API tools faq
paste
Advertisement
Guest User

scanresult

a guest
May 12th, 2016
168
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 71.65 KB | None | 0 0
raw download clone embed print report
  1. OTL logfile created on: 12-May-16 4:11:48 PM - Run 1
  2. OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\fauzaneinil\Desktop
  3. 64bit- An unknown product (Version = 6.2.9200) - Type = NTWorkstation
  4. Internet Explorer (Version = 9.10.9200.16484)
  5. Locale: 00000409 | Country: United States | Language: ENU | Date Format: dd-MMM-yy
  6.  
  7. 3.88 Gb Total Physical Memory | 2.57 Gb Available Physical Memory | 66.13% Memory free
  8. 5.51 Gb Paging File | 3.91 Gb Available in Paging File | 71.00% Paging File free
  9. Paging file location(s): ?:\pagefile.sys [binary data]
  10.  
  11. %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
  12. Drive C: | 138.57 Gb Total Space | 33.23 Gb Free Space | 23.98% Space Free | Partition Type: NTFS
  13. Drive D: | 292.97 Gb Total Space | 115.55 Gb Free Space | 39.44% Space Free | Partition Type: NTFS
  14. Drive F: | 931.51 Gb Total Space | 200.22 Gb Free Space | 21.49% Space Free | Partition Type: NTFS
  15.  
  16. Computer Name: VAIO | User Name: fauzaneinil | Logged in as Administrator.
  17. Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
  18. Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
  19.  
  20. [color=#E56717]========== Processes (SafeList) ==========[/color]
  21.  
  22. PRC - C:\Users\fauzaneinil\Desktop\OTL.exe (OldTimer Tools)
  23. PRC - C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugincontainer.exe ()
  24. PRC - C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugins\2\Plugin.exe ()
  25. PRC - C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugins\3\Plugin.exe ()
  26. PRC - C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugins\7\Plugin.exe ()
  27. PRC - C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugins\8\Plugin.exe ()
  28. PRC - C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugins\5\Plugin.exe ()
  29. PRC - C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugins\6\Plugin.exe ()
  30. PRC - C:\Program Files (x86)\Common Files\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\updater.exe ()
  31. PRC - C:\Users\fauzaneinil\AppData\Roaming\ImageCropResize\ImageEd\ImageEd.exe (ImageEd)
  32. PRC - C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe (Microsoft Corporation)
  33. PRC - C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe (Microsoft Corporation)
  34. PRC - c:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
  35. PRC - C:\Program Files (x86)\Agames\agames_helper_service.exe ()
  36. PRC - C:\Users\fauzaneinil\AppData\Local\Kingsoft\WPS Office\9.1.0.4932\wtoolex\wpsupdatesvr.exe (Zhuhai Kingsoft Office Software Co.,Ltd)
  37. PRC - C:\Program Files (x86)\HD-V1.9\9a9b2148-9406-44cf-afe8-604ee134900e-10.exe (InfoHD-V1.8)
  38. PRC - C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe (Sony Corporation)
  39. PRC - C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe (Sony Corporation)
  40. PRC - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Intel Corporation)
  41. PRC - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation)
  42. PRC - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe (Intel Corporation)
  43. PRC - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe (Intel Corporation)
  44. PRC - C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe (Sony Corporation)
  45. PRC - C:\Program Files (x86)\Sony\VAIO Control Center\VESMgr.exe (Sony Corporation)
  46. PRC - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe (Intel Corporation)
  47.  
  48.  
  49. [color=#E56717]========== Modules (No Company Name) ==========[/color]
  50.  
  51. MOD - C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugins\3\Plugin.exe ()
  52. MOD - C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugins\7\Plugin.exe ()
  53. MOD - C:\Users\fauzaneinil\AppData\Local\Google\Chrome\Application\50.0.2661.94\libglesv2.dll ()
  54. MOD - C:\Users\fauzaneinil\AppData\Local\Google\Chrome\Application\50.0.2661.94\libegl.dll ()
  55. MOD - C:\Users\fauzaneinil\AppData\Local\Component Ball\{DE580709-0460-B4EE-41F5-4915CB65B951}\ComponentBall.dll ()
  56. MOD - C:\Users\fauzaneinil\AppData\Local\Component Ball\{DE580709-0460-B4EE-41F5-4915CB65B951}\jgdgtq.dll ()
  57. MOD - C:\Users\fauzaneinil\AppData\Local\Component Ball\{DE580709-0460-B4EE-41F5-4915CB65B951}\{65F913A3-B62C-F384-412B-D20BC2B7C03A}.dat ()
  58. MOD - C:\Program Files (x86)\Agames\agames_helper_service.exe ()
  59.  
  60.  
  61. [color=#E56717]========== Services (SafeList) ==========[/color]
  62.  
  63. SRV:[b]64bit:[/b] - (VCService) -- C:\Program Files\Sony\VAIO Care\VCService.exe File not found
  64. SRV:[b]64bit:[/b] - (Amsp) -- C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe coreFrameworkHost.exe File not found
  65. SRV:[b]64bit:[/b] - (ContentProtectorUpdate) -- C:\Program Files\ContentProtector\ContentProtectorUpdate.exe ("Artex Management S. A.")
  66. SRV:[b]64bit:[/b] - (ContentProtector) -- C:\Program Files\ContentProtector\ContentProtector.exe ("Artex Management S. A.")
  67. SRV:[b]64bit:[/b] - (McComponentHostService) -- C:\Program Files\McAfee Security Scan\3.11.309\McCHSvc.exe (McAfee, Inc.)
  68. SRV:[b]64bit:[/b] - (VUAgent) -- C:\Program Files\Sony\VAIO Update\VUAgent.exe (Sony Corporation)
  69. SRV:[b]64bit:[/b] - (wltrysvc) -- C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\WLTRYSVC.EXE (Broadcom Corporation)
  70. SRV:[b]64bit:[/b] - (TiMiniService) -- C:\Program Files\Trend Micro\Titanium\TiMiniService.exe (Trend Micro Inc.)
  71. SRV:[b]64bit:[/b] - (SystemEventsBroker) -- C:\Windows\SysNative\SystemEventsBrokerServer.dll (Microsoft Corporation)
  72. SRV:[b]64bit:[/b] - (TimeBroker) -- C:\Windows\SysNative\TimeBrokerServer.dll (Microsoft Corporation)
  73. SRV:[b]64bit:[/b] - (VAIO Power Management) -- C:\Program Files\Sony\VAIO Power Management\SPMService.exe (Sony Corporation)
  74. SRV:[b]64bit:[/b] - (BcmBtRSupport) -- C:\Windows\SysNative\BtwRSupportService.exe (Broadcom Corporation.)
  75. SRV:[b]64bit:[/b] - (wlidsvc) -- C:\Windows\SysNative\wlidsvc.dll (Microsoft Corporation)
  76. SRV:[b]64bit:[/b] - (netprofm) -- C:\Windows\SysNative\netprofmsvc.dll (Microsoft Corporation)
  77. SRV:[b]64bit:[/b] - (LSM) -- C:\Windows\SysNative\lsm.dll (Microsoft Corporation)
  78. SRV:[b]64bit:[/b] - (btwdins) -- C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe (Broadcom Corporation.)
  79. SRV:[b]64bit:[/b] - (PrintNotify) -- C:\Windows\SysNative\spool\drivers\x64\3\PrintConfig.dll (Microsoft Corporation)
  80. SRV:[b]64bit:[/b] - (AudioEndpointBuilder) -- C:\Windows\SysNative\AudioEndpointBuilder.dll (Microsoft Corporation)
  81. SRV:[b]64bit:[/b] - (WSService) -- C:\Windows\SysNative\WSService.dll (Microsoft Corporation)
  82. SRV:[b]64bit:[/b] - (fhsvc) -- C:\Windows\SysNative\fhsvc.dll (Microsoft Corporation)
  83. SRV:[b]64bit:[/b] - (BrokerInfrastructure) -- C:\Windows\SysNative\bisrv.dll (Microsoft Corporation)
  84. SRV:[b]64bit:[/b] - (WinDefend) -- C:\Program Files\Windows Defender\MsMpEng.exe (Microsoft Corporation)
  85. SRV:[b]64bit:[/b] - (WiaRpc) -- C:\Windows\SysNative\wiarpc.dll (Microsoft Corporation)
  86. SRV:[b]64bit:[/b] - (Wcmsvc) -- C:\Windows\SysNative\wcmsvc.dll (Microsoft Corporation)
  87. SRV:[b]64bit:[/b] - (VaultSvc) -- C:\Windows\SysNative\vaultsvc.dll (Microsoft Corporation)
  88. SRV:[b]64bit:[/b] - (svsvc) -- C:\Windows\SysNative\svsvc.dll (Microsoft Corporation)
  89. SRV:[b]64bit:[/b] - (Netlogon) -- C:\Windows\SysNative\netlogon.dll (Microsoft Corporation)
  90. SRV:[b]64bit:[/b] - (NcaSvc) -- C:\Windows\SysNative\NcaSvc.dll (Microsoft Corporation)
  91. SRV:[b]64bit:[/b] - (NcdAutoSetup) -- C:\Windows\SysNative\NcdAutoSetup.dll (Microsoft Corporation)
  92. SRV:[b]64bit:[/b] - (KeyIso) -- C:\Windows\SysNative\keyiso.dll (Microsoft Corporation)
  93. SRV:[b]64bit:[/b] - (EFS) -- C:\Windows\SysNative\efssvc.dll (Microsoft Corporation)
  94. SRV:[b]64bit:[/b] - (DsmSvc) -- C:\Windows\SysNative\DeviceSetupManager.dll (Microsoft Corporation)
  95. SRV:[b]64bit:[/b] - (DeviceAssociationService) -- C:\Windows\SysNative\das.dll (Microsoft Corporation)
  96. SRV:[b]64bit:[/b] - (AllUserInstallAgent) -- C:\Windows\SysNative\AUInstallAgent.dll (Microsoft Corporation)
  97. SRV:[b]64bit:[/b] - (vmicvss) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)
  98. SRV:[b]64bit:[/b] - (vmictimesync) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)
  99. SRV:[b]64bit:[/b] - (vmicshutdown) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)
  100. SRV:[b]64bit:[/b] - (vmicrdv) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)
  101. SRV:[b]64bit:[/b] - (vmickvpexchange) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)
  102. SRV:[b]64bit:[/b] - (vmicheartbeat) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)
  103. SRV:[b]64bit:[/b] - (Intel(R) -- C:\Program Files\Intel\iCLS Client\HeciServer.exe (Intel(R) Corporation)
  104. SRV:[b]64bit:[/b] - (SpfService) -- C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\SPF\SpfService64.exe (Sony Corporation)
  105. SRV - (Service Mgr ResultsHub) -- C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugincontainer.exe ()
  106. SRV - (Update Mgr ResultsHub) -- C:\Program Files (x86)\Common Files\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\updater.exe ()
  107. SRV - (c2cpnrsvc) -- C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe (Microsoft Corporation)
  108. SRV - (c2cautoupdatesvc) -- C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe (Microsoft Corporation)
  109. SRV - (AdobeARMservice) -- c:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
  110. SRV - (AdobeFlashPlayerUpdateSvc) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
  111. SRV - (Kingsoft_WPS_UpdateService) -- C:\Users\fauzaneinil\AppData\Local\Kingsoft\WPS Office\9.1.0.4932\wtoolex\wpsupdatesvr.exe (Zhuhai Kingsoft Office Software Co.,Ltd)
  112. SRV - (globalUpdatem) -- C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe (globalUpdate)
  113. SRV - (globalUpdate) -- C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe (globalUpdate)
  114. SRV - (SkypeUpdate) -- C:\Program Files (x86)\Skype\Updater\Updater.exe (Skype Technologies)
  115. SRV - (NetworkSupport) -- C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkSupport.exe (Sony Corporation)
  116. SRV - (nvUpdatusService) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (NVIDIA Corporation)
  117. SRV - (cphs) -- C:\Windows\SysWOW64\IntelCpHeciSvc.exe (Intel Corporation)
  118. SRV - (SOHDms) -- C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe (Sony Corporation)
  119. SRV - (IconMan_R) -- C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe (Realsil Microelectronics Inc.)
  120. SRV - (PMBDeviceInfoProvider) -- C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe (Sony Corporation)
  121. SRV - (SOHDs) -- C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe (Sony Corporation)
  122. SRV - (SOHCImp) -- C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe (Sony Corporation)
  123. SRV - (UNS) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Intel Corporation)
  124. SRV - (LMS) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation)
  125. SRV - (Intel(R) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe (Intel Corporation)
  126. SRV - (jhi_service) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe (Intel Corporation)
  127. SRV - (VCFw) -- C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe (Sony Corporation)
  128. SRV - (VAIO Event Service) -- C:\Program Files (x86)\Sony\VAIO Control Center\VESMgr.exe (Sony Corporation)
  129. SRV - (PrintNotify) -- C:\Windows\system32\spool\DRIVERS\x64\3\PrintConfig.dll (Microsoft Corporation)
  130. SRV - (StorSvc) -- C:\Windows\SysWOW64\StorSvc.dll (Microsoft Corporation)
  131. SRV - (ICCS) -- C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe (Intel Corporation)
  132. SRV - (TuneUp.UtilitiesSvc) -- C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesService64.exe (TuneUp Software)
  133.  
  134.  
  135. [color=#E56717]========== Driver Services (SafeList) ==========[/color]
  136.  
  137. DRV:[b]64bit:[/b] - (ContentProtectorDrv) -- C:\Windows\SysNative\Drivers\ContentProtectorDrv.sys ()
  138. DRV:[b]64bit:[/b] - (ssudmdm) -- C:\Windows\SysNative\Drivers\ssudmdm.sys (DEVGURU Co., LTD.(www.devguru.co.kr))
  139. DRV:[b]64bit:[/b] - (dg_ssudbus) -- C:\Windows\SysNative\Drivers\ssudbus.sys (DEVGURU Co., LTD.(www.devguru.co.kr))
  140. DRV:[b]64bit:[/b] - (BthAvrcpTg) -- C:\Windows\SysNative\Drivers\BthAvrcpTg.sys (Microsoft Corporation)
  141. DRV:[b]64bit:[/b] - (bthhfhid) -- C:\Windows\SysNative\Drivers\BthhfHid.sys (Microsoft Corporation)
  142. DRV:[b]64bit:[/b] - (nvpciflt) -- C:\Windows\SysNative\Drivers\nvpciflt.sys (NVIDIA Corporation)
  143. DRV:[b]64bit:[/b] - (BCM42RLY) -- C:\Windows\SysNative\Drivers\bcm42rly.sys (Broadcom Corporation)
  144. DRV:[b]64bit:[/b] - (BCM43XX) -- C:\Windows\SysNative\Drivers\BCMWL63a.SYS (Broadcom Corporation)
  145. DRV:[b]64bit:[/b] - (SynTP) -- C:\Windows\SysNative\Drivers\SynTP.sys (Synaptics Incorporated)
  146. DRV:[b]64bit:[/b] - (SmbDrvI) -- C:\Windows\SysNative\Drivers\Smb_driver_Intel.sys (Synaptics Incorporated)
  147. DRV:[b]64bit:[/b] - (tmcomm) -- C:\Windows\SysNative\Drivers\tmcomm.sys (Trend Micro Inc.)
  148. DRV:[b]64bit:[/b] - (tmactmon) -- C:\Windows\SysNative\Drivers\tmactmon.sys (Trend Micro Inc.)
  149. DRV:[b]64bit:[/b] - (tmevtmgr) -- C:\Windows\SysNative\Drivers\tmevtmgr.sys (Trend Micro Inc.)
  150. DRV:[b]64bit:[/b] - (tmusa) -- C:\Windows\SysNative\Drivers\tmusa.sys (Trend Micro Inc.)
  151. DRV:[b]64bit:[/b] - (TMEBC) -- C:\Windows\SysNative\Drivers\TMEBC64.sys (Trend Micro Inc.)
  152. DRV:[b]64bit:[/b] - (tmel) -- C:\Windows\SysNative\Drivers\tmel.sys (trend_company_name)
  153. DRV:[b]64bit:[/b] - (tmeevw) -- C:\Windows\SysNative\Drivers\tmeevw.sys (Trend Micro Inc.)
  154. DRV:[b]64bit:[/b] - (igfx) -- C:\Windows\SysNative\Drivers\igdkmd64.sys (Intel Corporation)
  155. DRV:[b]64bit:[/b] - (IntcDAud) -- C:\Windows\SysNative\Drivers\IntcDAud.sys (Intel(R) Corporation)
  156. DRV:[b]64bit:[/b] - (RSPCIESTOR) -- C:\Windows\SysNative\Drivers\RtsPStor.sys (Realtek Semiconductor Corp.)
  157. DRV:[b]64bit:[/b] - (iaStorA) -- C:\Windows\SysNative\Drivers\iaStorA.sys (Intel Corporation)
  158. DRV:[b]64bit:[/b] - (MEIx64) -- C:\Windows\SysNative\Drivers\HECIx64.sys (Intel Corporation)
  159. DRV:[b]64bit:[/b] - (btwrchid) -- C:\Windows\SysNative\Drivers\btwrchid.sys (Broadcom Corporation.)
  160. DRV:[b]64bit:[/b] - (btwavdt) -- C:\Windows\SysNative\Drivers\btwavdt.sys (Broadcom Corporation.)
  161. DRV:[b]64bit:[/b] - (btwaudio) -- C:\Windows\SysNative\Drivers\btwaudio.sys (Broadcom Corporation.)
  162. DRV:[b]64bit:[/b] - (bcbtums) -- C:\Windows\SysNative\Drivers\bcbtums.sys (Broadcom Corporation.)
  163. DRV:[b]64bit:[/b] - (btwampfl) -- C:\Windows\SysNative\Drivers\btwampfl.sys (Broadcom Corporation.)
  164. DRV:[b]64bit:[/b] - (btwl2cap) -- C:\Windows\SysNative\Drivers\btwl2cap.sys (Broadcom Corporation.)
  165. DRV:[b]64bit:[/b] - (RTL8168) -- C:\Windows\SysNative\Drivers\Rt630x64.sys (Realtek )
  166. DRV:[b]64bit:[/b] - (msgpiowin32) -- C:\Windows\SysNative\Drivers\msgpiowin32.sys (Microsoft Corporation)
  167. DRV:[b]64bit:[/b] - (sdbus) -- C:\Windows\SysNative\Drivers\sdbus.sys (Microsoft Corporation)
  168. DRV:[b]64bit:[/b] - (USBHUB3) -- C:\Windows\SysNative\Drivers\USBHUB3.SYS (Microsoft Corporation)
  169. DRV:[b]64bit:[/b] - (pdc) -- C:\Windows\SysNative\Drivers\pdc.sys (Microsoft Corporation)
  170. DRV:[b]64bit:[/b] - (FxPPM) -- C:\Windows\SysNative\Drivers\fxppm.sys (Microsoft Corporation)
  171. DRV:[b]64bit:[/b] - (RdpVideoMiniport) -- C:\Windows\SysNative\Drivers\rdpvideominiport.sys (Microsoft Corporation)
  172. DRV:[b]64bit:[/b] - (sdstor) -- C:\Windows\SysNative\Drivers\sdstor.sys (Microsoft Corporation)
  173. DRV:[b]64bit:[/b] - (dam) -- C:\Windows\SysNative\Drivers\dam.sys (Microsoft Corporation)
  174. DRV:[b]64bit:[/b] - (WSDScan) -- C:\Windows\SysNative\Drivers\WSDScan.sys (Microsoft Corporation)
  175. DRV:[b]64bit:[/b] - (StillCam) -- C:\Windows\SysNative\Drivers\serscan.sys (Microsoft Corporation)
  176. DRV:[b]64bit:[/b] - (USBXHCI) -- C:\Windows\SysNative\Drivers\USBXHCI.SYS (Microsoft Corporation)
  177. DRV:[b]64bit:[/b] - (UCX01000) -- C:\Windows\SysNative\Drivers\UCX01000.SYS (Microsoft Corporation)
  178. DRV:[b]64bit:[/b] - (GPIOClx0101) -- C:\Windows\SysNative\Drivers\msgpioclx.sys (Microsoft Corporation)
  179. DRV:[b]64bit:[/b] - (ebdrv) -- C:\Windows\SysNative\Drivers\evbda.sys (Broadcom Corporation)
  180. DRV:[b]64bit:[/b] - (b06bdrv) -- C:\Windows\SysNative\Drivers\bxvbda.sys (Broadcom Corporation)
  181. DRV:[b]64bit:[/b] - (TPM) -- C:\Windows\SysNative\Drivers\tpm.sys (Microsoft Corporation)
  182. DRV:[b]64bit:[/b] - (Fs_Rec) -- C:\Windows\SysNative\drivers\fs_rec.sys (Microsoft Corporation)
  183. DRV:[b]64bit:[/b] - (condrv) -- C:\Windows\SysNative\Drivers\condrv.sys (Microsoft Corporation)
  184. DRV:[b]64bit:[/b] - (VSTXRAID) -- C:\Windows\SysNative\Drivers\VSTXRAID.SYS (VIA Corporation)
  185. DRV:[b]64bit:[/b] - (VerifierExt) -- C:\Windows\SysNative\Drivers\VerifierExt.sys (Microsoft Corporation)
  186. DRV:[b]64bit:[/b] - (UASPStor) -- C:\Windows\SysNative\Drivers\uaspstor.sys (Microsoft Corporation)
  187. DRV:[b]64bit:[/b] - (acpiex) -- C:\Windows\SysNative\Drivers\acpiex.sys (Microsoft Corporation)
  188. DRV:[b]64bit:[/b] - (spaceport) -- C:\Windows\SysNative\Drivers\spaceport.sys (Microsoft Corporation)
  189. DRV:[b]64bit:[/b] - (storahci) -- C:\Windows\SysNative\Drivers\storahci.sys (Microsoft Corporation)
  190. DRV:[b]64bit:[/b] - (mvumis) -- C:\Windows\SysNative\Drivers\mvumis.sys (Marvell Semiconductor, Inc.)
  191. DRV:[b]64bit:[/b] - (stexstor) -- C:\Windows\SysNative\Drivers\stexstor.sys (Promise Technology, Inc.)
  192. DRV:[b]64bit:[/b] - (LSI_SAS2) -- C:\Windows\SysNative\Drivers\lsi_sas2.sys (LSI Corporation)
  193. DRV:[b]64bit:[/b] - (LSI_SSS) -- C:\Windows\SysNative\Drivers\lsi_sss.sys (LSI Corporation)
  194. DRV:[b]64bit:[/b] - (HpSAMD) -- C:\Windows\SysNative\Drivers\HpSAMD.sys (Hewlett-Packard Company)
  195. DRV:[b]64bit:[/b] - (EhStorTcgDrv) -- C:\Windows\SysNative\Drivers\EhStorTcgDrv.sys (Microsoft Corporation)
  196. DRV:[b]64bit:[/b] - (EhStorClass) -- C:\Windows\SysNative\Drivers\EhStorClass.sys (Microsoft Corporation)
  197. DRV:[b]64bit:[/b] - (amdsbs) -- C:\Windows\SysNative\Drivers\amdsbs.sys (AMD Technologies Inc.)
  198. DRV:[b]64bit:[/b] - (3ware) -- C:\Windows\SysNative\Drivers\3ware.sys (LSI)
  199. DRV:[b]64bit:[/b] - (amdsata) -- C:\Windows\SysNative\Drivers\amdsata.sys (Advanced Micro Devices)
  200. DRV:[b]64bit:[/b] - (amdxata) -- C:\Windows\SysNative\Drivers\amdxata.sys (Advanced Micro Devices)
  201. DRV:[b]64bit:[/b] - (CLFS) -- C:\Windows\SysNative\Drivers\clfs.sys (Microsoft Corporation)
  202. DRV:[b]64bit:[/b] - (WFPLWFS) -- C:\Windows\SysNative\Drivers\wfplwfs.sys (Microsoft Corporation)
  203. DRV:[b]64bit:[/b] - (vpci) -- C:\Windows\SysNative\Drivers\vpci.sys (Microsoft Corporation)
  204. DRV:[b]64bit:[/b] - (WdFilter) -- C:\Windows\SysNative\Drivers\WdFilter.sys (Microsoft Corporation)
  205. DRV:[b]64bit:[/b] - (WdBoot) -- C:\Windows\SysNative\Drivers\WdBoot.sys (Microsoft Corporation)
  206. DRV:[b]64bit:[/b] - (terminpt) -- C:\Windows\SysNative\Drivers\terminpt.sys (Microsoft Corporation)
  207. DRV:[b]64bit:[/b] - (WSDPrintDevice) -- C:\Windows\SysNative\Drivers\WSDPrint.sys (Microsoft Corporation)
  208. DRV:[b]64bit:[/b] - (mshidumdf) -- C:\Windows\SysNative\Drivers\mshidumdf.sys (Microsoft Corporation)
  209. DRV:[b]64bit:[/b] - (BasicDisplay) -- C:\Windows\SysNative\Drivers\BasicDisplay.sys (Microsoft Corporation)
  210. DRV:[b]64bit:[/b] - (HyperVideo) -- C:\Windows\SysNative\Drivers\HyperVideo.sys (Microsoft Corporation)
  211. DRV:[b]64bit:[/b] - (BasicRender) -- C:\Windows\SysNative\Drivers\BasicRender.sys (Microsoft Corporation)
  212. DRV:[b]64bit:[/b] - (gencounter) -- C:\Windows\SysNative\Drivers\vmgencounter.sys (Microsoft Corporation)
  213. DRV:[b]64bit:[/b] - (kdnic) -- C:\Windows\SysNative\Drivers\kdnic.sys (Microsoft Corporation)
  214. DRV:[b]64bit:[/b] - (acpitime) -- C:\Windows\SysNative\Drivers\acpitime.sys (Microsoft Corporation)
  215. DRV:[b]64bit:[/b] - (npsvctrig) -- C:\Windows\SysNative\Drivers\npsvctrig.sys (Microsoft Corporation)
  216. DRV:[b]64bit:[/b] - (WpdUpFltr) -- C:\Windows\SysNative\Drivers\WpdUpFltr.sys (Microsoft Corporation)
  217. DRV:[b]64bit:[/b] - (acpipagr) -- C:\Windows\SysNative\Drivers\acpipagr.sys (Microsoft Corporation)
  218. DRV:[b]64bit:[/b] - (hyperkbd) -- C:\Windows\SysNative\Drivers\hyperkbd.sys (Microsoft Corporation)
  219. DRV:[b]64bit:[/b] - (SerCx) -- C:\Windows\SysNative\Drivers\SerCx.sys (Microsoft Corporation)
  220. DRV:[b]64bit:[/b] - (SpbCx) -- C:\Windows\SysNative\Drivers\SpbCx.sys (Microsoft Corporation)
  221. DRV:[b]64bit:[/b] - (TsUsbGD) -- C:\Windows\SysNative\Drivers\TsUsbGD.sys (Microsoft Corporation)
  222. DRV:[b]64bit:[/b] - (BthHFEnum) -- C:\Windows\SysNative\Drivers\bthhfenum.sys (Microsoft Corporation)
  223. DRV:[b]64bit:[/b] - (dmvsc) -- C:\Windows\SysNative\Drivers\dmvsc.sys (Microsoft Corporation)
  224. DRV:[b]64bit:[/b] - (TsUsbFlt) -- C:\Windows\SysNative\Drivers\TsUsbFlt.sys (Microsoft Corporation)
  225. DRV:[b]64bit:[/b] - (hidi2c) -- C:\Windows\SysNative\Drivers\hidi2c.sys (Microsoft Corporation)
  226. DRV:[b]64bit:[/b] - (wpcfltr) -- C:\Windows\SysNative\Drivers\wpcfltr.sys (Microsoft Corporation)
  227. DRV:[b]64bit:[/b] - (BthLEEnum) -- C:\Windows\SysNative\Drivers\BthLEEnum.sys (Microsoft Corporation)
  228. DRV:[b]64bit:[/b] - (NdisImPlatform) -- C:\Windows\SysNative\Drivers\NdisImPlatform.sys (Microsoft Corporation)
  229. DRV:[b]64bit:[/b] - (MsLldp) -- C:\Windows\SysNative\Drivers\mslldp.sys (Microsoft Corporation)
  230. DRV:[b]64bit:[/b] - (Ndu) -- C:\Windows\SysNative\Drivers\Ndu.sys (Microsoft Corporation)
  231. DRV:[b]64bit:[/b] - (SFEP) -- C:\Windows\SysNative\Drivers\SFEP.sys (Sony Corporation)
  232. DRV:[b]64bit:[/b] - (CLVirtualDrive) -- C:\Windows\SysNative\Drivers\CLVirtualDrive.sys (CyberLink)
  233. DRV:[b]64bit:[/b] - (e1yexpress) -- C:\Windows\SysNative\Drivers\e1y60x64.sys (Intel Corporation)
  234. DRV:[b]64bit:[/b] - (athr) -- C:\Windows\SysNative\Drivers\athrx.sys (Qualcomm Atheros Communications, Inc.)
  235. DRV:[b]64bit:[/b] - (athur) -- C:\Windows\SysNative\Drivers\athurx.sys (Atheros Communications, Inc.)
  236. DRV:[b]64bit:[/b] - (hwdatacard) -- C:\Windows\SysNative\Drivers\ewusbmdm.sys (Huawei Technologies Co., Ltd.)
  237. DRV - (TuneUpUtilitiesDrv) -- C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesDriver64.sys (TuneUp Software)
  238.  
  239.  
  240. [color=#E56717]========== Standard Registry (All) ==========[/color]
  241.  
  242.  
  243. [color=#E56717]========== Internet Explorer ==========[/color]
  244.  
  245. IE:[b]64bit:[/b] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
  246. IE:[b]64bit:[/b] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
  247. IE:[b]64bit:[/b] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\System32\blank.htm
  248. IE:[b]64bit:[/b] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
  249. IE:[b]64bit:[/b] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://searchinterneat-a.akamaihd.net/hm?eq=U0EeCFZVBB8SRghBdAtcBw0TExgXdl0MTA1DEwAOIQgLAxRJR1QVeQlZUw1JRwIFIk0FA1ADB0VXfVBdFElXTwhxJUpNDU0CaUBB
  250. IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
  251. IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
  252. IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
  253. IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
  254.  
  255. IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://istart.webssearches.com/web/?type=ds&ts=1406359729&from=amt&uid=TOSHIBAXMQ01ABF050_83I6C3IITXX83I6C3IIT&q={searchTerms}
  256. IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://www.sony-asia.com/productca [Binary data over 200 bytes]
  257. IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\system32\blank.htm
  258. IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie
  259. IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://istart.webssearches.com/web/?type=ds&ts=1406359729&from=amt&uid=TOSHIBAXMQ01ABF050_83I6C3IITXX83I6C3IIT&q={searchTerms}
  260. IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1
  261. IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://searchinterneat-a.akamaihd.net/hm?eq=U0EeCFZVBB8SRghBdAtcBw0TExgXdl0MTA1DEwAOIQgLAxRJR1QVeQlZUw1JRwIFIk0FA1ADB0VXfVBdFElXTwhxJUpNDU0CaUBB
  262. IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
  263. IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
  264. IE - HKCU\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\SysWOW64\ieframe.dll (Microsoft Corporation)
  265. IE - HKCU\..\SearchScopes,DefaultScope = {2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0}
  266. IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.delta-homes.com/web/?utm_source=b&utm_medium=wpm04173&utm_campaign=install_ie&utm_content=ds&from=wpm04173&uid=TOSHIBAXMQ01ABF050_83I6C3IITXX83I6C3IIT&ts=1429293776&type=default&q={searchTerms}
  267. IE - HKCU\..\SearchScopes\{170DAA56-FC6E-4827-A20F-B46376B40BA1}: "URL" = http://www.delta-homes.com/web/?utm_source=b&utm_medium=wpm04173&utm_campaign=install_ie&utm_content=ds&from=wpm04173&uid=TOSHIBAXMQ01ABF050_83I6C3IITXX83I6C3IIT&ts=1429293776&type=default&q={searchTerms}
  268. IE - HKCU\..\SearchScopes\{2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0}: "URL" = http://searchinterneat-a.akamaihd.net/s?eq=U0EeE1xZE1oZB1ZEfVsMU10XFVcRbQ0OBQ1cFQcRdRRZUAoTDA1FIQ8BUVhDFQ1Fdx9aFQQTSEcFME0FCFwEURNNfWtdEkwdVUZrNVs=&q={searchTerms}
  269. IE - HKCU\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.delta-homes.com/web/?utm_source=b&utm_medium=wpm04173&utm_campaign=install_ie&utm_content=ds&from=wpm04173&uid=TOSHIBAXMQ01ABF050_83I6C3IITXX83I6C3IIT&ts=1429293776&type=default&q={searchTerms}
  270. IE - HKCU\..\SearchScopes\{917A9710-1FEB-46F0-853B-4B4E77DFF412}: "URL" = http://www.delta-homes.com/web/?utm_source=b&utm_medium=wpm04173&utm_campaign=install_ie&utm_content=ds&from=wpm04173&uid=TOSHIBAXMQ01ABF050_83I6C3IITXX83I6C3IIT&ts=1429293776&type=default&q={searchTerms}
  271. IE - HKCU\..\SearchScopes\{AF6CABB2-8629-473A-8635-578D83BAD8D4}: "URL" = http://search.yahoo.com/yhs/search?hspart=ddc&hsimp=yhs-ddc_bd&type=bl-bir-dd__alt__ddc_dss_bd_com&p={searchTerms}
  272. IE - HKCU\..\SearchScopes\{E733165D-CBCF-4FDA-883E-ADEF965B476C}: "URL" = http://www.delta-homes.com/web/?utm_source=b&utm_medium=wpm04173&utm_campaign=install_ie&utm_content=ds&from=wpm04173&uid=TOSHIBAXMQ01ABF050_83I6C3IITXX83I6C3IIT&ts=1429293776&type=default&q={searchTerms}
  273. IE - HKCU\..\SearchScopes\OldSearch: "URL" = http://www.delta-homes.com/web/?utm_source=b&utm_medium=wpm04173&utm_campaign=install_ie&utm_content=ds&from=wpm04173&uid=TOSHIBAXMQ01ABF050_83I6C3IITXX83I6C3IIT&ts=1429293776&type=default&q={searchTerms}
  274. IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
  275. IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>
  276. IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = cache.itb.ac.id:8080
  277.  
  278. [color=#E56717]========== FireFox ==========[/color]
  279.  
  280. FF - prefs.js..browser.search.countryCode: "ID"
  281. FF - prefs.js..browser.search.defaultenginename: "delta-homes"
  282. FF - prefs.js..browser.search.hiddenOneOffs: "webssearches"
  283. FF - prefs.js..browser.search.isUS: false
  284. FF - prefs.js..browser.search.region: "ID"
  285. FF - prefs.js..browser.search.searchengine.alias: "istartsurf"
  286. FF - prefs.js..browser.search.searchengine.desc: "this is my first firefox searchEngine"
  287. FF - prefs.js..browser.search.searchengine.iconURL: "http://www.istartsurf.com/favicon.ico"
  288. FF - prefs.js..browser.search.searchengine.name: "istartsurf"
  289. FF - prefs.js..browser.search.searchengine.ptid: "cornl"
  290. FF - prefs.js..browser.search.searchengine.uid: "TOSHIBAXMQ01ABF050_83I6C3IITXX83I6C3IIT"
  291. FF - prefs.js..browser.search.searchengine.url: "http://www.istartsurf.com/web/?type=ds&ts=1447224187&z=d3a6179faa3669098a12eb6gaz6z9m9o4occ1t6e8z&from=cornl&uid=TOSHIBAXMQ01ABF050_83I6C3IITXX83I6C3IIT&q={searchTerms}"
  292. FF - prefs.js..browser.search.selectedEngine: "Google"
  293. FF - prefs.js..browser.search.update: false
  294. FF - prefs.js..browser.search.useDBForOrder: true
  295. FF - prefs.js..browser.startup.homepage: "http://google.co.id/"
  296. FF - prefs.js..extensions.enabledAddons: html5notifications@paxal.net:1.2.4
  297. FF - prefs.js..extensions.enabledAddons: quick_searchff@gmail.com:5.4.13
  298. FF - prefs.js..extensions.enabledAddons: adblockpopups@jessehakanen.net:0.4.1-signed.1-signed
  299. FF - prefs.js..extensions.enabledAddons: {972ce4c6-7e08-4474-a285-3208198ce6fd}:12.0
  300. FF - prefs.js..keyword.URL: "http://searchinterneat-a.akamaihd.net/s?eq=U0EeE1xZE1oZB1ZEfVsMU10XFVcRbQ0OBQ1cFQcRdRRZUAoTDA1FIQ8BUVhDFQ1Fdx9aFQQTR0cFME0FB18EURNNfWtdEkwdVUZrNVs=&q={searchTerms}"
  301. FF - user.js - File not found
  302.  
  303. FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_21_0_0_213.dll File not found
  304. FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.13.2: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
  305. FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.13.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
  306. FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_213.dll ()
  307. FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
  308. FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
  309. FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
  310. FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.13.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
  311. FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.13.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
  312. FF - HKLM\Software\MozillaPlugins\@staging.google.com/globalUpdate Update;version=10: C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll (globalUpdate)
  313. FF - HKLM\Software\MozillaPlugins\@staging.google.com/globalUpdate Update;version=4: C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll (globalUpdate)
  314. FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
  315. FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\fauzaneinil\AppData\Local\Google\Update\1.3.30.3\npGoogleUpdate3.dll (Google Inc.)
  316. FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\fauzaneinil\AppData\Local\Google\Update\1.3.30.3\npGoogleUpdate3.dll (Google Inc.)
  317.  
  318. FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\{21541D23-FDA1-4bf3-8AF2-8F623BF70B07}: C:\Program Files\Trend Micro\AMSP\module\20013\FxExt\firefoxextension\ [2013-09-25 11:51:02 | 000,000,000 | ---D | M]
  319. FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\faststartff@gmail.com: C:\Users\fauzaneinil\AppData\Roaming\Mozilla\Firefox\Profiles\bj21x56i.default\extensions\faststartff@gmail.com
  320. FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\detgdp@gmail.com: C:\Users\fauzaneinil\AppData\Roaming\Mozilla\Firefox\Profiles\bj21x56i.default\extensions\detgdp@gmail.com [2014-12-23 15:15:44 | 000,000,000 | ---D | M]
  321. FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\quick_searchff@gmail.com: C:\Users\fauzaneinil\AppData\Roaming\Mozilla\Firefox\Profiles\bj21x56i.default\extensions\quick_searchff@gmail.com [2015-07-25 19:54:57 | 000,000,000 | ---D | M]
  322. FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\sweetsearch@gmail.com: C:\Users\fauzaneinil\AppData\Roaming\Mozilla\Firefox\Profiles\bj21x56i.default\extensions\sweetsearch@gmail.com
  323. FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\default_newtabff@gmail.com: C:\Users\fauzaneinil\AppData\Roaming\Mozilla\Firefox\Profiles\bj21x56i.default\extensions\default_newtabff@gmail.com
  324. FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\defsearchp@gmail.com: C:\Users\fauzaneinil\AppData\Roaming\Mozilla\Firefox\Profiles\bj21x56i.default\extensions\defsearchp@gmail.com
  325. FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\deskCutv2@gmail.com: C:\Users\fauzaneinil\AppData\Roaming\Mozilla\Firefox\Profiles\bj21x56i.default\extensions\deskCutv2@gmail.com
  326. FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 12.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2016-04-25 12:47:37 | 000,000,000 | ---D | M]
  327.  
  328. [2014-07-26 13:41:08 | 000,000,000 | ---D | M] (No name found) -- C:\Users\fauzaneinil\AppData\Roaming\Mozilla\Extensions
  329. [2016-05-11 10:46:56 | 000,000,000 | ---D | M] (No name found) -- C:\Users\fauzaneinil\AppData\Roaming\Mozilla\Firefox\Profiles\bj21x56i.default\extensions
  330. [2016-05-11 10:47:11 | 000,000,000 | ---D | M] ("HD-V1.9") -- C:\Users\fauzaneinil\AppData\Roaming\Mozilla\Firefox\Profiles\bj21x56i.default\extensions\caseyvelez@aol.com
  331. [2014-12-23 15:15:44 | 000,000,000 | ---D | M] ("Security Protection") -- C:\Users\fauzaneinil\AppData\Roaming\Mozilla\Firefox\Profiles\bj21x56i.default\extensions\detgdp@gmail.com
  332. [2015-07-25 19:54:57 | 000,000,000 | ---D | M] ("QuickSearch") -- C:\Users\fauzaneinil\AppData\Roaming\Mozilla\Firefox\Profiles\bj21x56i.default\extensions\quick_searchff@gmail.com
  333. [2016-05-11 10:47:01 | 000,000,000 | ---D | M] (No name found) -- C:\Users\fauzaneinil\AppData\Roaming\Mozilla\Firefox\Profiles\bj21x56i.default\extensions\caseyvelez@aol.com\extensionData
  334. [2016-05-11 10:47:01 | 000,000,000 | ---D | M] (No name found) -- C:\Users\fauzaneinil\AppData\Roaming\Mozilla\Firefox\Profiles\bj21x56i.default\extensions\caseyvelez@aol.com\extensionData\plugins
  335. [2016-05-11 10:47:01 | 000,000,000 | ---D | M] (No name found) -- C:\Users\fauzaneinil\AppData\Roaming\Mozilla\Firefox\Profiles\bj21x56i.default\extensions\caseyvelez@aol.com\extensionData\userCode
  336. [2016-05-11 00:25:14 | 000,120,866 | ---- | M] () (No name found) -- C:\Users\fauzaneinil\AppData\Roaming\Mozilla\Firefox\Profiles\bj21x56i.default\extensions\adblockpopups@jessehakanen.net.xpi
  337. [2015-11-06 10:42:03 | 000,044,911 | ---- | M] () (No name found) -- C:\Users\fauzaneinil\AppData\Roaming\Mozilla\Firefox\Profiles\bj21x56i.default\extensions\defsearchp@gmail.com.xpi
  338. [2015-01-22 08:05:13 | 000,048,516 | ---- | M] () (No name found) -- C:\Users\fauzaneinil\AppData\Roaming\Mozilla\Firefox\Profiles\bj21x56i.default\extensions\html5notifications@paxal.net.xpi
  339. [2015-10-13 13:27:29 | 000,010,877 | ---- | M] () (No name found) -- C:\Users\fauzaneinil\AppData\Roaming\Mozilla\Firefox\Profiles\bj21x56i.default\extensions\{042e8eb6-b05d-4bc6-ab99-3a6d09e2f0ea}.xpi
  340. [2015-10-13 23:13:58 | 000,962,762 | ---- | M] () (No name found) -- C:\Users\fauzaneinil\AppData\Roaming\Mozilla\Firefox\Profiles\bj21x56i.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
  341. [2015-10-13 22:44:20 | 000,000,923 | ---- | M] () -- C:\Users\fauzaneinil\AppData\Roaming\Mozilla\Firefox\Profiles\bj21x56i.default\searchplugins\default.xml
  342. [2015-11-11 04:55:35 | 000,002,142 | ---- | M] () -- C:\Users\fauzaneinil\AppData\Roaming\Mozilla\Firefox\Profiles\bj21x56i.default\searchplugins\delta-homes.xml
  343. [2015-11-05 15:20:17 | 000,000,411 | ---- | M] () -- C:\Users\fauzaneinil\AppData\Roaming\Mozilla\Firefox\Profiles\bj21x56i.default\searchplugins\yahoo.xml
  344. [2015-11-11 05:53:52 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
  345. [2016-04-25 12:47:37 | 000,000,000 | ---D | M] (Default) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
  346. [2016-04-25 12:47:37 | 000,097,208 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
  347. [2016-04-25 12:47:33 | 000,001,394 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\amazondotcom.xml
  348. [2016-04-25 12:47:33 | 000,002,252 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml
  349. [2016-04-25 12:47:33 | 000,001,131 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\eBay.xml
  350. [2016-04-25 12:47:33 | 000,003,413 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\google.xml
  351. [2016-04-25 12:47:33 | 000,002,040 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\twitter.xml
  352. [2016-04-25 12:47:33 | 000,001,178 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia.xml
  353. [2016-04-25 12:47:33 | 000,001,096 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\yahoo.xml
  354.  
  355. [color=#E56717]========== Chrome ==========[/color]
  356.  
  357. CHR - Extension: No name found = C:\Users\fauzaneinil\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_1\
  358. CHR - Extension: No name found = C:\Users\fauzaneinil\AppData\Local\Google\Chrome\User Data\Default\Extensions\nnoapecikjcfciajdbdlggogdfgdljpn\1.0.5761.28513_0\
  359.  
  360. O1 HOSTS File: ([2016-04-05 08:31:28 | 000,000,865 | ---- | M]) - C:\Windows\SysNative\Drivers\etc\hosts
  361. O1 - Hosts: 0.0.0.1 mssplus.mcafee.com
  362. O2:[b]64bit:[/b] - BHO: (HD-V1.9) - {11111111-1111-1111-1111-110611171188} - C:\Program Files (x86)\HD-V1.9\HD-V1.9-bho64.dll (InfoHD-V1.8)
  363. O2:[b]64bit:[/b] - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
  364. O2:[b]64bit:[/b] - BHO: (Skype Click to Call for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\SkypeIEPlugin.dll (Microsoft Corporation)
  365. O2:[b]64bit:[/b] - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
  366. O2 - BHO: (Octh Class) - {000123B4-9B42-4900-B3F7-F4B073EFC214} - C:\Program Files (x86)\Orbitdownloader\orbitcth.dll (Orbitdownloader.com)
  367. O2 - BHO: (HD-V1.9) - {11111111-1111-1111-1111-110611171188} - C:\Program Files (x86)\HD-V1.9\HD-V1.9-bho.dll (InfoHD-V1.8)
  368. O2 - BHO: (no name) - {1F91A9A1-01BA-4c81-863D-3BA0751E1419} - No CLSID value found.
  369. O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
  370. O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
  371. O2 - BHO: (Skype Click to Call for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
  372. O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
  373. O4:[b]64bit:[/b] - HKLM..\Run: [Bluetooth] C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
  374. O4:[b]64bit:[/b] - HKLM..\Run: [Broadcom Wireless Manager UI] C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\WLTRAY.EXE (Broadcom Corporation)
  375. O4:[b]64bit:[/b] - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
  376. O4:[b]64bit:[/b] - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
  377. O4:[b]64bit:[/b] - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
  378. O4:[b]64bit:[/b] - HKLM..\Run: [RtHDVBg] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor)
  379. O4:[b]64bit:[/b] - HKLM..\Run: [Trend Micro Client Framework] C:\Program Files\Trend Micro\UniClient\UiFrmWrk\UIWatchDog.exe (Trend Micro Inc.)
  380. O4:[b]64bit:[/b] - HKLM..\Run: [Trend Micro Titanium] C:\Program Files\Trend Micro\Titanium\VizorShortCut.exe (Trend Micro Inc.)
  381. O4:[b]64bit:[/b] - HKLM..\Run: [VizorHtmlDialog.exe] C:\Program Files\Trend Micro\Titanium\UIFramework\VizorHtmlDialog.exe (Trend Micro Inc.)
  382. O4 - HKLM..\Run: [] File not found
  383. O4 - HKLM..\Run: [GrooveMonitor] C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe (Microsoft Corporation)
  384. O4 - HKLM..\Run: [PMBVolumeWatcher] C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe (Sony Corporation)
  385. O4 - HKCU..\Run: [Google Update] C:\Users\fauzaneinil\AppData\Local\Google\Update\GoogleUpdate.exe (Google Inc.)
  386. O4 - HKCU..\Run: [ImageEd] C:\Users\fauzaneinil\AppData\Roaming\ImageCropResize\ImageEd\ImageEd.exe (ImageEd)
  387. O4 - HKCU..\Run: [Skype] C:\Program Files (x86)\Skype\Phone\Skype.exe (Skype Technologies S.A.)
  388. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: ForceActiveDesktopOn = 0
  389. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
  390. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
  391. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableVirtualization = 1
  392. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableInstallerDetection = 1
  393. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 1
  394. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 1
  395. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableSecureUIAPaths = 1
  396. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
  397. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ValidateAdminCodeSignatures = 0
  398. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableUIADesktopToggle = 0
  399. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1
  400. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
  401. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
  402. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
  403. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
  404. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: scforceoption = 0
  405. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
  406. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
  407. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: FilterAdministratorToken = 0
  408. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_UNICODETEXT = 13
  409. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIBV5 = 17
  410. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_PALETTE = 9
  411. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_BITMAP = 2
  412. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_TEXT = 1
  413. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIB = 8
  414. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_OEMTEXT = 7
  415. O8:[b]64bit:[/b] - Extra context menu item: &Download by Orbit - C:\Program Files (x86)\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com)
  416. O8:[b]64bit:[/b] - Extra context menu item: &Grab video by Orbit - C:\Program Files (x86)\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com)
  417. O8:[b]64bit:[/b] - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200 File not found
  418. O8:[b]64bit:[/b] - Extra context menu item: Do&wnload selected by Orbit - C:\Program Files (x86)\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com)
  419. O8:[b]64bit:[/b] - Extra context menu item: Down&load all by Orbit - C:\Program Files (x86)\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com)
  420. O8:[b]64bit:[/b] - Extra context menu item: E&xport to Microsoft Excel - C:\Program Files (x86)\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
  421. O8 - Extra context menu item: &Download by Orbit - C:\Program Files (x86)\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com)
  422. O8 - Extra context menu item: &Grab video by Orbit - C:\Program Files (x86)\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com)
  423. O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\Windows\SysWow64\GPhotos.scr (Google Inc.)
  424. O8 - Extra context menu item: Do&wnload selected by Orbit - C:\Program Files (x86)\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com)
  425. O8 - Extra context menu item: Down&load all by Orbit - C:\Program Files (x86)\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com)
  426. O8 - Extra context menu item: E&xport to Microsoft Excel - C:\Program Files (x86)\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
  427. O9:[b]64bit:[/b] - Extra Button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\SkypeIEPlugin.dll (Microsoft Corporation)
  428. O9 - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
  429. O9 - Extra 'Tools' menuitem : S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
  430. O9 - Extra Button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
  431. O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files (x86)\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
  432. O10:[b]64bit:[/b] - NameSpace_Catalog5\Catalog_Entries64\000000000001 [] - C:\Windows\SysNative\NapiNSP.dll (Microsoft Corporation)
  433. O10:[b]64bit:[/b] - NameSpace_Catalog5\Catalog_Entries64\000000000002 [] - C:\Windows\SysNative\pnrpnsp.dll (Microsoft Corporation)
  434. O10:[b]64bit:[/b] - NameSpace_Catalog5\Catalog_Entries64\000000000003 [] - C:\Windows\SysNative\pnrpnsp.dll (Microsoft Corporation)
  435. O10:[b]64bit:[/b] - NameSpace_Catalog5\Catalog_Entries64\000000000004 [] - C:\Windows\SysNative\nlaapi.dll (Microsoft Corporation)
  436. O10:[b]64bit:[/b] - NameSpace_Catalog5\Catalog_Entries64\000000000005 [] - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
  437. O10:[b]64bit:[/b] - NameSpace_Catalog5\Catalog_Entries64\000000000006 [] - C:\Windows\SysNative\winrnr.dll (Microsoft Corporation)
  438. O10:[b]64bit:[/b] - NameSpace_Catalog5\Catalog_Entries64\000000000007 [] - C:\Windows\SysNative\wshbth.dll (Microsoft Corporation)
  439. O10:[b]64bit:[/b] - Protocol_Catalog9\Catalog_Entries64\000000000001 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
  440. O10:[b]64bit:[/b] - Protocol_Catalog9\Catalog_Entries64\000000000002 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
  441. O10:[b]64bit:[/b] - Protocol_Catalog9\Catalog_Entries64\000000000003 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
  442. O10:[b]64bit:[/b] - Protocol_Catalog9\Catalog_Entries64\000000000004 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
  443. O10:[b]64bit:[/b] - Protocol_Catalog9\Catalog_Entries64\000000000005 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
  444. O10:[b]64bit:[/b] - Protocol_Catalog9\Catalog_Entries64\000000000006 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
  445. O10:[b]64bit:[/b] - Protocol_Catalog9\Catalog_Entries64\000000000007 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
  446. O10:[b]64bit:[/b] - Protocol_Catalog9\Catalog_Entries64\000000000008 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
  447. O10:[b]64bit:[/b] - Protocol_Catalog9\Catalog_Entries64\000000000009 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
  448. O10:[b]64bit:[/b] - Protocol_Catalog9\Catalog_Entries64\000000000010 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
  449. O10:[b]64bit:[/b] - Protocol_Catalog9\Catalog_Entries64\000000000011 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
  450. O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - C:\Windows\SysWOW64\NapiNSP.dll (Microsoft Corporation)
  451. O10 - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - C:\Windows\SysWOW64\pnrpnsp.dll (Microsoft Corporation)
  452. O10 - NameSpace_Catalog5\Catalog_Entries\000000000003 [] - C:\Windows\SysWOW64\pnrpnsp.dll (Microsoft Corporation)
  453. O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Windows\SysWOW64\nlaapi.dll (Microsoft Corporation)
  454. O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
  455. O10 - NameSpace_Catalog5\Catalog_Entries\000000000006 [] - C:\Windows\SysWOW64\winrnr.dll (Microsoft Corporation)
  456. O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Windows\SysWOW64\wshbth.dll (Microsoft Corporation)
  457. O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
  458. O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
  459. O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
  460. O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
  461. O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
  462. O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
  463. O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
  464. O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
  465. O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
  466. O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
  467. O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
  468. O13[b]64bit:[/b] - gopher Prefix: missing
  469. O13 - gopher Prefix: missing
  470. O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
  471. O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{1550CCA3-CBC6-48D7-8415-AC1B2FD9F8AE}: DhcpNameServer = 62.24.0.88
  472. O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{53695B54-2EEE-4359-97EE-53FAE8F40660}: DhcpNameServer = 192.168.1.1
  473. O18:[b]64bit:[/b] - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll (Microsoft Corporation)
  474. O18:[b]64bit:[/b] - Protocol\Handler\belarc - No CLSID value found
  475. O18:[b]64bit:[/b] - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
  476. O18:[b]64bit:[/b] - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\SysNative\MSVidCtl.dll (Microsoft Corporation)
  477. O18:[b]64bit:[/b] - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
  478. O18:[b]64bit:[/b] - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
  479. O18:[b]64bit:[/b] - Protocol\Handler\grooveLocalGWS - No CLSID value found
  480. O18:[b]64bit:[/b] - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
  481. O18:[b]64bit:[/b] - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
  482. O18:[b]64bit:[/b] - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysNative\itss.dll (Microsoft Corporation)
  483. O18:[b]64bit:[/b] - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll (Microsoft Corporation)
  484. O18:[b]64bit:[/b] - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
  485. O18:[b]64bit:[/b] - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll (Microsoft Corporation)
  486. O18:[b]64bit:[/b] - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\SysNative\inetcomm.dll (Microsoft Corporation)
  487. O18:[b]64bit:[/b] - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
  488. O18:[b]64bit:[/b] - Protocol\Handler\ms-help - No CLSID value found
  489. O18:[b]64bit:[/b] - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysNative\itss.dll (Microsoft Corporation)
  490. O18:[b]64bit:[/b] - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll (Microsoft Corporation)
  491. O18:[b]64bit:[/b] - Protocol\Handler\skype4com - No CLSID value found
  492. O18:[b]64bit:[/b] - Protocol\Handler\skypec2c {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\SkypeIEPlugin.dll (Microsoft Corporation)
  493. O18:[b]64bit:[/b] - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\Windows\SysNative\MSVidCtl.dll (Microsoft Corporation)
  494. O18:[b]64bit:[/b] - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll (Microsoft Corporation)
  495. O18 - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
  496. O18 - Protocol\Handler\belarc {6318E0AB-2E93-11D1-B8ED-00608CC9A71F} - C:\Program Files (x86)\Belarc\BelarcAdvisor\System\BAVoilaX.dll (Belarc, Inc.)
  497. O18 - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
  498. O18 - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\SysWOW64\MSVidCtl.dll (Microsoft Corporation)
  499. O18 - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
  500. O18 - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
  501. O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
  502. O18 - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
  503. O18 - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
  504. O18 - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysWOW64\itss.dll (Microsoft Corporation)
  505. O18 - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
  506. O18 - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
  507. O18 - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
  508. O18 - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\SysWOW64\inetcomm.dll (Microsoft Corporation)
  509. O18 - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
  510. O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files (x86)\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
  511. O18 - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysWOW64\itss.dll (Microsoft Corporation)
  512. O18 - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
  513. O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
  514. O18 - Protocol\Handler\skypec2c {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
  515. O18 - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\Windows\SysWOW64\MSVidCtl.dll (Microsoft Corporation)
  516. O18 - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
  517. O18:[b]64bit:[/b] - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysNative\mscoree.dll (Microsoft Corporation)
  518. O18:[b]64bit:[/b] - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysNative\mscoree.dll (Microsoft Corporation)
  519. O18:[b]64bit:[/b] - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysNative\mscoree.dll (Microsoft Corporation)
  520. O18:[b]64bit:[/b] - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
  521. O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysWOW64\mscoree.dll (Microsoft Corporation)
  522. O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysWOW64\mscoree.dll (Microsoft Corporation)
  523. O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysWOW64\mscoree.dll (Microsoft Corporation)
  524. O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
  525. O20:[b]64bit:[/b] - AppInit_DLLs: (C:\Windows\system32\nvinitx.dll) - C:\Windows\SysNative\nvinitx.dll (NVIDIA Corporation)
  526. O20 - AppInit_DLLs: (C:\Windows\SysWOW64\nvinit.dll) - C:\Windows\SysWOW64\nvinit.dll (NVIDIA Corporation)
  527. O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
  528. O20:[b]64bit:[/b] - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
  529. O20:[b]64bit:[/b] - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
  530. O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
  531. O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
  532. O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysWow64\SystemPropertiesPerformance.exe (Microsoft Corporation)
  533. O20:[b]64bit:[/b] - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
  534. O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
  535. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
  536. O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
  537. O29:[b]64bit:[/b] - HKLM SecurityProviders - (credssp.dll) - C:\Windows\SysWow64\credssp.dll (Microsoft Corporation)
  538. O29 - HKLM SecurityProviders - (credssp.dll) - C:\Windows\SysWow64\credssp.dll (Microsoft Corporation)
  539. O30:[b]64bit:[/b] - LSA: Authentication Packages - (msv1_0) - C:\Windows\SysNative\msv1_0.dll (Microsoft Corporation)
  540. O30 - LSA: Authentication Packages - (msv1_0) - C:\Windows\SysWow64\msv1_0.dll (Microsoft Corporation)
  541. O30:[b]64bit:[/b] - LSA: Security Packages - (kerberos) - C:\Windows\SysNative\kerberos.dll (Microsoft Corporation)
  542. O30:[b]64bit:[/b] - LSA: Security Packages - (msv1_0) - C:\Windows\SysNative\msv1_0.dll (Microsoft Corporation)
  543. O30:[b]64bit:[/b] - LSA: Security Packages - (schannel) - C:\Windows\SysNative\schannel.dll (Microsoft Corporation)
  544. O30:[b]64bit:[/b] - LSA: Security Packages - (wdigest) - C:\Windows\SysNative\wdigest.dll (Microsoft Corporation)
  545. O30:[b]64bit:[/b] - LSA: Security Packages - (tspkg) - C:\Windows\SysNative\tspkg.dll (Microsoft Corporation)
  546. O30:[b]64bit:[/b] - LSA: Security Packages - (pku2u) - C:\Windows\SysNative\pku2u.dll (Microsoft Corporation)
  547. O30:[b]64bit:[/b] - LSA: Security Packages - (livessp) - C:\Windows\SysNative\livessp.dll (Microsoft Corporation)
  548. O30 - LSA: Security Packages - (kerberos) - C:\Windows\SysWow64\kerberos.dll (Microsoft Corporation)
  549. O30 - LSA: Security Packages - (msv1_0) - C:\Windows\SysWow64\msv1_0.dll (Microsoft Corporation)
  550. O30 - LSA: Security Packages - (schannel) - C:\Windows\SysWow64\schannel.dll (Microsoft Corporation)
  551. O30 - LSA: Security Packages - (wdigest) - C:\Windows\SysWow64\wdigest.dll (Microsoft Corporation)
  552. O30 - LSA: Security Packages - (tspkg) - C:\Windows\SysWow64\tspkg.dll (Microsoft Corporation)
  553. O30 - LSA: Security Packages - (pku2u) - C:\Windows\SysWow64\pku2u.dll (Microsoft Corporation)
  554. O30 - LSA: Security Packages - (livessp) - File not found
  555. O31 - SafeBoot: AlternateShell - cmd.exe
  556. O32 - HKLM CDRom: AutoRun - 1
  557. O33 - MountPoints2\{f43cca9c-afaa-11e4-be8b-0c84dcfbf378}\Shell - "" = AutoRun
  558. O33 - MountPoints2\{f43cca9c-afaa-11e4-be8b-0c84dcfbf378}\Shell\AutoRun\command - "" = "F:\AutoRun.exe"
  559. O34 - HKLM BootExecute: (autocheck autochk *)
  560. O35:[b]64bit:[/b] - HKLM\..comfile [open] -- "%1" %*
  561. O35:[b]64bit:[/b] - HKLM\..exefile [open] -- "%1" %*
  562. O35 - HKLM\..comfile [open] -- "%1" %*
  563. O35 - HKLM\..exefile [open] -- "%1" %*
  564. O37:[b]64bit:[/b] - HKLM\...com [@ = comfile] -- "%1" %*
  565. O37:[b]64bit:[/b] - HKLM\...exe [@ = exefile] -- "%1" %*
  566. O37 - HKLM\...com [@ = comfile] -- "%1" %*
  567. O37 - HKLM\...exe [@ = exefile] -- "%1" %*
  568. O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
  569. O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
  570.  
  571. [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
  572.  
  573. [2016-05-12 16:09:08 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\fauzaneinil\Desktop\OTL.exe
  574. [2016-05-10 12:11:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ContentProtector
  575. [2016-05-10 12:09:52 | 000,000,000 | ---D | C] -- C:\Program Files\ContentProtector
  576. [2016-05-10 12:08:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\HomePageDefender
  577. [2016-05-10 12:08:44 | 000,000,000 | ---D | C] -- C:\Users\fauzaneinil\AppData\Roaming\ImageCropResize
  578. [2016-05-10 11:42:27 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SmartPLS 3
  579. [2016-05-10 11:42:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SmartPLS
  580. [2016-04-29 23:10:14 | 000,000,000 | ---D | C] -- C:\Users\fauzaneinil\Documents\PCSX2
  581. [2016-04-29 23:09:41 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\directx
  582. [2016-04-29 23:09:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PCSX2
  583. [2016-04-29 23:09:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\PCSX2 1.0.0
  584. [2016-04-29 23:01:07 | 000,000,000 | ---D | C] -- C:\Users\fauzaneinil\AppData\Roaming\fltk.org
  585. [2016-04-15 06:24:15 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Hewlett-Packard
  586. [27 C:\*.tmp files -> C:\*.tmp -> ]
  587.  
  588. [color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
  589.  
  590. [2016-05-12 16:13:01 | 000,001,336 | ---- | M] () -- C:\Windows\tasks\48_dresses_notification_service.job
  591. [2016-05-12 16:13:00 | 000,000,004 | ---- | M] () -- C:\Windows\SysWow64\029B560A371F4E00AB32838EBC01B9E7
  592. [2016-05-12 16:09:14 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\fauzaneinil\Desktop\OTL.exe
  593. [2016-05-12 15:57:00 | 000,000,422 | ---- | M] () -- C:\Windows\tasks\WpsNotifyTask_fauzaneinil.job
  594. [2016-05-12 15:51:59 | 000,003,132 | ---- | M] () -- C:\Windows\tasks\9a9b2148-9406-44cf-afe8-604ee134900e-3.job
  595. [2016-05-12 15:51:40 | 000,001,434 | ---- | M] () -- C:\Windows\tasks\9a9b2148-9406-44cf-afe8-604ee134900e-5_user.job
  596. [2016-05-12 15:51:40 | 000,001,420 | ---- | M] () -- C:\Windows\tasks\9a9b2148-9406-44cf-afe8-604ee134900e-5.job
  597. [2016-05-12 15:51:36 | 000,001,996 | ---- | M] () -- C:\Windows\tasks\9a9b2148-9406-44cf-afe8-604ee134900e-4.job
  598. [2016-05-12 15:51:35 | 000,003,814 | ---- | M] () -- C:\Windows\tasks\9a9b2148-9406-44cf-afe8-604ee134900e-11.job
  599. [2016-05-12 15:51:34 | 000,002,466 | ---- | M] () -- C:\Windows\tasks\96376a83-fe11-4e62-9804-cf54613bbc9f-5_user.job
  600. [2016-05-12 15:51:34 | 000,002,466 | ---- | M] () -- C:\Windows\tasks\96376a83-fe11-4e62-9804-cf54613bbc9f-5.job
  601. [2016-05-12 15:51:34 | 000,000,956 | ---- | M] () -- C:\Windows\tasks\globalUpdateUpdateTaskMachineCore.job
  602. [2016-05-12 15:51:33 | 000,000,698 | ---- | M] () -- C:\Windows\tasks\48_dresses_updating_service.job
  603. [2016-05-12 15:51:32 | 000,001,542 | ---- | M] () -- C:\Windows\tasks\9a9b2148-9406-44cf-afe8-604ee134900e-1.job
  604. [2016-05-12 15:51:32 | 000,000,378 | ---- | M] () -- C:\Windows\tasks\AmiUpdXp.job
  605. [2016-05-12 15:51:30 | 000,001,278 | ---- | M] () -- C:\Windows\tasks\9a9b2148-9406-44cf-afe8-604ee134900e-10.job
  606. [2016-05-12 15:51:30 | 000,000,500 | ---- | M] () -- C:\Windows\tasks\agames_helper_service.job
  607. [2016-05-12 15:51:11 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
  608. [2016-05-12 12:28:00 | 000,000,422 | ---- | M] () -- C:\Windows\tasks\WpsUpdateTask_fauzaneinil.job
  609. [2016-05-12 12:20:00 | 000,000,942 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1429203676-27439748-2785348026-1002UA.job
  610. [2016-05-12 11:49:15 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
  611. [2016-05-12 11:20:00 | 000,000,890 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1429203676-27439748-2785348026-1002Core.job
  612. [2016-05-12 08:34:01 | 000,000,960 | ---- | M] () -- C:\Windows\tasks\globalUpdateUpdateTaskMachineUA.job
  613. [2016-05-12 05:15:28 | 000,002,605 | ---- | M] () -- C:\Users\fauzaneinil\Desktop\Google Chrome.lnk
  614. [2016-05-10 15:14:36 | 000,848,230 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
  615. [2016-05-10 15:14:36 | 000,719,418 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
  616. [2016-05-10 15:14:36 | 000,132,748 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
  617. [2016-05-10 12:14:21 | 268,435,456 | -HS- | M] () -- C:\swapfile.sys
  618. [2016-05-10 12:14:16 | 3334,299,648 | -HS- | M] () -- C:\hiberfil.sys
  619. [2016-05-10 12:08:48 | 000,000,760 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
  620. [2016-05-10 12:08:44 | 000,000,995 | ---- | M] () -- C:\Users\fauzaneinil\Desktop\ImageCropResize.lnk
  621. [2016-05-10 11:42:46 | 000,000,951 | ---- | M] () -- C:\Users\Public\Desktop\SmartPLS 3.lnk
  622. [2016-05-10 11:07:25 | 110,923,776 | ---- | M] () -- C:\Users\fauzaneinil\Documents\smartpls-3.2.4_32bit.msi
  623. [2016-05-08 09:14:47 | 000,001,985 | ---- | M] () -- C:\Users\Public\Desktop\PCSX2 1.0.0 (r5350).lnk
  624. [2016-04-29 17:35:39 | 000,002,358 | ---- | M] () -- C:\Users\fauzaneinil\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
  625. [2016-04-20 15:29:52 | 000,058,176 | ---- | M] () -- C:\Windows\SysNative\drivers\ContentProtectorDrv.sys
  626. [27 C:\*.tmp files -> C:\*.tmp -> ]
  627.  
  628. [color=#E56717]========== Files Created - No Company Name ==========[/color]
  629.  
  630. [2016-05-10 12:09:52 | 000,058,176 | ---- | C] () -- C:\Windows\SysNative\drivers\ContentProtectorDrv.sys
  631. [2016-05-10 12:08:44 | 000,000,995 | ---- | C] () -- C:\Users\fauzaneinil\Desktop\ImageCropResize.lnk
  632. [2016-05-10 11:42:46 | 000,000,951 | ---- | C] () -- C:\Users\Public\Desktop\SmartPLS 3.lnk
  633. [2016-05-10 11:42:16 | 110,923,776 | ---- | C] () -- C:\Users\fauzaneinil\Documents\smartpls-3.2.4_32bit.msi
  634. [2016-04-29 23:09:40 | 000,001,985 | ---- | C] () -- C:\Users\Public\Desktop\PCSX2 1.0.0 (r5350).lnk
  635. [2016-04-29 17:35:28 | 000,002,358 | ---- | C] () -- C:\Users\fauzaneinil\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
  636. [2016-04-06 14:56:45 | 000,000,057 | ---- | C] () -- C:\ProgramData\Ament.ini
  637. [2016-03-30 06:24:10 | 000,000,258 | RHS- | C] () -- C:\ProgramData\ntuser.pol
  638. [2016-02-20 08:07:36 | 000,000,152 | ---- | C] () -- C:\Users\fauzaneinil\.smartpls
  639. [2015-11-11 13:43:38 | 000,000,098 | ---- | C] () -- C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat
  640. [2015-11-04 10:25:44 | 000,000,000 | ---- | C] () -- C:\Windows\HPMProp.INI
  641. [2015-10-20 21:08:06 | 000,000,162 | ---- | C] () -- C:\Windows\ODBC.INI
  642. [2015-04-18 00:23:57 | 000,000,000 | -H-- | C] () -- C:\ProgramData\DP45977C.lfl
  643. [2015-03-31 15:14:36 | 000,004,387 | ---- | C] () -- C:\Users\fauzaneinil\AppData\Roaming\Xnia4KrGyakVkvXxORnyQQEE
  644. [2014-07-26 13:21:09 | 000,217,176 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll
  645.  
  646. [color=#E56717]========== ZeroAccess Check ==========[/color]
  647.  
  648.  
  649. [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
  650.  
  651. [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
  652.  
  653. [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64
  654.  
  655. [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
  656.  
  657. [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
  658. "" = C:\Windows\SysNative\shell32.dll -- [2013-01-10 06:23:07 | 019,791,360 | ---- | M] (Microsoft Corporation)
  659. "ThreadingModel" = Apartment
  660.  
  661. [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
  662. "" = %SystemRoot%\system32\shell32.dll -- [2013-01-10 06:26:23 | 017,560,576 | ---- | M] (Microsoft Corporation)
  663. "ThreadingModel" = Apartment
  664.  
  665. [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
  666. "" = C:\Windows\SysNative\wbem\fastprox.dll -- [2012-07-26 10:05:38 | 001,004,544 | ---- | M] (Microsoft Corporation)
  667. "ThreadingModel" = Free
  668.  
  669. [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
  670. "" = %systemroot%\system32\wbem\fastprox.dll -- [2012-07-26 10:18:27 | 000,784,896 | ---- | M] (Microsoft Corporation)
  671. "ThreadingModel" = Free
  672.  
  673. [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
  674. "" = C:\Windows\SysNative\wbem\wbemess.dll -- [2012-07-26 10:07:41 | 000,455,680 | ---- | M] (Microsoft Corporation)
  675. "ThreadingModel" = Both
  676.  
  677. [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
  678.  
  679. [color=#E56717]========== LOP Check ==========[/color]
  680.  
  681. [2016-03-15 17:51:06 | 000,000,000 | ---D | M] -- C:\Users\fauzaneinil\AppData\Roaming\ACD Systems
  682. [2015-10-18 21:46:31 | 000,000,000 | ---D | M] -- C:\Users\fauzaneinil\AppData\Roaming\COWON
  683. [2016-02-29 12:24:36 | 000,000,000 | ---D | M] -- C:\Users\fauzaneinil\AppData\Roaming\eCyber
  684. [2016-04-29 23:01:07 | 000,000,000 | ---D | M] -- C:\Users\fauzaneinil\AppData\Roaming\fltk.org
  685. [2016-05-04 19:44:10 | 000,000,000 | ---D | M] -- C:\Users\fauzaneinil\AppData\Roaming\foobar2000
  686. [2015-11-11 05:57:15 | 000,000,000 | ---D | M] -- C:\Users\fauzaneinil\AppData\Roaming\GrabPro
  687. [2016-05-10 12:08:44 | 000,000,000 | ---D | M] -- C:\Users\fauzaneinil\AppData\Roaming\ImageCropResize
  688. [2015-02-08 22:48:53 | 000,000,000 | ---D | M] -- C:\Users\fauzaneinil\AppData\Roaming\iolo
  689. [2015-11-11 13:43:37 | 000,000,000 | ---D | M] -- C:\Users\fauzaneinil\AppData\Roaming\istartsurf
  690. [2014-12-11 23:55:25 | 000,000,000 | ---D | M] -- C:\Users\fauzaneinil\AppData\Roaming\kingsoft
  691. [2016-05-04 19:40:10 | 000,000,000 | ---D | M] -- C:\Users\fauzaneinil\AppData\Roaming\MiniLyrics
  692. [2014-11-04 14:39:57 | 000,000,000 | ---D | M] -- C:\Users\fauzaneinil\AppData\Roaming\MPC-HC
  693. [2015-11-11 05:56:07 | 000,000,000 | ---D | M] -- C:\Users\fauzaneinil\AppData\Roaming\OpenCandy
  694. [2016-04-25 22:01:13 | 000,000,000 | ---D | M] -- C:\Users\fauzaneinil\AppData\Roaming\Orbit
  695. [2015-10-13 22:27:46 | 000,000,000 | ---D | M] -- C:\Users\fauzaneinil\AppData\Roaming\ProgSense
  696. [2014-11-04 14:39:17 | 000,000,000 | ---D | M] -- C:\Users\fauzaneinil\AppData\Roaming\Sony
  697. [2015-12-24 21:32:26 | 000,000,000 | ---D | M] -- C:\Users\fauzaneinil\AppData\Roaming\TuneUp Software
  698. [2015-01-08 17:17:49 | 000,000,000 | ---D | M] -- C:\Users\fauzaneinil\AppData\Roaming\TweetAdder3
  699. [2016-04-06 14:55:59 | 000,000,000 | ---D | M] -- C:\Users\fauzaneinil\AppData\Roaming\WinZiper
  700.  
  701. [color=#E56717]========== Purity Check ==========[/color]
  702.  
  703.  
  704.  
  705. < End of report >
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!