OTL logfile created on: 1/10/2012 7:05:56 PM - Run 1
OTL by OldTimer - Version 3.2.31.0     Folder = C:\Users\Stevassy\Desktop
64bit- Professional Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7601.17514)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
 
2.86 Gb Total Physical Memory | 0.83 Gb Available Physical Memory | 28.88% Memory free
5.73 Gb Paging File | 2.74 Gb Available in Paging File | 47.90% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 40.00 Gb Total Space | 1.10 Gb Free Space | 2.75% Space Free | Partition Type: NTFS
Drive D: | 78.00 Gb Total Space | 8.35 Gb Free Space | 10.71% Space Free | Partition Type: NTFS
Drive E: | 179.99 Gb Total Space | 11.06 Gb Free Space | 6.14% Space Free | Partition Type: NTFS
 
Computer Name: STEVASSY-PC | User Name: Stevassy | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
[color=#E56717]========== Processes (SafeList) ==========[/color]
 
PRC - [2012/01/10 19:05:25 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Users\Stevassy\Desktop\OTL.exe
PRC - [2011/11/01 12:22:00 | 000,593,920 | ---- | M] () -- C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe
PRC - [2011/10/20 10:05:15 | 000,246,112 | ---- | M] () -- C:\ProgramData\Telenor Internet\OnlineUpdate\ouc.exe
PRC - [2011/10/19 10:02:54 | 000,140,952 | ---- | M] (Google Inc.) -- C:\Users\Stevassy\AppData\Local\Google\Update\1.3.21.79\GoogleCrashHandler.exe
PRC - [2011/09/27 12:19:20 | 000,072,704 | ---- | M] (Autodata Limited) -- C:\Program Files (x86)\Common Files\Autodata Limited Shared\Service\ADCDLicSvc.exe
PRC - [2011/08/12 16:13:26 | 000,087,040 | ---- | M] () -- C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
PRC - [2011/05/27 15:23:00 | 001,300,264 | ---- | M] (Synaptics, Inc.) -- C:\Program Files (x86)\Synaptics\Scrybe\Service\ScrybeUpdater.exe
PRC - [2011/05/23 14:13:10 | 000,049,752 | ---- | M] () -- C:\Program Files (x86)\Vip Internet\BackgroundService\ServiceManager.exe
PRC - [2011/03/14 16:27:28 | 000,236,384 | ---- | M] (Huawei Technologies Co., Ltd.) -- C:\ProgramData\DatacardService\DCSHelper.exe
PRC - [2010/07/21 21:54:04 | 003,224,064 | ---- | M] (KLS Soft) -- C:\Program Files (x86)\KLS Soft\KLS Backup 2009 Professional\klsbservice.exe
PRC - [2010/07/20 10:45:24 | 001,531,904 | ---- | M] (Nokia) -- C:\Program Files (x86)\Common Files\Nokia\MPlatform\NokiaMServer.exe
PRC - [2010/05/04 11:07:22 | 000,503,080 | ---- | M] (Nero AG) -- C:\Program Files (x86)\Nero\Update\NASvc.exe
PRC - [2009/09/23 15:45:50 | 001,287,176 | ---- | M] (Panda Security) -- C:\Program Files (x86)\Panda USB Vaccine\USBVaccine.exe
PRC - [2009/08/24 19:02:18 | 002,684,256 | ---- | M] (TOSHIBA CORPORATION.) -- C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe
PRC - [2009/06/08 14:34:58 | 000,660,808 | ---- | M] (TOSHIBA CORPORATION.) -- C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe
PRC - [2009/06/03 15:33:14 | 000,308,552 | ---- | M] (TOSHIBA CORPORATION.) -- C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtHSP.exe
PRC - [2009/05/14 14:47:54 | 000,731,840 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
PRC - [2009/04/03 18:17:42 | 000,447,816 | ---- | M] (TOSHIBA CORPORATION.) -- C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosAVRC.exe
PRC - [2008/07/24 11:24:24 | 000,083,272 | ---- | M] (TOSHIBA CORPORATION.) -- C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe
PRC - [2003/06/22 15:38:28 | 001,297,920 | ---- | M] (Hagel Technologies) -- C:\Program Files (x86)\DU Meter\DUMeter.exe
 
 
[color=#E56717]========== Modules (No Company Name) ==========[/color]
 
MOD - [2012/01/05 10:48:44 | 000,411,120 | ---- | M] () -- C:\Users\Stevassy\AppData\Local\Google\Chrome\Application\16.0.912.75\ppgooglenaclpluginchrome.dll
MOD - [2012/01/05 10:48:43 | 003,767,792 | ---- | M] () -- C:\Users\Stevassy\AppData\Local\Google\Chrome\Application\16.0.912.75\pdf.dll
MOD - [2012/01/05 10:47:30 | 000,521,712 | ---- | M] () -- C:\Users\Stevassy\AppData\Local\Google\Chrome\Application\16.0.912.75\libglesv2.dll
MOD - [2012/01/05 10:47:29 | 000,112,624 | ---- | M] () -- C:\Users\Stevassy\AppData\Local\Google\Chrome\Application\16.0.912.75\libegl.dll
MOD - [2012/01/05 10:47:19 | 000,122,880 | ---- | M] () -- C:\Users\Stevassy\AppData\Local\Google\Chrome\Application\16.0.912.75\avutil-51.dll
MOD - [2012/01/05 10:47:18 | 000,222,208 | ---- | M] () -- C:\Users\Stevassy\AppData\Local\Google\Chrome\Application\16.0.912.75\avformat-53.dll
MOD - [2012/01/05 10:47:17 | 001,746,432 | ---- | M] () -- C:\Users\Stevassy\AppData\Local\Google\Chrome\Application\16.0.912.75\avcodec-53.dll
MOD - [2012/01/05 08:06:01 | 008,593,056 | ---- | M] () -- C:\Users\Stevassy\AppData\Local\Google\Chrome\Application\16.0.912.75\gcswf32.dll
MOD - [2011/11/01 12:22:00 | 001,515,520 | ---- | M] () -- C:\Program Files (x86)\HTC\HTC Sync 3.0\Maps\R66Api.dll
MOD - [2011/11/01 12:22:00 | 000,593,920 | ---- | M] () -- C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe
MOD - [2011/11/01 12:22:00 | 000,559,244 | ---- | M] () -- C:\Program Files (x86)\HTC\HTC Sync 3.0\sqlite3.7.dll
MOD - [2011/11/01 12:22:00 | 000,516,599 | ---- | M] () -- C:\Program Files (x86)\HTC\HTC Sync 3.0\sqlite3.dll
MOD - [2011/11/01 12:22:00 | 000,380,928 | ---- | M] () -- C:\Program Files (x86)\HTC\HTC Sync 3.0\htcDetect.dll
MOD - [2011/11/01 12:22:00 | 000,163,840 | ---- | M] () -- C:\Program Files (x86)\HTC\HTC Sync 3.0\htcDetectLegend.dll
MOD - [2011/11/01 12:22:00 | 000,139,264 | ---- | M] () -- C:\Program Files (x86)\HTC\HTC Sync 3.0\htcDisk.dll
MOD - [2011/11/01 12:22:00 | 000,094,208 | ---- | M] () -- C:\Program Files (x86)\HTC\HTC Sync 3.0\fdHttpd.dll
MOD - [2011/10/24 12:45:55 | 006,611,456 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Data\f8196c3588c2229e84516af4b6a0ee60\System.Data.ni.dll
MOD - [2011/10/24 12:45:34 | 005,453,312 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\130ad4d9719e566ca933ac7158a04203\System.Xml.ni.dll
MOD - [2011/10/24 12:45:30 | 000,971,264 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\2d5bcbeb9475ef62189f605bcca1cec6\System.Configuration.ni.dll
MOD - [2011/10/24 12:45:29 | 007,963,648 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\abab08afa60a6f06bdde0fcc9649c379\System.ni.dll
MOD - [2011/10/24 12:45:23 | 011,490,304 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\a1a82db68b3badc7c27ea1f6579d22c5\mscorlib.ni.dll
MOD - [2010/11/05 02:58:05 | 002,927,616 | ---- | M] () -- C:\Windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll
 
 
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
 
SRV:[b]64bit:[/b] - [2009/09/28 14:46:02 | 000,251,760 | ---- | M] (TOSHIBA Corporation) [Auto | Running] -- C:\Program Files\TOSHIBA\TECO\TecoService.exe -- (TOSHIBA eco Utility Service)
SRV:[b]64bit:[/b] - [2009/07/14 02:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:[b]64bit:[/b] - [2009/07/14 02:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV:[b]64bit:[/b] - [2009/05/14 14:54:26 | 000,023,296 | ---- | M] (ESET) [On_Demand | Stopped] -- C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe -- (EhttpSrv)
SRV:[b]64bit:[/b] - [2009/05/14 14:47:54 | 000,731,840 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe -- (ekrn)
SRV - [2011/10/20 10:05:15 | 000,246,112 | ---- | M] () [Auto | Stopped] -- C:\Program Files (x86)\Telenor Internet\UpdateDog\ouc.exe -- (Telenor Internet. RunOuc)
SRV - [2011/09/27 12:19:20 | 000,072,704 | ---- | M] (Autodata Limited) [Auto | Running] -- C:\Program Files (x86)\Common Files\Autodata Limited Shared\Service\ADCDLicSvc.exe -- (Autodata Limited License Service)
SRV - [2011/08/12 16:13:26 | 000,087,040 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe -- (PassThru Service)
SRV - [2011/05/27 15:23:00 | 001,300,264 | ---- | M] (Synaptics, Inc.) [Auto | Running] -- C:\Program Files (x86)\Synaptics\Scrybe\Service\ScrybeUpdater.exe -- (ScrybeUpdater)
SRV - [2011/05/23 14:13:10 | 000,049,752 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Vip Internet\BackgroundService\ServiceManager.exe -- (VIP_Serbia Wave Modem Device Helper)
SRV - [2010/10/20 11:22:24 | 000,630,272 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2010/07/21 21:54:04 | 003,224,064 | ---- | M] (KLS Soft) [Auto | Running] -- C:\Program Files (x86)\KLS Soft\KLS Backup 2009 Professional\klsbservice.exe -- (KLSBackup2009Pro)
SRV - [2010/06/25 18:07:20 | 000,117,264 | ---- | M] (CACE Technologies, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\WinPcap\rpcapd.exe -- (rpcapd) Remote Packet Capture Protocol v.0 (experimental)
SRV - [2010/05/04 11:07:22 | 000,503,080 | ---- | M] (Nero AG) [Auto | Running] -- C:\Program Files (x86)\Nero\Update\NASvc.exe -- (NAUpdate)
SRV - [2010/03/18 12:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009/07/30 21:20:36 | 000,192,368 | ---- | M] (TOSHIBA CORPORATION) [On_Demand | Running] -- C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe -- (TOSHIBA Bluetooth Service)
SRV - [2009/06/10 22:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2007/05/31 09:11:54 | 000,443,784 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\WindowsMobile\wcescomm.dll -- (WcesComm)
SRV - [2007/05/31 09:11:46 | 000,225,672 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\WindowsMobile\rapimgr.dll -- (RapiMgr)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV:[b]64bit:[/b] - [2011/10/21 17:30:04 | 012,310,112 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:[b]64bit:[/b] - [2011/10/20 10:05:20 | 000,117,248 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ew_hwusbdev.sys -- (ew_hwusbdev)
DRV:[b]64bit:[/b] - [2011/10/20 10:05:20 | 000,086,016 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ew_jubusenum.sys -- (huawei_enumerator)
DRV:[b]64bit:[/b] - [2011/10/20 10:05:19 | 000,421,376 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ewusbwwan.sys -- (ewusbmbb)
DRV:[b]64bit:[/b] - [2011/10/20 10:05:19 | 000,221,312 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ewusbmdm.sys -- (hwdatacard)
DRV:[b]64bit:[/b] - [2011/06/15 09:30:46 | 000,093,240 | ---- | M] (PowerISO Computing, Inc.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\scdemu.sys -- (SCDEmu)
DRV:[b]64bit:[/b] - [2011/03/31 18:32:00 | 001,424,944 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SynTP.sys -- (SynTP)
DRV:[b]64bit:[/b] - [2011/03/11 07:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:[b]64bit:[/b] - [2011/03/11 07:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:[b]64bit:[/b] - [2011/02/11 02:07:00 | 000,416,032 | ---- | M] (Audiotrack) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Maya44.sys -- (MAYA44)
DRV:[b]64bit:[/b] - [2011/02/11 02:07:00 | 000,054,560 | ---- | M] (usb-audio.de) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\pgusbmm3.sys -- (pgusbmme)
DRV:[b]64bit:[/b] - [2010/11/20 14:33:35 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:[b]64bit:[/b] - [2010/11/20 12:07:05 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:[b]64bit:[/b] - [2010/11/20 11:43:57 | 000,032,768 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbser.sys -- (usbser)
DRV:[b]64bit:[/b] - [2010/06/25 18:07:26 | 000,035,344 | ---- | M] (CACE Technologies, Inc.) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\npf.sys -- (NPF)
DRV:[b]64bit:[/b] - [2010/06/25 15:08:10 | 000,036,928 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\htcnprot.sys -- (htcnprot)
DRV:[b]64bit:[/b] - [2010/06/17 15:09:00 | 000,118,016 | ---- | M] (TCT International Mobile Ltd) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\qcusbser.sys -- (qcusbser)
DRV:[b]64bit:[/b] - [2010/04/26 17:23:08 | 001,103,904 | ---- | M] (Realtek Semiconductor Corporation                           ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\rtl8192se.sys -- (rtl8192se)
DRV:[b]64bit:[/b] - [2010/02/26 13:33:40 | 000,009,216 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbser_lowerfltx64j.sys -- (UsbserFilt)
DRV:[b]64bit:[/b] - [2010/02/26 13:33:24 | 000,009,216 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbser_lowerfltx64.sys -- (upperdev)
DRV:[b]64bit:[/b] - [2010/02/26 13:33:22 | 000,025,088 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ccdcmbox64.sys -- (nmwcdcx64)
DRV:[b]64bit:[/b] - [2010/02/26 13:33:22 | 000,019,456 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ccdcmbx64.sys -- (nmwcdx64)
DRV:[b]64bit:[/b] - [2010/02/26 13:21:22 | 000,173,056 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\nmwcdnsux64.sys -- (nmwcdnsux64)
DRV:[b]64bit:[/b] - [2010/02/26 13:21:20 | 000,012,288 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\nmwcdnsucx64.sys -- (nmwcdnsucx64)
DRV:[b]64bit:[/b] - [2010/02/10 21:02:00 | 000,158,720 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Impcd.sys -- (Impcd)
DRV:[b]64bit:[/b] - [2010/02/03 20:38:32 | 000,271,872 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\IntcDAud.sys -- (IntcDAud) Intel(R)
DRV:[b]64bit:[/b] - [2009/10/26 15:54:22 | 000,032,768 | ---- | M] (HTC, Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ANDROIDUSB.sys -- (HTCAND64)
DRV:[b]64bit:[/b] - [2009/09/17 19:54:54 | 000,056,344 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (HECIx64) Intel(R)
DRV:[b]64bit:[/b] - [2009/08/05 14:45:28 | 000,058,744 | ---- | M] (TOSHIBA CORPORATION) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\tosrfusb.sys -- (Tosrfusb)
DRV:[b]64bit:[/b] - [2009/08/05 12:56:04 | 000,063,856 | ---- | M] (TOSHIBA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TosRfSnd.sys -- (TosRfSnd)
DRV:[b]64bit:[/b] - [2009/07/28 19:02:00 | 000,081,768 | ---- | M] (TOSHIBA Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\tosrfcom.sys -- (Tosrfcom)
DRV:[b]64bit:[/b] - [2009/07/24 10:33:00 | 000,026,472 | ---- | M] (TOSHIBA Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tosrfnds.sys -- (tosrfnds)
DRV:[b]64bit:[/b] - [2009/07/14 14:31:18 | 000,026,840 | ---- | M] (TOSHIBA Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\TVALZ_O.SYS -- (TVALZ)
DRV:[b]64bit:[/b] - [2009/07/14 02:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:[b]64bit:[/b] - [2009/07/14 02:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:[b]64bit:[/b] - [2009/07/14 02:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:[b]64bit:[/b] - [2009/07/14 01:10:47 | 000,011,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\rootmdm.sys -- (ROOTMODEM)
DRV:[b]64bit:[/b] - [2009/07/14 01:09:50 | 000,019,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usb8023x.sys -- (usb_rndisx)
DRV:[b]64bit:[/b] - [2009/07/13 21:12:00 | 000,019,824 | ---- | M] (TOSHIBA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\tosrfec.sys -- (tosrfec)
DRV:[b]64bit:[/b] - [2009/07/07 21:39:08 | 000,211,432 | ---- | M] (TOSHIBA CORPORATION) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\tosrfbd.sys -- (tosrfbd)
DRV:[b]64bit:[/b] - [2009/06/19 09:00:00 | 000,094,336 | ---- | M] (TOSHIBA Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Tosrfhid.sys -- (Tosrfhid)
DRV:[b]64bit:[/b] - [2009/06/19 08:59:00 | 000,050,664 | ---- | M] (TOSHIBA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tosrfbnp.sys -- (tosrfbnp)
DRV:[b]64bit:[/b] - [2009/06/17 14:02:50 | 000,034,440 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btnetBus.sys -- (btnetBUs)
DRV:[b]64bit:[/b] - [2009/06/17 14:01:46 | 000,030,344 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\IvtBtBus.sys -- (IvtBtBUs)
DRV:[b]64bit:[/b] - [2009/06/17 14:01:38 | 000,024,968 | ---- | M] (IVT Corporation.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\BtHidBus.sys -- (BtHidBus)
DRV:[b]64bit:[/b] - [2009/06/17 11:01:00 | 000,054,664 | ---- | M] (TOSHIBA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\tosporte.sys -- (tosporte)
DRV:[b]64bit:[/b] - [2009/06/10 21:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:[b]64bit:[/b] - [2009/06/10 21:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:[b]64bit:[/b] - [2009/06/10 21:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:[b]64bit:[/b] - [2009/06/10 21:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:[b]64bit:[/b] - [2009/05/14 14:49:54 | 000,044,944 | ---- | M] (ESET) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\epfwwfp.sys -- (epfwwfp)
DRV:[b]64bit:[/b] - [2009/05/14 14:49:50 | 000,033,608 | ---- | M] (ESET) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\epfwndis.sys -- (Epfwndis)
DRV:[b]64bit:[/b] - [2009/05/14 14:49:48 | 000,165,960 | ---- | M] (ESET) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\epfw.sys -- (epfw)
DRV:[b]64bit:[/b] - [2009/05/14 14:47:16 | 000,134,024 | ---- | M] (ESET) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\ehdrv.sys -- (ehdrv)
DRV:[b]64bit:[/b] - [2009/05/14 14:41:14 | 000,142,776 | ---- | M] (ESET) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\eamon.sys -- (eamon)
DRV:[b]64bit:[/b] - [2009/03/01 22:05:32 | 000,187,392 | ---- | M] (Realtek Corporation                                            ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:[b]64bit:[/b] - [2008/08/28 12:44:42 | 000,025,600 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\pccsmcfdx64.sys -- (pccsmcfd)
DRV:[b]64bit:[/b] - [2006/09/19 13:43:54 | 000,018,224 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV - [2009/07/14 02:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)
DRV - [2008/05/07 11:30:14 | 000,032,040 | ---- | M] (COMPAL ELECTRONIC INC.) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\LPCFilter.sys -- (LPCFilter)
DRV - [2005/08/03 06:10:12 | 000,032,512 | ---- | M] (CACE Technologies) [Kernel | Auto | Running] -- C:\Windows\SysWOW64\drivers\npf.sys -- (NPF)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-us
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = C3 C7 9F C1 A9 3C CC 01  [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
[color=#E56717]========== FireFox ==========[/color]
 
 
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_1_102.dll File not found
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre7\bin\new_plugin\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\4.0.60831.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeLive,version=1.5: C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@facebook.com/FBPlugin,version=1.0.3: C:\Users\Stevassy\AppData\Roaming\Facebook\npfbplugin_1_0_3.dll ( )
FF - HKCU\Software\MozillaPlugins\@Skype Limited.com/Facebook Video Calling Plugin: C:\Users\Stevassy\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Stevassy\AppData\Local\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Stevassy\AppData\Local\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{A27F3FEF-1113-4cfb-A032-8E12D7D8EE70}: C:\Program Files (x86)\Nokia\Nokia Ovi Suite\Connectors\Bookmarks Connector\FirefoxExtension\ [2010/10/29 10:39:24 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 8.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2011/12/07 16:09:54 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 8.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2011/08/24 02:15:15 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2010/05/25 17:39:21 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\{CCB7D94B-CA92-4E3F-B79D-ADE0F07ADC74}: C:\Program Files (x86)\Nokia\Nokia Ovi Suite\Connectors\Thunderbird Connector\ThunderbirdExtension\ [2010/10/29 10:39:25 | 000,000,000 | ---D | M]
 
[2011/12/07 16:10:27 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Stevassy\AppData\Roaming\Mozilla\Extensions
[2011/12/07 19:26:27 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Stevassy\AppData\Roaming\Mozilla\Firefox\Profiles\vu0qqyv2.default\extensions
[2012/01/10 14:56:16 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2011/08/24 02:15:18 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA}
[2012/01/10 14:56:16 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA}
() (No name found) -- C:\USERS\STEVASSY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VU0QQYV2.DEFAULT\EXTENSIONS\{5C46D283-ABDE-4DCE-B83C-08881401921C}.XPI
[2011/11/21 05:04:51 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
[2011/11/10 05:54:13 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\npdeployJava1.dll
[2010/12/09 11:47:06 | 000,012,800 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\npwachk.dll
[2011/11/21 02:04:05 | 000,002,252 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml
[2011/11/21 02:04:05 | 000,002,040 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\twitter.xml
 
[color=#E56717]========== Chrome  ==========[/color]
 
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms}
CHR - plugin: Shockwave Flash (Enabled) = C:\Users\Stevassy\AppData\Local\Google\Chrome\Application\16.0.912.75\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll
CHR - plugin: Java Deployment Toolkit 6.0.270.7 (Enabled) = C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Java(TM) Platform SE 6 U27 (Enabled) = C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: Adobe Acrobat (Disabled) = C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll
CHR - plugin: Silverlight Plug-In (Enabled) = C:\Program Files (x86)\Microsoft Silverlight\4.0.60531.0\npctrl.dll
CHR - plugin: Shockwave for Director (Enabled) = C:\Windows\system32\Adobe\Director\np32dsw.dll
CHR - plugin: Microsoft Office Live Plug-in for Firefox (Enabled) = C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Users\Stevassy\AppData\Local\Google\Chrome\Application\16.0.912.75\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\Stevassy\AppData\Local\Google\Chrome\Application\16.0.912.75\pdf.dll
CHR - plugin: GamePlayLabs Plugin (Enabled) = C:\Users\Stevassy\AppData\Local\Google\Chrome\User Data\Default\Extensions\ocphobfcfafpclibolpjdafgaffkaoci\1.0_0\npGamePlayLabsPlugin.dll
CHR - plugin: Winamp Application Detector (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npwachk.dll
CHR - plugin: Google Earth Plugin (Enabled) = C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
CHR - plugin: Picasa (Enabled) = C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.68\npGoogleUpdate3.dll
CHR - plugin: Facebook Plugin (Enabled) = C:\Users\Stevassy\AppData\Roaming\Facebook\npfbplugin_1_0_3.dll
CHR - plugin: Default Plug-in (Enabled) = default_plugin
CHR - Extension: YouTube = C:\Users\Stevassy\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.3_0\
CHR - Extension: Google Search = C:\Users\Stevassy\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.16_0\
CHR - Extension: YouTube MP3 Search = C:\Users\Stevassy\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmgoamehojlehnfhenfbdfiocjlepgfk\0.1.0.6_0\
CHR - Extension: YouTube Video Downloader = C:\Users\Stevassy\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpcddcfoblbgmnaklcpkbfajnfikinhn\1.1_0\
CHR - Extension: Docs PDF/PowerPoint Viewer (by Google) = C:\Users\Stevassy\AppData\Local\Google\Chrome\User Data\Default\Extensions\nnbmlagghjjcbdhgmkedmbmedengocbn\3.7_0\
CHR - Extension: GamePlayLabs Plugin = C:\Users\Stevassy\AppData\Local\Google\Chrome\User Data\Default\Extensions\ocphobfcfafpclibolpjdafgaffkaoci\1.0_0\
CHR - Extension: Gmail = C:\Users\Stevassy\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\
 
O1 HOSTS File: ([2009/06/10 22:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:[b]64bit:[/b] - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll File not found
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
O4:[b]64bit:[/b] - HKLM..\Run: [egui] C:\Program Files\ESET\ESET Smart Security\egui.exe (ESET)
O4:[b]64bit:[/b] - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4:[b]64bit:[/b] - HKLM..\Run: [Teco] C:\Program Files\TOSHIBA\TECO\Teco.exe (TOSHIBA Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [Windows Mobile Device Center] C:\Windows\WindowsMobile\wmdc.exe (Microsoft Corporation)
O4 - HKLM..\Run: [DU Meter] C:\Program Files (x86)\DU Meter\DUMeter.exe (Hagel Technologies)
O4 - HKLM..\Run: [HTC Sync Loader] C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe ()
O4 - HKLM..\Run: [ITSecMng] C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe (TOSHIBA CORPORATION)
O4 - HKLM..\Run: [NokiaMServer] C:\Program Files (x86)\Common Files\Nokia\MPlatform\NokiaMServer.exe (Nokia)
O4 - HKCU..\Run: []  File not found
O4 - HKCU..\Run: [fsm]  File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8:[b]64bit:[/b] - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200 File not found
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\Windows\SysWow64\GPhotos.scr (Google Inc.)
O9 - Extra Button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll (Microsoft Corporation)
O13[b]64bit:[/b] - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.7.0/jinstall-1_7_0-windows-i586.cab (Java Plug-in 10.0.0)
O16 - DPF: {CAFEEFAC-0017-0000-0000-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinstall-1_7_0-windows-i586.cab (Java Plug-in 1.7.0)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinstall-1_7_0-windows-i586.cab (Java Plug-in 1.7.0)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab (Java Plug-in 1.6.0_30)
O16 - DPF: {CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab (Java Plug-in 1.6.0_30)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab (Java Plug-in 1.6.0_30)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{02FB3618-6A29-4157-8CD8-F0E90CFE6056}: DhcpNameServer = 192.168.100.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{3C65F50E-5AA6-402B-8D0E-FFB78F20197E}: DhcpNameServer = 192.168.42.129
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{401D9BBA-AF2A-45A0-B9DD-BBC6B0A60A16}: NameServer = 217.65.192.101 217.65.192.102
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{5F9BC9A7-06CE-4DD2-9BEF-D341B58D2143}: DhcpNameServer = 192.168.42.129
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{680110A6-D45A-4695-BBD9-7E7474059A98}: DhcpNameServer = 192.168.42.129
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{90EAF347-C45C-4D6A-A50B-B2EB22631FF9}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{F139CFDE-55D0-42B5-81AE-EE7AF57C5923}: NameServer = 217.65.192.101 217.65.192.102
O18:[b]64bit:[/b] - Protocol\Handler\grooveLocalGWS - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\livecall - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\ms-help - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\msnim - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\wlpg - No CLSID value found
O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: VMApplet - (/pagefile) -  File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) -C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) -C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20:[b]64bit:[/b] - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2011/09/27 11:19:04 | 000,000,000 | ---D | M] - D:\Autodata 3.18 -- [ NTFS ]
O33 - MountPoints2\{0b81125d-69d4-11e0-94fe-ebf98d52f8c8}\Shell - "" = AutoRun
O33 - MountPoints2\{0b81125d-69d4-11e0-94fe-ebf98d52f8c8}\Shell\AutoRun\command - "" = H:\AutoRun.exe
O33 - MountPoints2\{0b8112e2-69d4-11e0-94fe-ebf98d52f8c8}\Shell - "" = AutoRun
O33 - MountPoints2\{0b8112e2-69d4-11e0-94fe-ebf98d52f8c8}\Shell\AutoRun\command - "" = H:\AutoRun.exe
O33 - MountPoints2\{0fee86d8-692a-11e0-a1bf-e8f3c5fc34bd}\Shell - "" = AutoRun
O33 - MountPoints2\{0fee86d8-692a-11e0-a1bf-e8f3c5fc34bd}\Shell\AutoRun\command - "" = G:\AutoRun.exe
O33 - MountPoints2\{0fee86e6-692a-11e0-a1bf-e8f3c5fc34bd}\Shell - "" = AutoRun
O33 - MountPoints2\{0fee86e6-692a-11e0-a1bf-e8f3c5fc34bd}\Shell\AutoRun\command - "" = G:\AutoRun.exe
O33 - MountPoints2\{3f129ad7-f9b4-11e0-b546-bcd563b51dd7}\Shell - "" = AutoRun
O33 - MountPoints2\{3f129ad7-f9b4-11e0-b546-bcd563b51dd7}\Shell\AutoRun\command - "" = H:\AutoRun.exe
O33 - MountPoints2\{3f129ae3-f9b4-11e0-b546-bcd563b51dd7}\Shell - "" = AutoRun
O33 - MountPoints2\{3f129ae3-f9b4-11e0-b546-bcd563b51dd7}\Shell\AutoRun\command - "" = H:\AutoRun.exe
O33 - MountPoints2\{3f129b11-f9b4-11e0-b546-bcd563b51dd7}\Shell - "" = AutoRun
O33 - MountPoints2\{3f129b11-f9b4-11e0-b546-bcd563b51dd7}\Shell\AutoRun\command - "" = H:\AutoRun.exe
O33 - MountPoints2\{495a9ca4-6844-11df-a942-705ab67e99c6}\Shell - "" = AutoRun
O33 - MountPoints2\{495a9ca4-6844-11df-a942-705ab67e99c6}\Shell\AutoRun\command - "" = G:\AutoRun.exe
O33 - MountPoints2\{495a9cb4-6844-11df-a942-705ab67e99c6}\Shell - "" = AutoRun
O33 - MountPoints2\{495a9cb4-6844-11df-a942-705ab67e99c6}\Shell\AutoRun\command - "" = G:\AutoRun.exe
O33 - MountPoints2\{557dbd15-6cbb-11df-b138-b515e42a988a}\Shell - "" = AutoRun
O33 - MountPoints2\{557dbd15-6cbb-11df-b138-b515e42a988a}\Shell\AutoRun\command - "" = G:\AutoRun.exe
O33 - MountPoints2\{7cb4417c-9d73-11df-9980-abcb72ad0bb3}\Shell - "" = AutoRun
O33 - MountPoints2\{7cb4417c-9d73-11df-9980-abcb72ad0bb3}\Shell\AutoRun\command - "" = "H:\WD SmartWare.exe" autoplay=true
O33 - MountPoints2\{81a244c9-f19f-11e0-bbe5-b30327d56085}\Shell - "" = AutoRun
O33 - MountPoints2\{81a244c9-f19f-11e0-bbe5-b30327d56085}\Shell\AutoRun\command - "" = G:\PcOptions.exe
O33 - MountPoints2\{8c94292e-6af5-11df-857d-705ab67e99c6}\Shell - "" = AutoRun
O33 - MountPoints2\{8c94292e-6af5-11df-857d-705ab67e99c6}\Shell\AutoRun\command - "" = G:\AutoRun.exe
O33 - MountPoints2\{8fcc2626-0341-11e1-9488-705ab66fbf99}\Shell - "" = AutoRun
O33 - MountPoints2\{8fcc2626-0341-11e1-9488-705ab66fbf99}\Shell\AutoRun\command - "" = G:\AutoRun.exe
O33 - MountPoints2\{c25b0bcb-2fda-11e1-9bde-705ab66fbf99}\Shell - "" = AutoRun
O33 - MountPoints2\{c25b0bcb-2fda-11e1-9bde-705ab66fbf99}\Shell\AutoRun\command - "" = H:\AutoRun.exe
O33 - MountPoints2\{da09d0b0-fcc5-11e0-b22c-705ab66fbf99}\Shell - "" = AutoRun
O33 - MountPoints2\{da09d0b0-fcc5-11e0-b22c-705ab66fbf99}\Shell\AutoRun\command - "" = G:\AutoRun.exe
O33 - MountPoints2\{db5eb3c7-3167-11e0-b884-9e38cfa7adb9}\Shell - "" = AutoRun
O33 - MountPoints2\{db5eb3c7-3167-11e0-b884-9e38cfa7adb9}\Shell\AutoRun\command - "" = G:\LaunchU3.exe
O33 - MountPoints2\G\Shell - "" = AutoRun
O33 - MountPoints2\G\Shell\AutoRun\command - "" = G:\AutoRun.exe
O33 - MountPoints2\I\Shell - "" = AutoRun
O33 - MountPoints2\I\Shell\AutoRun\command - "" = I:\AutoRun.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35:[b]64bit:[/b] - HKLM\..comfile [open] -- "%1" %*
O35:[b]64bit:[/b] - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...com [@ = comfile] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2012/01/10 19:05:14 | 000,584,192 | ---- | C] (OldTimer Tools) -- C:\Users\Stevassy\Desktop\OTL.exe
[2012/01/10 14:56:15 | 000,157,472 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaws.exe
[2012/01/10 14:56:15 | 000,149,280 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaw.exe
[2012/01/10 14:56:15 | 000,149,280 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\java.exe
[2011/12/16 17:28:01 | 000,000,000 | ---D | C] -- C:\Users\Stevassy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\EniG
[2011/12/16 17:28:01 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EniG
[2011/12/16 17:27:59 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\EniG
[2011/12/15 14:10:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HTC Sync
[2011/12/15 14:02:38 | 000,702,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
[2011/12/15 14:02:38 | 000,247,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2011/12/15 14:02:38 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2011/12/15 14:02:37 | 000,097,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll
[2011/12/15 14:02:37 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
[2011/12/15 14:02:36 | 000,134,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll
[2011/12/15 14:02:36 | 000,132,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll
[2011/12/15 14:02:29 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\csrsrv.dll
[2011/12/15 14:02:05 | 000,723,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\EncDec.dll
[2011/12/15 14:02:05 | 000,534,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\EncDec.dll
[2011/12/01 17:47:15 | 000,557,056 | ---- | C] ( ) -- C:\Windows\SysWow64\raac.dll
[2011/12/01 17:47:15 | 000,139,264 | ---- | C] ( ) -- C:\Windows\SysWow64\sipr.dll
[2011/12/01 17:47:15 | 000,057,344 | ---- | C] ( ) -- C:\Windows\SysWow64\rv20.dll
[2011/12/01 17:47:15 | 000,053,248 | ---- | C] ( ) -- C:\Windows\SysWow64\rv30.dll
[2011/12/01 17:47:15 | 000,049,152 | ---- | C] ( ) -- C:\Windows\SysWow64\rv40.dll
[2011/12/01 17:47:14 | 000,548,919 | ---- | C] ( ) -- C:\Windows\SysWow64\colorcvt.dll
[2011/12/01 17:47:14 | 000,479,298 | ---- | C] ( ) -- C:\Windows\SysWow64\erv4.dll
[2011/12/01 17:47:14 | 000,286,720 | ---- | C] ( ) -- C:\Windows\SysWow64\drvc.dll
[2011/12/01 17:47:14 | 000,266,306 | ---- | C] ( ) -- C:\Windows\SysWow64\erv3.dll
[2011/12/01 17:47:14 | 000,180,224 | ---- | C] ( ) -- C:\Windows\SysWow64\drv2.dll
[2011/12/01 17:47:14 | 000,065,602 | ---- | C] ( ) -- C:\Windows\SysWow64\cook.dll
[2011/12/01 17:47:13 | 000,090,112 | ---- | C] ( ) -- C:\Windows\SysWow64\atrc.dll
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2012/01/10 19:08:01 | 000,000,920 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2804176090-392218973-4162760480-1000UA.job
[2012/01/10 19:05:25 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Users\Stevassy\Desktop\OTL.exe
[2012/01/10 18:39:03 | 000,000,902 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2012/01/10 16:28:07 | 000,000,940 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2804176090-392218973-4162760480-1000UA.job
[2012/01/10 16:28:06 | 000,000,918 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2804176090-392218973-4162760480-1000Core.job
[2012/01/10 16:02:49 | 000,627,082 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2012/01/10 16:02:49 | 000,107,366 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2012/01/10 16:02:48 | 000,730,320 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2012/01/10 15:14:38 | 000,019,648 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012/01/10 15:14:38 | 000,019,648 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012/01/10 15:07:30 | 000,000,898 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2012/01/10 15:07:10 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012/01/10 15:07:03 | 2307,080,192 | -HS- | M] () -- C:\hiberfil.sys
[2012/01/10 03:40:29 | 000,036,865 | ---- | M] () -- C:\Users\Stevassy\Desktop\zbza.jpg
[2012/01/10 03:40:03 | 000,084,650 | ---- | M] () -- C:\Users\Stevassy\Desktop\zbz.jpg
[2012/01/09 16:09:01 | 000,002,374 | ---- | M] () -- C:\Users\Stevassy\Desktop\Google Chrome.lnk
[2012/01/04 22:08:52 | 000,000,868 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2804176090-392218973-4162760480-1000Core.job
[2011/12/21 17:50:20 | 000,000,116 | ---- | M] () -- C:\Windows\NeroDigital.ini
[2011/12/16 18:12:12 | 000,001,151 | ---- | M] () -- C:\Users\Stevassy\Application Data\Microsoft\Internet Explorer\Quick Launch\GOM Player.lnk
[2011/12/16 18:12:12 | 000,001,127 | ---- | M] () -- C:\Users\Public\Desktop\GOM Player.lnk
[2011/12/16 10:56:24 | 000,474,616 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2011/12/15 16:23:05 | 004,525,986 | ---- | M] () -- C:\Users\Stevassy\Desktop\pioneer.jpg
[2011/12/15 14:11:03 | 000,001,054 | ---- | M] () -- C:\Users\Public\Desktop\HTC Sync.lnk
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2012/01/10 03:40:34 | 000,036,865 | ---- | C] () -- C:\Users\Stevassy\Desktop\zbza.jpg
[2012/01/10 03:40:14 | 000,084,650 | ---- | C] () -- C:\Users\Stevassy\Desktop\zbz.jpg
[2011/12/16 18:12:12 | 000,001,127 | ---- | C] () -- C:\Users\Public\Desktop\GOM Player.lnk
[2011/12/15 16:23:19 | 004,525,986 | ---- | C] () -- C:\Users\Stevassy\Desktop\pioneer.jpg
[2011/12/15 14:11:03 | 000,001,054 | ---- | C] () -- C:\Users\Public\Desktop\HTC Sync.lnk
[2011/12/01 17:47:23 | 000,163,840 | ---- | C] () -- C:\Windows\SysWow64\ts.dll
[2011/12/01 17:47:20 | 001,914,216 | ---- | C] () -- C:\Windows\SysWow64\ltmm16.dll
[2011/12/01 17:47:20 | 000,390,504 | ---- | C] () -- C:\Windows\SysWow64\lcodc26x2.dll
[2011/12/01 17:47:20 | 000,245,248 | ---- | C] () -- C:\Windows\SysWow64\dxr.dll
[2011/12/01 17:47:20 | 000,148,992 | ---- | C] () -- C:\Windows\SysWow64\mkx.dll
[2011/12/01 17:47:20 | 000,141,312 | ---- | C] () -- C:\Windows\SysWow64\mp4.dll
[2011/12/01 17:47:20 | 000,120,832 | ---- | C] () -- C:\Windows\SysWow64\ogm.dll
[2011/12/01 17:47:19 | 000,222,568 | ---- | C] () -- C:\Windows\SysWow64\LMOggMux.dll
[2011/12/01 17:47:19 | 000,116,072 | ---- | C] () -- C:\Windows\SysWow64\LMAMpgCnv.dll
[2011/12/01 17:47:18 | 001,287,528 | ---- | C] () -- C:\Windows\SysWow64\LEncVorbis.dll
[2011/12/01 17:47:17 | 002,332,008 | ---- | C] () -- C:\Windows\SysWow64\LEncMpg23.dll
[2011/12/01 17:47:17 | 001,291,624 | ---- | C] () -- C:\Windows\SysWow64\LEncH2644.dll
[2011/12/01 17:47:17 | 000,700,416 | ---- | C] () -- C:\Windows\SysWow64\LENCMPG42.dll
[2011/12/01 17:47:17 | 000,357,736 | ---- | C] () -- C:\Windows\SysWow64\LEncAAC.dll
[2011/12/01 17:47:17 | 000,357,736 | ---- | C] () -- C:\Windows\SysWow64\LCodcCMP2.dll
[2011/12/01 17:47:17 | 000,333,160 | ---- | C] () -- C:\Windows\SysWow64\LEncTheora.dll
[2011/12/01 17:47:17 | 000,173,416 | ---- | C] () -- C:\Windows\SysWow64\LCodcScr2.dll
[2011/12/01 17:47:17 | 000,161,128 | ---- | C] () -- C:\Windows\SysWow64\LEncAC3.dll
[2011/12/01 17:47:16 | 000,464,232 | ---- | C] () -- C:\Windows\SysWow64\LCODC26D2.dll
[2011/12/01 17:47:16 | 000,120,168 | ---- | C] () -- C:\Windows\SysWow64\LCODCCMW3.dll
[2011/12/01 17:47:15 | 003,569,152 | ---- | C] () -- C:\Windows\SysWow64\libavcodec.dll
[2011/12/01 17:47:15 | 000,695,296 | ---- | C] () -- C:\Windows\SysWow64\ff_x264.dll
[2011/12/01 17:47:15 | 000,456,192 | ---- | C] () -- C:\Windows\SysWow64\libmplayer.dll
[2011/12/01 17:47:15 | 000,397,312 | ---- | C] () -- C:\Windows\SysWow64\ff_libfaad2.dll
[2011/12/01 17:47:15 | 000,258,048 | ---- | C] () -- C:\Windows\SysWow64\libFLAC.dll
[2011/12/01 17:47:15 | 000,143,360 | ---- | C] () -- C:\Windows\SysWow64\ff_theora.dll
[2011/12/01 17:47:15 | 000,143,360 | ---- | C] () -- C:\Windows\SysWow64\ff_libmad.dll
[2011/12/01 17:47:15 | 000,135,168 | ---- | C] () -- C:\Windows\SysWow64\ff_samplerate.dll
[2011/12/01 17:47:15 | 000,119,296 | ---- | C] () -- C:\Windows\SysWow64\libmpeg2_ff.dll
[2011/12/01 17:47:15 | 000,118,784 | ---- | C] () -- C:\Windows\SysWow64\ff_realaac.dll
[2011/12/01 17:47:15 | 000,102,912 | ---- | C] () -- C:\Windows\SysWow64\ff_tremor.dll
[2011/12/01 17:47:15 | 000,079,360 | ---- | C] () -- C:\Windows\SysWow64\mkzlib.dll
[2011/12/01 17:47:15 | 000,056,832 | ---- | C] () -- C:\Windows\SysWow64\ff_unrar.dll
[2011/12/01 17:47:15 | 000,023,552 | ---- | C] () -- C:\Windows\SysWow64\mkunicode.dll
[2011/12/01 17:47:15 | 000,023,552 | ---- | C] () -- C:\Windows\SysWow64\ff_wmv9.dll
[2011/12/01 17:47:14 | 000,221,184 | ---- | C] () -- C:\Windows\SysWow64\ff_kernelDeint.dll
[2011/12/01 17:47:14 | 000,172,032 | ---- | C] () -- C:\Windows\SysWow64\ff_libdts.dll
[2011/12/01 17:47:14 | 000,052,224 | ---- | C] () -- C:\Windows\SysWow64\ff_liba52.dll
[2011/12/01 17:47:13 | 000,443,752 | ---- | C] () -- C:\Windows\SysWow64\LMMpgDmxP.dll
[2011/12/01 17:47:13 | 000,251,240 | ---- | C] () -- C:\Windows\SysWow64\LMOggSpl.dll
[2011/12/01 17:47:13 | 000,210,264 | ---- | C] () -- C:\Windows\SysWow64\LCMW3.dll
[2011/12/01 17:47:13 | 000,189,800 | ---- | C] () -- C:\Windows\SysWow64\LEncAACKrn.dll
[2011/12/01 17:47:13 | 000,071,016 | ---- | C] () -- C:\Windows\SysWow64\LEncAC3Krn.dll
[2011/12/01 17:47:13 | 000,020,480 | ---- | C] () -- C:\Windows\SysWow64\ac3config.exe
[2011/12/01 17:47:13 | 000,000,137 | ---- | C] () -- C:\Windows\SysWow64\Registration.ini
[2011/12/01 13:37:38 | 000,005,632 | ---- | C] () -- C:\Users\Stevassy\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/10/21 17:03:04 | 013,903,872 | ---- | C] () -- C:\Windows\SysWow64\ig4icd32.dll
[2011/08/31 18:51:16 | 000,867,020 | ---- | C] () -- C:\Windows\SysWow64\igkrng575.bin
[2011/08/31 18:51:16 | 000,128,204 | ---- | C] () -- C:\Windows\SysWow64\igcompkrng575.bin
[2011/08/31 18:51:16 | 000,105,608 | ---- | C] () -- C:\Windows\SysWow64\igfcg575m.bin
[2011/07/12 19:26:32 | 000,066,856 | ---- | C] () -- C:\Windows\SysWow64\SynTPEnhPS.dll
[2011/06/27 13:53:14 | 000,038,445 | ---- | C] () -- C:\Users\Stevassy\AppData\Roaming\Comma Separated Values (DOS).ADR
[2011/03/08 10:23:39 | 000,000,116 | ---- | C] () -- C:\Windows\NeroDigital.ini
[2011/02/07 21:57:59 | 000,000,493 | ---- | C] () -- C:\Windows\crackpdf.INI
[2010/11/29 10:19:11 | 000,000,000 | ---- | C] () -- C:\Windows\CeEKey.INI
[2010/11/03 08:53:50 | 000,038,443 | ---- | C] () -- C:\Users\Stevassy\AppData\Roaming\Comma Separated Values (Windows).ADR
[2010/08/15 20:17:49 | 000,165,376 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll
[2010/08/15 20:17:48 | 000,000,038 | ---- | C] () -- C:\Windows\avisplitter.ini
[2010/08/15 20:17:43 | 000,790,528 | ---- | C] () -- C:\Windows\SysWow64\xvidcore.dll
[2010/08/15 20:17:43 | 000,134,144 | ---- | C] () -- C:\Windows\SysWow64\xvidvfw.dll
[2010/08/15 20:17:42 | 000,108,032 | ---- | C] () -- C:\Windows\SysWow64\ff_vfw.dll
[2010/06/25 18:03:12 | 000,053,299 | ---- | C] () -- C:\Windows\SysWow64\pthreadVC.dll
[2010/06/10 14:05:09 | 000,086,016 | ---- | C] () -- C:\Users\Stevassy\AppData\Roaming\chrtmp
[2010/06/02 10:05:04 | 000,000,000 | ---- | C] () -- C:\Windows\nsreg.dat
[2010/06/01 14:32:01 | 000,000,056 | -H-- | C] () -- C:\Windows\SysWow64\ezsidmv.dat
[2010/05/31 12:06:40 | 000,038,457 | ---- | C] () -- C:\Users\Stevassy\AppData\Roaming\Microsoft Excel 97-2003.ADR
[2010/05/31 12:06:38 | 000,000,028 | ---- | C] () -- C:\Windows\ODBC.INI
[2010/05/27 23:38:03 | 000,731,106 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2010/01/13 01:09:52 | 000,275,255 | ---- | C] () -- C:\Windows\closesec.exe
[2009/07/14 06:38:36 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2009/07/14 03:35:51 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT
[2009/07/14 03:34:42 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat
[2009/07/14 01:10:29 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2009/07/14 00:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2009/07/13 22:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2009/06/10 22:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat

< End of report >