 . 2011-06-17 13:41 -------- d-----w- c:\windows\SysWow64\AGEIA
  103. 2011-06-17 13:41 . 2011-06-17 13:41 -------- d-----w- c:\program files (x86)\AGEIA Technologies
  104. 2011-06-17 13:40 . 2011-06-17 13:40 -------- d-----w- c:\program files (x86)\Common Files\Wise Installation Wizard
  105. 2011-06-17 13:13 . 2011-06-17 17:59 -------- d-----w- c:\program files (x86)\Mass Effect 2
  106. 2011-06-17 13:13 . 2011-06-17 13:40 -------- d-----w- c:\program files (x86)\Common Files\BioWare
  107. 2011-06-15 23:25 . 2011-04-25 05:33 1923968 ----a-w- c:\windows\system32\drivers\tcpip.sys
  108. 2011-06-15 23:25 . 2011-04-25 02:34 499200 ----a-w- c:\windows\system32\drivers\afd.sys
  109. 2011-06-15 23:25 . 2011-04-27 02:40 158208 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
  110. 2011-06-15 23:25 . 2011-04-27 02:39 289280 ----a-w- c:\windows\system32\drivers\mrxsmb10.sys
  111. 2011-06-15 23:25 . 2011-04-27 02:39 128000 ----a-w- c:\windows\system32\drivers\mrxsmb20.sys
  112. 2011-06-15 23:25 . 2011-05-28 03:06 3135488 ----a-w- c:\windows\system32\win32k.sys
  113. 2011-06-15 23:25 . 2011-04-29 03:06 467456 ----a-w- c:\windows\system32\drivers\srv.sys
  114. 2011-06-15 23:25 . 2011-04-29 03:05 410112 ----a-w- c:\windows\system32\drivers\srv2.sys
  115. 2011-06-15 23:25 . 2011-04-29 03:05 168448 ----a-w- c:\windows\system32\drivers\srvnet.sys
  116. 2011-06-15 23:24 . 2011-02-25 06:22 861696 ----a-w- c:\windows\system32\oleaut32.dll
  117. 2011-06-15 23:24 . 2011-02-25 05:34 571904 ----a-w- c:\windows\SysWow64\oleaut32.dll
  118. 2011-06-15 23:24 . 2011-05-03 05:29 976896 ----a-w- c:\windows\system32\inetcomm.dll
  119. 2011-06-15 23:24 . 2011-05-03 04:30 741376 ----a-w- c:\windows\SysWow64\inetcomm.dll
  120. 2011-06-15 17:20 . 2011-06-15 17:20 -------- d-sh--w- c:\programdata\SecuROM
  121. 2011-06-15 17:01 . 2011-06-15 19:12 -------- d-----w- c:\program files (x86)\Rockstar Games
  122. 2011-06-15 16:44 . 2011-06-15 16:44 254528 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
  123. 2011-06-15 16:44 . 2011-06-15 16:44 -------- d-----w- c:\program files (x86)\DAEMON Tools Lite
  124. 2011-06-15 16:43 . 2011-06-15 16:43 -------- d-----w- c:\programdata\DAEMON Tools Lite
  125. 2011-06-15 00:37 . 2011-06-15 00:37 -------- d-----w- C:\UDK
  126. 2011-06-14 23:35 . 2011-06-14 23:57 -------- d-----w- C:\Download
  127. 2011-06-14 23:35 . 2011-06-14 23:35 -------- d-----w- c:\programdata\xOcean
  128. 2011-06-14 23:34 . 2011-06-14 23:34 -------- d-----w- c:\program files (x86)\BlastShark
  129. 2011-06-14 01:32 . 2011-06-14 01:32 -------- d-----w- c:\program files (x86)\TeamViewer
  130. 2011-06-14 01:21 . 2011-06-14 01:21 -------- d-----w- c:\program files\DivX
  131. 2011-06-14 01:20 . 2011-06-14 01:21 -------- d-----w- c:\program files (x86)\Common Files\DivX Shared
  132. 2011-06-14 01:20 . 2011-06-14 01:22 -------- d-----w- c:\program files (x86)\DivX
  133. 2011-06-14 01:19 . 2011-06-14 01:22 -------- d-----w- c:\programdata\DivX
  134. 2011-06-13 18:41 . 2011-06-07 17:10 8873296 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
  135. 2011-06-13 03:33 . 2009-09-04 22:29 1892184 ----a-w- c:\windows\SysWow64\D3DX9_42.dll
  136. 2011-06-13 03:33 . 2011-06-13 03:33 -------- d-----w- c:\program files (x86)\Microsoft Games for Windows - LIVE
  137. 2011-06-13 03:32 . 2011-06-13 03:32 -------- d-----w- c:\windows\SysWow64\Wat
  138. 2011-06-13 03:32 . 2011-06-13 03:32 -------- d-----w- c:\windows\system32\Wat
  139. 2011-06-13 02:57 . 2011-06-13 02:58 -------- d-----w- c:\program files (x86)\ManyCam
  140. 2011-06-12 19:52 . 2011-06-12 21:30 -------- d-----w- c:\programdata\VirtualizedApplications
  141. 2011-06-12 19:42 . 2011-06-12 19:43 -------- d-----w- c:\users\Kathleen
  142. 2011-06-12 19:00 . 2011-06-24 18:38 -------- d-----w- c:\programdata\PCDr
  143. 2011-06-12 17:40 . 2011-06-14 03:11 -------- d-----w- c:\program files (x86)\Microsoft Application Virtualization Client
  144. 2011-06-12 13:59 . 2011-04-09 06:58 142336 ----a-w- c:\windows\system32\poqexec.exe
  145. 2011-06-12 13:59 . 2011-04-09 05:56 123904 ----a-w- c:\windows\SysWow64\poqexec.exe
  146. 2011-06-12 13:59 . 2011-02-25 06:19 2871808 ----a-w- c:\windows\explorer.exe
  147. 2011-06-12 13:59 . 2011-02-25 05:30 2616320 ----a-w- c:\windows\SysWow64\explorer.exe
  148. 2011-06-12 13:59 . 2011-04-09 07:02 5562240 ----a-w- c:\windows\system32\ntoskrnl.exe
  149. 2011-06-12 13:59 . 2011-04-09 06:02 3967872 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe
  150. 2011-06-12 13:59 . 2011-04-09 06:02 3912576 ----a-w- c:\windows\SysWow64\ntoskrnl.exe
  151. 2011-06-12 13:59 . 2011-03-12 12:08 1465344 ----a-w- c:\windows\system32\XpsPrint.dll
  152. 2011-06-12 13:59 . 2011-03-12 11:23 870912 ----a-w- c:\windows\SysWow64\XpsPrint.dll
  153. 2011-06-12 13:59 . 2011-04-22 22:15 27520 ----a-w- c:\windows\system32\drivers\Diskdump.sys
  154. 2011-06-12 13:59 . 2011-02-18 10:51 31232 ----a-w- c:\windows\system32\prevhost.exe
  155. 2011-06-12 13:59 . 2011-02-18 05:39 31232 ----a-w- c:\windows\SysWow64\prevhost.exe
  156. 2011-06-12 03:49 . 2011-06-12 03:49 -------- d-----w- c:\program files (x86)\SystemRequirementsLab
  157. 2011-06-12 00:11 . 2011-06-12 00:11 178800 ----a-w- c:\windows\SysWow64\CmdLineExt_x64.dll
  158. 2011-06-12 00:07 . 2011-06-15 14:46 -------- d-----w- C:\.jagex_cache_32
  159. .
  160. .
  161. (((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
  162. .
  163. 2011-06-11 21:42 . 2010-06-24 16:33 18328 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
  164. 2011-05-25 04:44 . 2011-05-25 04:44 61952 ----a-w- c:\windows\system32\OVDecode64.dll
  165. 2011-05-25 04:44 . 2011-05-25 04:44 59904 ----a-w- c:\windows\SysWow64\OVDecode.dll
  166. 2011-05-25 04:44 . 2011-05-25 04:44 53760 ----a-w- c:\windows\system32\OpenCL.dll
  167. 2011-05-25 04:44 . 2011-05-25 04:44 51712 ----a-w- c:\windows\SysWow64\OpenCL.dll
  168. 2011-05-25 04:44 . 2011-05-25 04:44 16672768 ----a-w- c:\windows\system32\amdocl64.dll
  169. 2011-05-25 04:43 . 2011-05-25 04:43 12798976 ----a-w- c:\windows\SysWow64\amdocl.dll
  170. 2011-05-24 23:40 . 2011-05-24 23:40 37888 ----a-w- c:\windows\system32\drivers\taphss.sys
  171. 2011-05-16 23:35 . 2011-05-16 23:35 176560 ----a-w- c:\windows\system32\drivers\VBoxNetFlt.sys
  172. 2011-05-16 23:35 . 2011-05-16 23:35 156912 ----a-w- c:\windows\system32\drivers\VBoxNetAdp.sys
  173. 2011-05-16 23:35 . 2011-05-16 23:35 320816 ----a-w- c:\windows\system32\VBoxNetFltNotify.dll
  174. 2011-04-14 19:01 . 2010-10-14 03:28 94992 ----a-w- c:\windows\system32\drivers\mferkdet.sys
  175. 2011-04-14 19:01 . 2010-10-14 03:28 75160 ----a-w- c:\windows\system32\drivers\mfenlfk.sys
  176. 2011-04-14 19:01 . 2010-10-14 03:28 63056 ----a-w- c:\windows\system32\drivers\cfwids.sys
  177. 2011-04-14 19:01 . 2010-10-14 03:28 530304 ----a-w- c:\windows\system32\drivers\mfehidk.sys
  178. 2011-04-14 19:01 . 2010-10-14 03:28 441840 ----a-w- c:\windows\system32\drivers\mfefirek.sys
  179. 2011-04-14 19:01 . 2010-10-14 03:28 283744 ----a-w- c:\windows\system32\drivers\mfewfpk.sys
  180. 2011-04-14 19:01 . 2010-10-14 03:28 190520 ----a-w- c:\windows\system32\drivers\mfeavfk.sys
  181. 2011-04-14 19:01 . 2010-10-14 03:28 121376 ----a-w- c:\windows\system32\drivers\mfeapfk.sys
  182. 2011-04-09 23:55 . 2011-04-09 23:55 15453336 ----a-w- c:\windows\SysWow64\xlive.dll
  183. 2011-04-09 23:55 . 2011-04-09 23:55 13642904 ----a-w- c:\windows\SysWow64\xlivefnt.dll
  184. .
  185. .
  186. ((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
  187. .
  188. .
  189. *Note* empty entries & legit default entries are not shown
  190. REGEDIT4
  191. .
  192. [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\1TortoiseNormal]
  193. @="{C5994560-53D9-4125-87C9-F193FC689CB2}"
  194. [HKEY_CLASSES_ROOT\CLSID\{C5994560-53D9-4125-87C9-F193FC689CB2}]
  195. 2010-03-21 13:55 87304 ----a-w- c:\program files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll
  196. .
  197. [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\2TortoiseModified]
  198. @="{C5994561-53D9-4125-87C9-F193FC689CB2}"
  199. [HKEY_CLASSES_ROOT\CLSID\{C5994561-53D9-4125-87C9-F193FC689CB2}]
  200. 2010-03-21 13:55 87304 ----a-w- c:\program files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll
  201. .
  202. [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\3TortoiseConflict]
  203. @="{C5994562-53D9-4125-87C9-F193FC689CB2}"
  204. [HKEY_CLASSES_ROOT\CLSID\{C5994562-53D9-4125-87C9-F193FC689CB2}]
  205. 2010-03-21 13:55 87304 ----a-w- c:\program files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll
  206. .
  207. [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\4TortoiseLocked]
  208. @="{C5994563-53D9-4125-87C9-F193FC689CB2}"
  209. [HKEY_CLASSES_ROOT\CLSID\{C5994563-53D9-4125-87C9-F193FC689CB2}]
  210. 2010-03-21 13:55 87304 ----a-w- c:\program files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll
  211. .
  212. [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\5TortoiseReadOnly]
  213. @="{C5994564-53D9-4125-87C9-F193FC689CB2}"
  214. [HKEY_CLASSES_ROOT\CLSID\{C5994564-53D9-4125-87C9-F193FC689CB2}]
  215. 2010-03-21 13:55 87304 ----a-w- c:\program files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll
  216. .
  217. [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\6TortoiseDeleted]
  218. @="{C5994565-53D9-4125-87C9-F193FC689CB2}"
  219. [HKEY_CLASSES_ROOT\CLSID\{C5994565-53D9-4125-87C9-F193FC689CB2}]
  220. 2010-03-21 13:55 87304 ----a-w- c:\program files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll
  221. .
  222. [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\7TortoiseAdded]
  223. @="{C5994566-53D9-4125-87C9-F193FC689CB2}"
  224. [HKEY_CLASSES_ROOT\CLSID\{C5994566-53D9-4125-87C9-F193FC689CB2}]
  225. 2010-03-21 13:55 87304 ----a-w- c:\program files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll
  226. .
  227. [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\8TortoiseIgnored]
  228. @="{C5994567-53D9-4125-87C9-F193FC689CB2}"
  229. [HKEY_CLASSES_ROOT\CLSID\{C5994567-53D9-4125-87C9-F193FC689CB2}]
  230. 2010-03-21 13:55 87304 ----a-w- c:\program files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll
  231. .
  232. [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\9TortoiseUnversioned]
  233. @="{C5994568-53D9-4125-87C9-F193FC689CB2}"
  234. [HKEY_CLASSES_ROOT\CLSID\{C5994568-53D9-4125-87C9-F193FC689CB2}]
  235. 2010-03-21 13:55 87304 ----a-w- c:\program files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll
  236. .
  237. [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
  238. @="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
  239. [HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
  240. 2011-02-18 05:12 94208 ----a-w- c:\users\Bdoom\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
  241. .
  242. [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
  243. @="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
  244. [HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
  245. 2011-02-18 05:12 94208 ----a-w- c:\users\Bdoom\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
  246. .
  247. [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
  248. @="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
  249. [HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
  250. 2011-02-18 05:12 94208 ----a-w- c:\users\Bdoom\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
  251. .
  252. [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
  253. @="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
  254. [HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
  255. 2011-02-18 05:12 94208 ----a-w- c:\users\Bdoom\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
  256. .
  257. [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
  258. "msnmsgr"="c:\program files (x86)\Windows Live\Messenger\msnmsgr.exe" [2010-11-10 4240760]
  259. "ManyCam"="c:\program files (x86)\ManyCam\Bin\ManyCam.exe" [2011-05-13 1756232]
  260. "DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2011-01-20 1305408]
  261. "RGSC"="c:\program files (x86)\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe" [2008-11-14 305064]
  262. .
  263. [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
  264. "ShwiconXP9106"="c:\program files (x86)\Multimedia Card Reader(9106)\ShwiconXP9106.exe" [2010-03-10 237568]
  265. "StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2011-05-25 336384]
  266. "THX Audio Control Panel"="c:\program files (x86)\Creative\THX TruStudio PC\THXAudioCP\THXAudio.exe" [2009-12-01 963584]
  267. "UpdReg"="c:\windows\UpdReg.EXE" [2000-05-11 90112]
  268. "Dell DataSafe Online"="c:\program files (x86)\Dell\Dell Datasafe Online\NOBuClient.exe" [2010-08-26 1117528]
  269. "Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe" [2011-06-06 35736]
  270. "Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2011-03-30 937920]
  271. "RoxWatchTray"="c:\program files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe" [2010-11-25 240112]
  272. "Desktop Disc Tool"="c:\program files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe" [2010-11-17 514544]
  273. "Malwarebytes' Anti-Malware"="c:\program files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" [2011-05-29 449584]
  274. "DivXUpdate"="c:\program files (x86)\DivX\DivX Update\DivXUpdate.exe" [2011-03-21 1230704]
  275. "QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" [2010-11-29 421888]
  276. "SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2011-04-08 254696]
  277. "mcui_exe"="c:\program files\McAfee.com\Agent\mcagent.exe" [2011-05-05 1486392]
  278. .
  279. [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\RunOnce]
  280. "Launcher"="c:\program files (x86)\Dell DataSafe Local Backup\Components\Scheduler\Launcher.exe" [2010-08-11 163040]
  281. .
  282. c:\users\Bdoom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
  283. Dropbox.lnk - c:\users\Bdoom\AppData\Roaming\Dropbox\bin\Dropbox.exe [2011-5-25 24176560]
  284. .
  285. [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
  286. "ConsentPromptBehaviorAdmin"= 0 (0x0)
  287. "ConsentPromptBehaviorUser"= 3 (0x3)
  288. "EnableLUA"= 0 (0x0)
  289. "EnableUIADesktopToggle"= 0 (0x0)
  290. "PromptOnSecureDesktop"= 0 (0x0)
  291. .
  292. [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
  293. "aux1"=wdmaud.drv
  294. .
  295. [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
  296. Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
  297. .
  298. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc]
  299. @=""
  300. .
  301. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
  302. @=""
  303. .
  304. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
  305. @="Service"
  306. .
  307. R1 bhwfptmk;bhwfptmk;c:\windows\system32\drivers\bhwfptmk.sys [x]
  308. R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
  309. R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
  310. R2 RoxWatch12;Roxio Hard Drive Watcher 12;c:\program files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe [2010-11-25 219632]
  311. R3 ahcix64s;ahcix64s;c:\windows\system32\drivers\ahcix64s.sys [x]
  312. R3 BITCOMET_HELPER_SERVICE;BitComet Disk Boost Service;c:\program files (x86)\BitComet\tools\BitCometService.exe [2010-12-28 1296728]
  313. R3 cfwids;McAfee Inc. cfwids;c:\windows\system32\drivers\cfwids.sys [x]
  314. R3 mferkdet;McAfee Inc. mferkdet;c:\windows\system32\drivers\mferkdet.sys [x]
  315. R3 MpNWMon;Microsoft Malware Protection Network Driver;c:\windows\system32\DRIVERS\MpNWMon.sys [x]
  316. R3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys [x]
  317. R3 NisSrv;Microsoft Network Inspection;c:\program files\Microsoft Security Client\Antimalware\NisSrv.exe [2010-11-11 282616]
  318. R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-10 4925184]
  319. R3 PCDSRVC{1E208CE0-FB7451FF-06020101}_0;PCDSRVC{1E208CE0-FB7451FF-06020101}_0 - PCDR Kernel Mode Service Helper Driver;c:\program files\dell support center\pcdsrvc_x64.pkms [2011-03-18 25072]
  320. R3 RoxMediaDB12OEM;RoxMediaDB12OEM;c:\program files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe [2010-11-25 1116656]
  321. R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
  322. R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [x]
  323. R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe [x]
  324. R4 McAWFwk;McAfee Activation Service;c:\progra~1\mcafee\msc\mcawfwk.exe [2010-08-30 220528]
  325. R4 McMPFSvc;McAfee Personal Firewall Service;c:\program files\Common Files\McAfee\McSvcHost\McSvHost.exe [2010-03-10 355440]
  326. R4 McNaiAnn;McAfee VirusScan Announcer;c:\program files\Common Files\mcafee\McSvcHost\McSvHost.exe [2010-03-10 355440]
  327. R4 McOobeSv;McAfee OOBE Service;c:\program files\Common Files\mcafee\McSvcHost\McSvHost.exe [2010-03-10 355440]
  328. R4 mfefire;McAfee Firewall Core Service;c:\program files\Common Files\McAfee\SystemCore\\mfefire.exe [2011-04-14 245352]
  329. R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 57184]
  330. S0 mfewfpk;McAfee Inc. mfewfpk;c:\windows\system32\drivers\mfewfpk.sys [x]
  331. S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys [x]
  332. S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [x]
  333. S1 mfenlfk;McAfee NDIS Light Filter;c:\windows\system32\DRIVERS\mfenlfk.sys [x]
  334. S1 VBoxDrv;VirtualBox Service;c:\windows\system32\DRIVERS\VBoxDrv.sys [x]
  335. S1 VBoxUSBMon;VirtualBox USB Monitor Driver;c:\windows\system32\DRIVERS\VBoxUSBMon.sys [x]
  336. S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2011-06-06 64952]
  337. S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [x]
  338. S2 AMD FUEL Service;AMD FUEL Service;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2011-05-25 365568]
  339. S2 AMD_RAIDXpert;AMD RAIDXpert;c:\program files (x86)\AMD\RAIDXpert\bin\RAIDXpertService.exe [2009-03-16 122880]
  340. S2 AMDFusionSVC;AMD Fusion Utility Service;c:\program files (x86)\AMD\AMD Fusion Utility for Desktops\FusionSVC.exe [2009-09-08 383544]
  341. S2 cvhsvc;Client Virtualization Handler;c:\program files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [2010-02-28 821664]
  342. S2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2011-05-29 366640]
  343. S2 mfevtp;McAfee Validation Trust Protection Service;c:\windows\system32\mfevtps.exe [x]
  344. S2 NOBU;Dell DataSafe Online;c:\program files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe SERVICE [x]
  345. S2 sftlist;Application Virtualization Client;c:\program files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2010-04-24 483688]
  346. S2 SftService;SoftThinks Agent Service;c:\program files (x86)\Dell DataSafe Local Backup\sftservice.EXE [2010-08-20 689472]
  347. S2 TeamViewer6;TeamViewer 6;c:\program files (x86)\TeamViewer\Version6\TeamViewer_Service.exe [2011-06-01 2337144]
  348. S3 amdiox64;AMD IO Driver;c:\windows\system32\DRIVERS\amdiox64.sys [x]
  349. S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atikmdag.sys [x]
  350. S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [x]
  351. S3 AmdLLD64;AMD Low Level Device Driver;c:\windows\system32\DRIVERS\AmdLLD64.sys [x]
  352. S3 AtiHDAudioService;ATI Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys [x]
  353. S3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0;c:\windows\system32\DRIVERS\k57nd60a.sys [x]
  354. S3 ManyCam;ManyCam Virtual Webcam, WDM Video Capture Driver;c:\windows\system32\DRIVERS\ManyCam_x64.sys [x]
  355. S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [x]
  356. S3 mfefirek;McAfee Inc. mfefirek;c:\windows\system32\drivers\mfefirek.sys [x]
  357. S3 Sftfs;Sftfs;c:\windows\system32\DRIVERS\Sftfslh.sys [x]
  358. S3 Sftplay;Sftplay;c:\windows\system32\DRIVERS\Sftplaylh.sys [x]
  359. S3 Sftredir;Sftredir;c:\windows\system32\DRIVERS\Sftredirlh.sys [x]
  360. S3 Sftvol;Sftvol;c:\windows\system32\DRIVERS\Sftvollh.sys [x]
  361. S3 sftvsa;Application Virtualization Service Agent;c:\program files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2010-04-24 209768]
  362. S3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter;c:\windows\system32\DRIVERS\VBoxNetAdp.sys [x]
  363. S3 VBoxNetFlt;VBoxNetFlt Service;c:\windows\system32\DRIVERS\VBoxNetFlt.sys [x]
  364. .
  365. .
  366. --- Other Services/Drivers In Memory ---
  367. .
  368. *Deregistered* - mfeavfk01
  369. .
  370. Contents of the 'Scheduled Tasks' folder
  371. .
  372. 2011-07-05 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-553950195-1279433845-1806113736-1000Core.job
  373. - c:\users\Bdoom\AppData\Local\Google\Update\GoogleUpdate.exe [2011-06-11 21:48]
  374. .
  375. 2011-07-06 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-553950195-1279433845-1806113736-1000UA.job
  376. - c:\users\Bdoom\AppData\Local\Google\Update\GoogleUpdate.exe [2011-06-11 21:48]
  377. .
  378. 2011-06-24 c:\windows\Tasks\PCDoctorBackgroundMonitorTask.job
  379. - c:\program files\Dell Support Center\uaclauncher.exe [2011-06-21 18:09]
  380. .
  381. 2011-07-06 c:\windows\Tasks\SystemToolsDailyTest.job
  382. - c:\program files\Dell Support Center\uaclauncher.exe [2011-06-21 18:09]
  383. .
  384. .
  385. --------- x86-64 -----------
  386. .
  387. .
  388. [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
  389. @="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
  390. [HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
  391. 2011-02-18 05:12 97792 ----a-w- c:\users\Bdoom\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
  392. .
  393. [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
  394. @="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
  395. [HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
  396. 2011-02-18 05:12 97792 ----a-w- c:\users\Bdoom\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
  397. .
  398. [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
  399. @="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
  400. [HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
  401. 2011-02-18 05:12 97792 ----a-w- c:\users\Bdoom\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
  402. .
  403. [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
  404. @="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
  405. [HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
  406. 2011-02-18 05:12 97792 ----a-w- c:\users\Bdoom\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
  407. .
  408. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
  409. "RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2009-11-18 9608224]
  410. "RunDLLEntry_THXCfg"="c:\windows\system32\RunDLL32.exe" [2009-07-14 45568]
  411. "RunDLLEntry_EptMon"="c:\windows\system32\RunDLL32.exe" [2009-07-14 45568]
  412. "DellStage"="c:\program files (x86)\Dell Stage\Dell Stage\stage_primary.exe" [2011-01-25 1802472]
  413. "MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2010-11-30 1436224]
  414. .
  415. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
  416. "LoadAppInit_DLLs"=0x0
  417. .
  418. ------- Supplementary Scan -------
  419. .
  420. uLocal Page = c:\windows\system32\blank.htm
  421. mLocal Page = c:\windows\SysWOW64\blank.htm
  422. uInternet Settings,ProxyServer = http=;ftp=;https=;
  423. IE: &D&ownload &with BitComet - c:\program files (x86)\BitComet\BitComet.exe/AddLink.htm
  424. IE: &D&ownload all with BitComet - c:\program files (x86)\BitComet\BitComet.exe/AddAllLink.htm
  425. IE: Free YouTube to MP3 Converter - c:\users\Bdoom\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm
  426. TCP: DhcpNameServer = 192.168.1.1 71.252.0.12
  427. .
  428. - - - - ORPHANS REMOVED - - - -
  429. .
  430. Wow6432Node-HKCU-Run-Steam - c:\program files (x86)\Steam\Steam.exe
  431. BHO-{F9E4A054-E9B1-4BC3-83A3-76A1AE736170} - c:\program files (x86)\Hotspot Shield\HssIE\HssIE_64.dll
  432. AddRemove-Steam App 440 - c:\program files (x86)\Steam\steam.exe
  433. .
  434. .
  435. .
  436. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\PCDSRVC{1E208CE0-FB7451FF-06020101}_0]
  437. "ImagePath"="\??\c:\program files\dell support center\pcdsrvc_x64.pkms"
  438. .
  439. --------------------- LOCKED REGISTRY KEYS ---------------------
  440. .
  441. [HKEY_USERS\S-1-5-21-553950195-1279433845-1806113736-1000\Software\SecuROM\License information*]
  442. "datasecu"=hex:4b,42,41,52,c9,14,81,e4,3b,ab,d8,d5,d6,ed,c8,61,5b,2e,8f,f7,7d,
  443. 10,ee,0d,ee,03,fb,50,c4,22,1a,ab,be,14,d1,3d,57,59,3f,54,9d,c7,a6,45,0e,96,\
  444. "rkeysecu"=hex:2f,0f,d5,3e,02,2b,06,63,b1,0b,dd,b6,71,e2,54,98
  445. .
  446. [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
  447. @Denied: (A 2) (Everyone)
  448. @="FlashBroker"
  449. "LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10t_ActiveX.exe,-101"
  450. .
  451. [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
  452. "Enabled"=dword:00000001
  453. .
  454. [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
  455. @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10t_ActiveX.exe"
  456. .
  457. [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
  458. @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
  459. .
  460. [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
  461. @Denied: (A 2) (Everyone)
  462. @="Shockwave Flash Object"
  463. .
  464. [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
  465. @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10t.ocx"
  466. "ThreadingModel"="Apartment"
  467. .
  468. [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
  469. @="0"
  470. .
  471. [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
  472. @="ShockwaveFlash.ShockwaveFlash.10"
  473. .
  474. [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
  475. @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10t.ocx, 1"
  476. .
  477. [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
  478. @="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
  479. .
  480. [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
  481. @="1.0"
  482. .
  483. [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
  484. @="ShockwaveFlash.ShockwaveFlash"
  485. .
  486. [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
  487. @Denied: (A 2) (Everyone)
  488. @="Macromedia Flash Factory Object"
  489. .
  490. [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
  491. @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10t.ocx"
  492. "ThreadingModel"="Apartment"
  493. .
  494. [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
  495. @="FlashFactory.FlashFactory.1"
  496. .
  497. [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
  498. @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10t.ocx, 1"
  499. .
  500. [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
  501. @="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
  502. .
  503. [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
  504. @="1.0"
  505. .
  506. [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
  507. @="FlashFactory.FlashFactory"
  508. .
  509. [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
  510. @Denied: (A 2) (Everyone)
  511. @="IFlashBroker4"
  512. .
  513. [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
  514. @="{00020424-0000-0000-C000-000000000046}"
  515. .
  516. [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
  517. @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
  518. "Version"="1.0"
  519. .
  520. [HKEY_LOCAL_MACHINE\SOFTWARE\McAfee]
  521. "SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
  522. 00,5c,00,6d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\
  523. .
  524. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
  525. @Denied: (Full) (Everyone)
  526. .
  527. ------------------------ Other Running Processes ------------------------
  528. .
  529. c:\program files (x86)\AMD\RAIDXpert\bin\RAIDXpert.exe
  530. c:\windows\SysWOW64\PnkBstrA.exe
  531. c:\program files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STService.exe
  532. c:\program files (x86)\Roxio\OEM\Roxio Burn\Roxio Burn.exe
  533. .
  534. **************************************************************************
  535. .
  536. Completion time: 2011-07-06 14:51:08 - machine was rebooted
  537. ComboFix-quarantined-files.txt 2011-07-06 19:51
  538. .
  539. Pre-Run: 767,694,385,152 bytes free
  540. Post-Run: 767,312,510,976 bytes free
  541. .
  542. - - End Of File - - E5494B29DD2DB0164F62BB4667C148D7
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!