OTL logfile created on: 2011-05-07 오후 2:21:01 - Run 1
OTL by OldTimer - Version 3.2.22.3     Folder = C:\Users\Touroad\Desktop
64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7601.17514)
Locale: 00000412 | Country: 대한민국 | Language: KOR | Date Format: yyyy-MM-dd
 
4.00 Gb Total Physical Memory | 3.00 Gb Available Physical Memory | 65.00% Memory free
8.00 Gb Paging File | 7.00 Gb Available in Paging File | 84.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 146.48 Gb Total Space | 23.25 Gb Free Space | 15.87% Space Free | Partition Type: NTFS
Drive D: | 132.98 Gb Total Space | 93.62 Gb Free Space | 70.40% Space Free | Partition Type: NTFS
Drive E: | 931.51 Gb Total Space | 95.86 Gb Free Space | 10.29% Space Free | Partition Type: NTFS
Drive F: | 1397.26 Gb Total Space | 12.61 Gb Free Space | 0.90% Space Free | Partition Type: NTFS
Drive H: | 465.76 Gb Total Space | 14.22 Gb Free Space | 3.05% Space Free | Partition Type: NTFS
 
Computer Name: TOUROAD-PC | User Name: Touroad | Logged in as Administrator.
Boot Mode: SafeMode with Networking | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
 
[color=#E56717]========== Processes (SafeList) ==========[/color]
 
PRC - [2011-05-07 14:06:35 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Users\Touroad\Desktop\OTL.exe
 
 
[color=#E56717]========== Modules (SafeList) ==========[/color]
 
MOD - [2011-05-07 14:06:35 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Users\Touroad\Desktop\OTL.exe
MOD - [2011-04-24 00:28:29 | 000,653,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.5570_none_509463cabcb6ef2a\msvcr90.dll
MOD - [2011-04-24 00:28:29 | 000,569,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.5570_none_509463cabcb6ef2a\msvcp90.dll
MOD - [2010-11-20 04:55:09 | 001,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
MOD - [2010-01-20 09:45:36 | 000,436,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\IMKR14.IME
 
 
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
 
SRV:[b]64bit:[/b] - [2011-01-18 19:45:00 | 000,332,376 | ---- | M] (AhnLab, Inc.) [Auto | Stopped] -- C:\Program Files\AhnLab\V3Lite\V3LSvc.exe -- (V3 Lite Service)
SRV:[b]64bit:[/b] - [2009-07-13 18:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:[b]64bit:[/b] - [2009-07-13 18:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV - [2011-04-07 22:14:00 | 002,218,600 | ---- | M] (NVIDIA Corporation) [Auto | Stopped] -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe -- (nvUpdatusService)
SRV - [2011-04-07 21:54:52 | 000,378,472 | ---- | M] (NVIDIA Corporation) [Auto | Stopped] -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2011-03-07 16:42:00 | 000,650,344 | ---- | M] (AhnLab, Inc.) [Auto | Stopped] -- C:\Program Files (x86)\AhnLab\SiteGuard2\sgsvc.exe -- (sgsvc)
SRV - [2011-02-20 23:01:46 | 000,250,145 | ---- | M] (INCA Internet Co., Ltd.) [Auto | Stopped] -- C:\Windows\SysWOW64\npstartersvc.exe -- (nPStarterSVC)
SRV - [2011-02-09 15:05:52 | 000,651,720 | ---- | M] (Macrovision Europe Ltd.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2010-03-05 10:15:12 | 000,235,752 | ---- | M] (DeviceVM, Inc.) [Auto | Stopped] -- C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCUService.exe -- (BCUService)
SRV - [2009-10-15 18:42:48 | 000,319,488 | -H-- | M] (DeviceVM, Inc.) [Auto | Stopped] -- C:\ASUS.SYS\config\DVMExportService.exe -- (DvmMDES)
SRV - [2009-06-10 14:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2007-10-10 18:45:34 | 000,111,288 | ---- | M] (NHN Corp.) [Auto | Stopped] -- C:\Program Files (x86)\Naver\NaverCommon\NaverAdminAPISvc.exe -- (Naver Updater)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV:[b]64bit:[/b] - [2011-05-05 20:13:39 | 000,141,848 | ---- | M] (Kings Information & Network) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\kcrtx64.sys -- (kcrtx64)
DRV:[b]64bit:[/b] - [2011-05-05 20:13:39 | 000,017,688 | ---- | M] (SoftForum Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\JRSUKD25.SYS -- (JRSUKD25)
DRV:[b]64bit:[/b] - [2011-04-24 19:27:00 | 002,638,416 | ---- | M] (AhnLab, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\v3engine.sys -- (v3engine)
DRV:[b]64bit:[/b] - [2011-04-21 06:09:00 | 001,965,648 | ---- | M] (AhnLab, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ahnsze.sys -- (AhnSZE)
DRV:[b]64bit:[/b] - [2011-03-06 19:53:00 | 000,285,296 | ---- | M] (AhnLab, Inc.) [Kernel | On_Demand | Stopped] -- C:\Program Files\AhnLab\V3Lite\MeDCoreD.sys -- (MeDCoreD_V3LITE_X64)
DRV:[b]64bit:[/b] - [2011-03-01 21:06:04 | 000,013,896 | R--- | M] (SoftForum Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\JRSKD24.SYS -- (JRSKD24)
DRV:[b]64bit:[/b] - [2011-02-15 02:05:00 | 000,147,032 | ---- | M] (AhnLab, Inc.) [Kernel | On_Demand | Stopped] -- C:\Program Files\AhnLab\V3Lite\ASZFltNt.sys -- (ASZFltNt)
DRV:[b]64bit:[/b] - [2011-02-11 08:33:20 | 000,254,528 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV:[b]64bit:[/b] - [2011-02-09 10:09:43 | 000,154,640 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ieungSCSI.sys -- (ieungSCSI)
DRV:[b]64bit:[/b] - [2011-02-09 10:09:43 | 000,019,472 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ieungBus.sys -- (ieungBus)
DRV:[b]64bit:[/b] - [2011-02-08 18:13:00 | 000,197,720 | ---- | M] (AhnLab, Inc.) [Kernel | On_Demand | Stopped] -- C:\Program Files\AhnLab\V3Lite\V3Flt2k.sys -- (V3Flt2K)
DRV:[b]64bit:[/b] - [2011-02-08 18:13:00 | 000,177,240 | ---- | M] (AhnLab, Inc.) [Kernel | On_Demand | Stopped] -- C:\Program Files\AhnLab\V3Lite\ATamptNt.sys -- (ATamptNt_V3LITE_X64)
DRV:[b]64bit:[/b] - [2011-01-13 23:19:00 | 000,041,048 | ---- | M] (AhnLab, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\AhnRghNt.sys -- (AhnRghNt)
DRV:[b]64bit:[/b] - [2011-01-13 23:18:00 | 000,073,304 | ---- | M] (AhnLab, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\AhnFlt2k.sys -- (AhnFlt2k)
DRV:[b]64bit:[/b] - [2010-12-18 03:43:00 | 000,025,688 | ---- | M] (AhnLab, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\AhnRec2k.sys -- (AhnRec2k)
DRV:[b]64bit:[/b] - [2010-11-20 06:33:35 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:[b]64bit:[/b] - [2010-11-20 06:32:47 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:[b]64bit:[/b] - [2010-11-20 06:32:46 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:[b]64bit:[/b] - [2010-11-20 04:07:05 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:[b]64bit:[/b] - [2010-11-20 04:03:42 | 000,020,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:[b]64bit:[/b] - [2010-06-23 02:10:56 | 000,344,680 | ---- | M] (Realtek                                            ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:[b]64bit:[/b] - [2010-05-12 22:55:18 | 000,055,904 | ---- | M] (INCA Internet Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\NPIdsVt64.sys -- (NPIDS)
DRV:[b]64bit:[/b] - [2010-04-27 09:30:52 | 000,184,968 | ---- | M] (Renesas Electronics Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nusb3xhc.sys -- (nusb3xhc)
DRV:[b]64bit:[/b] - [2010-04-27 09:29:54 | 000,083,080 | ---- | M] (Renesas Electronics Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nusb3hub.sys -- (nusb3hub)
DRV:[b]64bit:[/b] - [2009-11-18 01:47:46 | 000,446,976 | ---- | M] (NETGEAR Inc.                           ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\wg111v3.sys -- (RTL8187B)
DRV:[b]64bit:[/b] - [2009-08-22 13:08:10 | 000,056,320 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\L1E62x64.sys -- (L1E)
DRV:[b]64bit:[/b] - [2009-07-20 18:00:25 | 000,025,656 | ---- | M] (AhnLab, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\CdmDrvNt.sys -- (CdmDrvNt)
DRV:[b]64bit:[/b] - [2009-07-15 20:38:40 | 000,015,416 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ASACPI.sys -- (MTsensor)
DRV:[b]64bit:[/b] - [2009-07-13 18:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:[b]64bit:[/b] - [2009-07-13 18:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:[b]64bit:[/b] - [2009-07-13 18:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:[b]64bit:[/b] - [2009-06-10 13:38:56 | 000,000,308 | ---- | M] () [File_System | On_Demand | Running] -- C:\Windows\SysNative\wbem\ntfs.mof -- (Ntfs)
DRV:[b]64bit:[/b] - [2009-06-10 13:35:38 | 000,707,072 | ---- | M] (Ralink Technology, Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\netr7364.sys -- (netr7364)
DRV:[b]64bit:[/b] - [2009-06-10 13:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:[b]64bit:[/b] - [2009-06-10 13:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:[b]64bit:[/b] - [2009-06-10 13:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:[b]64bit:[/b] - [2009-06-10 13:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:[b]64bit:[/b] - [2009-03-18 17:35:42 | 000,033,856 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hamachi.sys -- (hamachi)
DRV - [2010-12-18 04:08:55 | 000,020,320 | ---- | M] (AhnLab, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\AhnRec2k.sys -- (AhnRec2k)
DRV - [2010-12-18 04:08:13 | 000,052,960 | ---- | M] (AhnLab, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\AhnFlt2k.sys -- (AhnFlt2k)
DRV - [2010-11-10 22:31:40 | 000,053,728 | ---- | M] (AhnLab, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\AhnRghNT.sys -- (AhnRghNt)
DRV - [2009-07-20 18:13:13 | 000,019,616 | ---- | M] (AhnLab, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\CdmDrvNT.sys -- (CdmDrvNt)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\URLSearchHook: {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files (x86)\uTorrentBar\tbuTor.dll (Conduit Ltd.)
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.naver.com/
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
 
 
O1 HOSTS File: ([2009-06-10 14:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:[b]64bit:[/b] - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O2:[b]64bit:[/b] - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.6.6209.1142\swg64.dll (Google Inc.)
O2 - BHO: (SGAgentObj Class) - {19217B99-F935-4A39-B857-A68A68D5BEBB} - C:\Program Files (x86)\AhnLab\SiteGuard2\sgagenti.dll (AhnLab, Inc.)
O2 - BHO: (네이버 툴바 도우미) - {67C41E9E-2EBF-4F2B-AF74-314F0D793172} - C:\Program Files (x86)\Naver\NaverToolbar\NaverTB_3_5_8_73.dll (NHN Corp.)
O2 - BHO: (Adobe PDF Conversion Toolbar Helper) - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.6.6209.1142\swg.dll (Google Inc.)
O2 - BHO: (uTorrentBar Toolbar) - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files (x86)\uTorrentBar\tbuTor.dll (Conduit Ltd.)
O2 - BHO: (SmartSelect Class) - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3:[b]64bit:[/b] - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O3:[b]64bit:[/b] - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar64.dll ()
O3 - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll ()
O3 - HKLM\..\Toolbar: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKLM\..\Toolbar: (uTorrentBar Toolbar) - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files (x86)\uTorrentBar\tbuTor.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (네이버 툴바(&N)) - {D09CFF09-A42A-4EDC-9804-E61224F59CA1} - C:\Program Files (x86)\Naver\NaverToolbar\NaverTB_3_5_8_73.dll (NHN Corp.)
O3:[b]64bit:[/b] - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (Conduit Engine) - {30F9B915-B755-4826-820B-08FBA6BD249D} -  File not found
O3:[b]64bit:[/b] - HKCU\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar64.dll ()
O3 - HKCU\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll ()
O3 - HKCU\..\Toolbar\WebBrowser: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKCU\..\Toolbar\WebBrowser: (Download Energy Toolbar) - {AD708C09-D51B-45B3-9D28-4EBA2681FEBF} -  File not found
O3 - HKCU\..\Toolbar\WebBrowser: (uTorrentBar Toolbar) - {BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC} - C:\Program Files (x86)\uTorrentBar\tbuTor.dll (Conduit Ltd.)
O4:[b]64bit:[/b] - HKLM..\Run: [AhnLab V3Lite Tray Process] C:\Program Files\AhnLab\V3Lite\V3LTray.exe (AhnLab, Inc.)
O4:[b]64bit:[/b] - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4 - HKLM..\Run: []  File not found
O4 - HKLM..\Run: [BCU] C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe (DeviceVM, Inc.)
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware (reboot)] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [NUSB3MON] C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe (Renesas Electronics Corporation)
O4 - HKLM..\Run: [uTorrent] C:\Program Files (x86)\uTorrent\uTorrent.exe (BitTorrent, Inc.)
O4 - HKCU..\Run: [DAEMON Tools Lite] C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - HKCU..\Run: [NaverAgent] C:\Program Files (x86)\naver\NaverAgent\NaverAgent.exe (NHN Corporation)
O4 - HKCU..\Run: [uTorrent] C:\Program Files (x86)\uTorrent\uTorrent.exe (BitTorrent, Inc.)
O4 - HKLM..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKCU..\RunOnce: [FlashPlayerUpdate] C:\Windows\SysWOW64\Macromed\Flash\FlashUtil10o_ActiveX.exe (Adobe Systems, Inc.)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\control panel present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\control panel present
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\restrictions present
O8:[b]64bit:[/b] - Extra context menu item: Adobe PDF로 변환 - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8:[b]64bit:[/b] - Extra context menu item: Google 사이드위키... - C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_D183CA64F05FDD98.dll (Google Inc.)
O8:[b]64bit:[/b] - Extra context menu item: 기존 PDF에 링크 대상 추가 - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8:[b]64bit:[/b] - Extra context menu item: 기존 PDF에 추가 - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8:[b]64bit:[/b] - Extra context menu item: 네이버 검색 - C:\Program Files (x86)\naver\NaverToolbar\NaverTB_3_5_8_70.dll (NHN Corp.)
O8:[b]64bit:[/b] - Extra context menu item: 네이버 북마크하기 - C:\Program Files (x86)\naver\NaverToolbar\NaverTB_3_5_8_70.dll (NHN Corp.)
O8:[b]64bit:[/b] - Extra context menu item: 네이버 블로그 담기 - C:\Program Files (x86)\naver\NaverToolbar\NaverTB_3_5_8_70.dll (NHN Corp.)
O8:[b]64bit:[/b] - Extra context menu item: 네이버 사전 검색 - C:\Program Files (x86)\naver\NaverToolbar\NaverTB_3_5_8_70.dll (NHN Corp.)
O8:[b]64bit:[/b] - Extra context menu item: 네이버 오픈캐스트 링크등록 - C:\Program Files (x86)\naver\NaverToolbar\NaverTB_3_5_8_70.dll (NHN Corp.)
O8:[b]64bit:[/b] - Extra context menu item: 네이버 일한 번역 - C:\Program Files (x86)\naver\NaverToolbar\NaverTB_3_5_8_70.dll (NHN Corp.)
O8:[b]64bit:[/b] - Extra context menu item: 링크 대상을 Adobe PDF로 변환 - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8:[b]64bit:[/b] - Extra context menu item: 사이트가드 보이기(&S) - C:\Program Files (x86)\AhnLab\SiteGuard2\sgagenti.dll (AhnLab, Inc.)
O8:[b]64bit:[/b] - Extra context menu item: 사이트가드 사용(&E) - C:\Program Files (x86)\AhnLab\SiteGuard2\sgagenti.dll (AhnLab, Inc.)
O8 - Extra context menu item: Adobe PDF로 변환 - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Google 사이드위키... - C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_D183CA64F05FDD98.dll (Google Inc.)
O8 - Extra context menu item: 기존 PDF에 링크 대상 추가 - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: 기존 PDF에 추가 - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: 네이버 검색 - C:\Program Files (x86)\naver\NaverToolbar\NaverTB_3_5_8_70.dll (NHN Corp.)
O8 - Extra context menu item: 네이버 북마크하기 - C:\Program Files (x86)\naver\NaverToolbar\NaverTB_3_5_8_70.dll (NHN Corp.)
O8 - Extra context menu item: 네이버 블로그 담기 - C:\Program Files (x86)\naver\NaverToolbar\NaverTB_3_5_8_70.dll (NHN Corp.)
O8 - Extra context menu item: 네이버 사전 검색 - C:\Program Files (x86)\naver\NaverToolbar\NaverTB_3_5_8_70.dll (NHN Corp.)
O8 - Extra context menu item: 네이버 오픈캐스트 링크등록 - C:\Program Files (x86)\naver\NaverToolbar\NaverTB_3_5_8_70.dll (NHN Corp.)
O8 - Extra context menu item: 네이버 일한 번역 - C:\Program Files (x86)\naver\NaverToolbar\NaverTB_3_5_8_70.dll (NHN Corp.)
O8 - Extra context menu item: 링크 대상을 Adobe PDF로 변환 - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: 사이트가드 보이기(&S) - C:\Program Files (x86)\AhnLab\SiteGuard2\sgagenti.dll (AhnLab, Inc.)
O8 - Extra context menu item: 사이트가드 사용(&E) - C:\Program Files (x86)\AhnLab\SiteGuard2\sgagenti.dll (AhnLab, Inc.)
O13 - gopher Prefix: missing
O13 - gopher Prefix: missing
O15 - HKCU\..Trusted Domains: citibank.co.kr ([www] https in 신뢰할 수 있는 사이트)
O16 - DPF: {6CE20149-ABE3-462E-A1B4-5B549971AA38} Reg Error: Key error. (Reg Error: Key error.)
O16 - DPF: {1A000B1F-B285-4FBF-B3CD-B50845003EBA} http://online.keb.co.kr/cab/miplatform/MiPlatform_Updater320-20070511_1447.cab (CyMiInstaller320 Class)
O16 - DPF: {6CE20149-ABE3-462E-A1B4-5B549971AA38} Reg Error: Key error. (XecureCKKB Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_25-windows-i586.cab (Java Plug-in 1.6.0_25)
O16 - DPF: {967386A1-409E-431A-A93A-FB5FEFF86A58} http://bank.keb.co.kr/veraport/veraport.cab (AXMObjectCtl Class)
O16 - DPF: {CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_25-windows-i586.cab (Java Plug-in 1.6.0_25)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_25-windows-i586.cab (Java Plug-in 1.6.0_25)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O16 - DPF: {FE342FC7-4374-4EBE-86DB-D73AE861F779} http://file.naver.com/activex/NaverAXGuide.cab (NaverAXGuide Class)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 68.238.64.12
O18:[b]64bit:[/b] - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - Reg Error: Key error. File not found
O18:[b]64bit:[/b] - Protocol\Handler\s-http {D37E6C5F-1C0F-47C0-A3B6-403EEC555402} - Reg Error: Key error. File not found
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - Reg Error: Key error. File not found
O18 - Protocol\Handler\s-http {D37E6C5F-1C0F-47C0-A3B6-403EEC555402} - C:\Program Files (x86)\Initech\SHTTP\InitechSHTTPInterface.10121.dll ((c) INITECH)
O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: UserInit - (bj.dll) -  File not found
O20:[b]64bit:[/b] - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: VMApplet - (/pagefile) -  File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) -  File not found
O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{51b9e3a8-5e48-11e0-ad63-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{51b9e3a8-5e48-11e0-ad63-806e6f6e6963}\Shell\AutoRun\command - "" = G:\Bin\assetup.exe
O33 - MountPoints2\{ba1eb65e-3624-11e0-aeb6-485b392c7283}\Shell - "" = AutoRun
O33 - MountPoints2\{ba1eb65e-3624-11e0-aeb6-485b392c7283}\Shell\AutoRun\command - "" = P:\Autorun.exe
O33 - MountPoints2\{c0097fed-34dc-11e0-947e-485b392c7283}\Shell - "" = AutoRun
O33 - MountPoints2\{c0097fed-34dc-11e0-947e-485b392c7283}\Shell\AutoRun\command - "" = K:\Autorun.exe
O34 - HKLM BootExecute: (autocheck autochk *) -  File not found
O35:[b]64bit:[/b] - HKLM\..comfile [open] -- "%1" %*
O35:[b]64bit:[/b] - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...com [@ = comfile] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2011-05-07 14:06:33 | 000,580,608 | ---- | C] (OldTimer Tools) -- C:\Users\Touroad\Desktop\OTL.exe
[2011-05-07 14:05:53 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysWow64\drivers\mbamswissarmy.sys
[2011-05-07 14:05:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2011-05-07 14:05:50 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
[2011-05-07 14:04:42 | 007,734,208 | ---- | C] (Malwarebytes Corporation                                    ) -- C:\Users\Touroad\Desktop\mbam-setup-1.50.1.1100.exe
[2011-05-05 06:18:20 | 000,000,000 | ---D | C] -- C:\Users\Touroad\AppData\Roaming\Malwarebytes
[2011-05-05 06:18:17 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2011-05-05 06:18:14 | 000,024,152 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2011-05-04 21:37:09 | 000,000,000 | ---D | C] -- C:\ProgramData\STOPzilla!
[2011-05-04 21:09:22 | 000,000,000 | ---D | C] -- C:\ProgramData\TEMP
[2011-05-04 21:08:09 | 000,000,000 | ---D | C] -- C:\ProgramData\PC Tools
[2011-05-04 21:03:54 | 000,000,000 | ---D | C] -- C:\ProgramData\Spybot - Search & Destroy
[2011-05-04 21:03:54 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Spybot - Search & Destroy
[2011-05-04 20:16:50 | 000,000,000 | ---D | C] -- C:\Windows\Sun
[2011-05-04 15:14:00 | 000,000,000 | ---D | C] -- C:\Windows\Minidump
[2011-05-03 19:21:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Valve
[2011-04-30 15:16:12 | 000,000,000 | ---D | C] -- C:\Users\Touroad\AppData\Local\CrashRpt
[2011-04-30 15:12:13 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\directx
[2011-04-30 11:26:26 | 000,000,000 | ---D | C] -- C:\Users\Touroad\AppData\Roaming\.minecraft
[2011-04-30 11:26:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun
[2011-04-30 11:26:22 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
[2011-04-30 11:25:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Java
[2011-04-30 11:20:17 | 000,000,000 | ---D | C] -- C:\Users\Touroad\AppData\Local\SKIDROW
[2011-04-29 21:09:30 | 000,000,000 | ---D | C] -- C:\Users\Touroad\AppData\Local\Activision
[2011-04-28 21:28:27 | 000,000,000 | ---D | C] -- C:\Users\Touroad\Documents\My Cheat Tables
[2011-04-28 21:28:23 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Cheat Engine 6
[2011-04-27 22:47:45 | 000,000,000 | ---D | C] -- C:\Users\Touroad\AppData\Local\Tobesoft
[2011-04-24 15:01:31 | 000,067,176 | ---- | C] (Khronos Group) -- C:\Windows\SysNative\OpenCL.dll
[2011-04-24 15:01:31 | 000,057,960 | ---- | C] (Khronos Group) -- C:\Windows\SysWow64\OpenCL.dll
[2011-04-24 00:16:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Electronic Arts
[2011-04-23 18:37:26 | 000,000,000 | ---D | C] -- C:\Users\Touroad\AppData\Roaming\2K Sports
[2011-04-23 18:03:32 | 000,000,000 | ---D | C] -- C:\Users\Touroad\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\2K Sports
[2011-04-23 17:59:40 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\2K Sports
[2011-04-22 22:12:28 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\EA Sports
[2011-04-22 21:51:52 | 000,000,000 | ---D | C] -- C:\Users\Touroad\Documents\FIFA 11
[2011-04-22 21:31:24 | 000,000,000 | ---D | C] -- C:\Users\Touroad\Documents\FM11_temp
[2011-04-22 21:31:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fifa Master 11
[2011-04-22 21:31:16 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Fifa Master
[2011-04-21 21:38:22 | 000,000,000 | ---D | C] -- C:\Users\Touroad\AppData\Roaming\The Creative Assembly
[2011-04-21 20:55:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Napoleon - Total War
[2011-04-21 14:10:41 | 000,000,000 | ---D | C] -- C:\Users\Touroad\AppData\Roaming\HP
[2011-04-21 05:19:27 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft
[2011-04-21 05:19:19 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Bing Bar Installer
[2011-04-21 05:19:14 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Hewlett-Packard
[2011-04-21 05:18:57 | 000,000,000 | ---D | C] -- C:\Users\Touroad\AppData\Roaming\HpUpdate
[2011-04-21 05:18:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
[2011-04-21 05:18:28 | 000,000,000 | ---D | C] -- C:\ProgramData\HP
[2011-04-21 05:18:27 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\HP
[2011-04-21 05:18:25 | 000,000,000 | ---D | C] -- C:\Program Files\HP
[2011-04-21 05:13:15 | 000,000,000 | ---D | C] -- C:\Users\Touroad\AppData\Local\HP
[2011-04-17 16:34:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epson Software
[2011-04-17 16:34:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Epson Software
[2011-04-17 16:33:17 | 000,000,000 | ---D | C] -- C:\ProgramData\EPSON
[2011-04-17 16:29:39 | 000,000,000 | ---D | C] -- C:\Program Files\EPSON
[2011-04-15 18:11:14 | 000,000,000 | ---D | C] -- C:\Users\Touroad\AppData\Roaming\fyextend
[2011-04-10 21:24:15 | 000,000,000 | ---D | C] -- C:\Users\Touroad\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MediaInfo
[2011-04-10 21:24:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MediaInfo
[2011-04-10 12:12:07 | 000,000,000 | ---D | C] -- C:\Users\Touroad\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\티토렌트 토렌트검색기
[2011-04-10 12:12:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\티토렌트 토렌트검색기
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2011-05-07 14:10:49 | 000,625,664 | ---- | M] () -- C:\Users\Touroad\Desktop\dds.scr
[2011-05-07 14:08:45 | 000,302,080 | ---- | M] () -- C:\Users\Touroad\Desktop\c4xz89vd.exe
[2011-05-07 14:06:35 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Users\Touroad\Desktop\OTL.exe
[2011-05-07 14:05:53 | 000,001,109 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011-05-07 14:04:46 | 007,734,208 | ---- | M] (Malwarebytes Corporation                                    ) -- C:\Users\Touroad\Desktop\mbam-setup-1.50.1.1100.exe
[2011-05-07 14:03:27 | 000,080,384 | ---- | M] () -- C:\Users\Touroad\Desktop\MBRCheck.exe
[2011-05-07 14:01:20 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011-05-07 14:01:14 | 3220,574,208 | -HS- | M] () -- C:\hiberfil.sys
[2011-05-07 13:42:19 | 000,000,177 | -H-- | M] () -- C:\dvmexp.idx
[2011-05-07 13:27:46 | 000,022,080 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011-05-07 13:27:46 | 000,022,080 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011-05-07 13:04:02 | 000,000,686 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2011-05-06 21:27:39 | 000,000,682 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2011-05-06 21:27:28 | 000,000,362 | -HS- | M] () -- C:\Windows\tasks\gelfkifi.job
[2011-05-06 21:27:28 | 000,000,310 | -HS- | M] () -- C:\Windows\tasks\Vlyhe.job
[2011-05-06 21:27:28 | 000,000,310 | -HS- | M] () -- C:\Windows\tasks\uicweweyc.job
[2011-05-06 21:27:21 | 000,000,310 | -HS- | M] () -- C:\Windows\tasks\bkamxjb.job
[2011-05-06 21:27:21 | 000,000,308 | ---- | M] () -- C:\Windows\tasks\BearShareNAG.job
[2011-05-06 19:32:52 | 000,000,362 | ---- | M] () -- C:\Windows\tasks\At9.job
[2011-05-06 19:32:52 | 000,000,362 | ---- | M] () -- C:\Windows\tasks\At8.job
[2011-05-06 19:32:52 | 000,000,362 | ---- | M] () -- C:\Windows\tasks\At7.job
[2011-05-06 19:32:52 | 000,000,362 | ---- | M] () -- C:\Windows\tasks\At6.job
[2011-05-06 19:32:52 | 000,000,362 | ---- | M] () -- C:\Windows\tasks\At5.job
[2011-05-06 19:32:52 | 000,000,362 | ---- | M] () -- C:\Windows\tasks\At4.job
[2011-05-06 19:32:52 | 000,000,362 | ---- | M] () -- C:\Windows\tasks\At3.job
[2011-05-06 19:32:52 | 000,000,362 | ---- | M] () -- C:\Windows\tasks\At2.job
[2011-05-06 19:32:52 | 000,000,362 | ---- | M] () -- C:\Windows\tasks\At18.job
[2011-05-06 19:32:52 | 000,000,362 | ---- | M] () -- C:\Windows\tasks\At17.job
[2011-05-06 19:32:52 | 000,000,362 | ---- | M] () -- C:\Windows\tasks\At16.job
[2011-05-06 19:32:52 | 000,000,362 | ---- | M] () -- C:\Windows\tasks\At15.job
[2011-05-06 19:32:52 | 000,000,362 | ---- | M] () -- C:\Windows\tasks\At14.job
[2011-05-06 19:32:52 | 000,000,362 | ---- | M] () -- C:\Windows\tasks\At13.job
[2011-05-06 19:32:52 | 000,000,362 | ---- | M] () -- C:\Windows\tasks\At12.job
[2011-05-06 19:32:52 | 000,000,362 | ---- | M] () -- C:\Windows\tasks\At11.job
[2011-05-06 19:32:52 | 000,000,362 | ---- | M] () -- C:\Windows\tasks\At1.job
[2011-05-05 20:13:39 | 000,141,848 | ---- | M] (Kings Information & Network) -- C:\Windows\SysNative\kcrtx64.sys
[2011-05-05 20:13:39 | 000,017,688 | ---- | M] (SoftForum Corporation) -- C:\Windows\SysNative\JRSUKD25.SYS
[2011-05-05 20:00:00 | 000,000,362 | ---- | M] () -- C:\Windows\tasks\At10.job
[2011-05-04 20:00:12 | 000,114,176 | RHS- | M] () -- C:\Windows\SysWow64\wshconh.dll
[2011-05-04 20:00:12 | 000,114,176 | RHS- | M] () -- C:\Windows\SysWow64\themeuik.dll
[2011-05-04 20:00:12 | 000,114,176 | RHS- | M] () -- C:\Windows\SysWow64\KBDNEPRJ.dll
[2011-05-01 13:21:03 | 000,063,343 | ---- | M] () -- C:\Users\Touroad\Documents\제목 없음.wma
[2011-04-29 14:07:00 | 000,026,844 | ---- | M] () -- C:\Windows\SysWow64\teexcept.dat
[2011-04-29 12:03:00 | 000,002,340 | ---- | M] () -- C:\Users\Public\Desktop\Google 크롬.lnk
[2011-04-27 22:56:04 | 001,209,372 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2011-04-27 22:56:04 | 000,606,992 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2011-04-27 22:56:04 | 000,402,744 | ---- | M] () -- C:\Windows\SysNative\perfh012.dat
[2011-04-27 22:56:04 | 000,103,370 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2011-04-27 22:56:04 | 000,101,692 | ---- | M] () -- C:\Windows\SysNative\perfc012.dat
[2011-04-27 20:43:16 | 002,155,291 | ---- | M] (INCA Internet Co., Ltd) -- C:\Windows\SysWow64\npmonz.exe
[2011-04-24 19:27:00 | 002,638,416 | ---- | M] (AhnLab, Inc.) -- C:\Windows\SysNative\drivers\v3engine.sys
[2011-04-24 19:27:00 | 002,595,408 | ---- | M] (AhnLab, Inc.) -- C:\Windows\SysNative\btscan.exe
[2011-04-24 00:36:38 | 000,760,816 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2011-04-23 18:03:32 | 000,001,320 | ---- | M] () -- C:\Users\Touroad\Desktop\Major League Baseball 2K11.lnk
[2011-04-23 12:37:36 | 000,000,682 | ---- | M] () -- C:\Users\Touroad\Desktop\FIFA 11 - 바로 가기.lnk
[2011-04-22 21:31:19 | 000,001,269 | ---- | M] () -- C:\Users\Touroad\Desktop\CM 11.lnk
[2011-04-22 21:16:50 | 000,001,131 | ---- | M] () -- C:\Users\Public\Desktop\EA Download Manager.lnk
[2011-04-22 14:42:35 | 000,000,538 | ---- | M] () -- C:\Windows\tasks\hpwebreg_xxxxxxxxxx.job
[2011-04-21 21:20:11 | 000,001,091 | ---- | M] () -- C:\Users\Touroad\Desktop\Napoleon - Total War.lnk
[2011-04-21 06:09:00 | 001,965,648 | ---- | M] (AhnLab, Inc.) -- C:\Windows\SysNative\drivers\ahnsze.sys
[2011-04-21 05:18:43 | 000,002,212 | ---- | M] () -- C:\Users\Public\Desktop\HP Officejet 6500 E710a-f.lnk
[2011-04-21 05:18:43 | 000,001,888 | ---- | M] () -- C:\Users\Public\Desktop\HP ePrintCenter - HP Officejet 6500 E710a-f.lnk
[2011-04-21 05:18:43 | 000,001,217 | ---- | M] () -- C:\Users\Public\Desktop\HP Officejet 6500 E710a-f Scan.lnk
[2011-04-21 05:18:43 | 000,001,180 | ---- | M] () -- C:\Users\Public\Desktop\전산용품 판매처 - HP Officejet 6500 E710a-f.lnk
[2011-04-10 12:12:07 | 000,000,617 | ---- | M] () -- C:\Users\Touroad\Desktop\티토렌트 토렌트검색기.url
[2011-04-07 22:14:00 | 000,067,176 | ---- | M] (Khronos Group) -- C:\Windows\SysNative\OpenCL.dll
[2011-04-07 22:14:00 | 000,057,960 | ---- | M] (Khronos Group) -- C:\Windows\SysWow64\OpenCL.dll
[2011-04-07 22:14:00 | 000,007,771 | ---- | M] () -- C:\Windows\SysNative\nvinfo.pb
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2011-05-07 14:10:46 | 000,625,664 | ---- | C] () -- C:\Users\Touroad\Desktop\dds.scr
[2011-05-07 14:08:43 | 000,302,080 | ---- | C] () -- C:\Users\Touroad\Desktop\c4xz89vd.exe
[2011-05-07 14:05:53 | 000,001,109 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011-05-07 14:03:27 | 000,080,384 | ---- | C] () -- C:\Users\Touroad\Desktop\MBRCheck.exe
[2011-05-04 20:00:13 | 000,000,310 | -HS- | C] () -- C:\Windows\tasks\Vlyhe.job
[2011-05-04 20:00:13 | 000,000,310 | -HS- | C] () -- C:\Windows\tasks\uicweweyc.job
[2011-05-04 20:00:13 | 000,000,310 | -HS- | C] () -- C:\Windows\tasks\bkamxjb.job
[2011-05-04 20:00:12 | 000,114,176 | RHS- | C] () -- C:\Windows\SysWow64\wshconh.dll
[2011-05-04 20:00:12 | 000,114,176 | RHS- | C] () -- C:\Windows\SysWow64\themeuik.dll
[2011-05-04 20:00:12 | 000,114,176 | RHS- | C] () -- C:\Windows\SysWow64\KBDNEPRJ.dll
[2011-05-04 20:00:12 | 000,000,362 | -HS- | C] () -- C:\Windows\tasks\gelfkifi.job
[2011-05-04 06:17:10 | 000,000,362 | ---- | C] () -- C:\Windows\tasks\At18.job
[2011-05-04 06:17:05 | 000,000,362 | ---- | C] () -- C:\Windows\tasks\At17.job
[2011-05-04 06:17:03 | 000,000,362 | ---- | C] () -- C:\Windows\tasks\At16.job
[2011-05-04 06:15:05 | 000,000,362 | ---- | C] () -- C:\Windows\tasks\At15.job
[2011-05-04 06:12:07 | 000,000,362 | ---- | C] () -- C:\Windows\tasks\At14.job
[2011-05-04 06:12:05 | 000,000,362 | ---- | C] () -- C:\Windows\tasks\At13.job
[2011-05-04 06:11:47 | 000,000,362 | ---- | C] () -- C:\Windows\tasks\At12.job
[2011-05-04 06:09:38 | 000,000,362 | ---- | C] () -- C:\Windows\tasks\At11.job
[2011-05-04 06:09:37 | 000,000,362 | ---- | C] () -- C:\Windows\tasks\At10.job
[2011-05-04 06:06:42 | 000,000,362 | ---- | C] () -- C:\Windows\tasks\At9.job
[2011-05-04 06:06:41 | 000,000,362 | ---- | C] () -- C:\Windows\tasks\At8.job
[2011-05-04 06:06:09 | 000,000,362 | ---- | C] () -- C:\Windows\tasks\At7.job
[2011-05-04 06:06:01 | 000,000,362 | ---- | C] () -- C:\Windows\tasks\At6.job
[2011-05-04 06:05:59 | 000,000,362 | ---- | C] () -- C:\Windows\tasks\At5.job
[2011-05-04 06:04:03 | 000,000,362 | ---- | C] () -- C:\Windows\tasks\At4.job
[2011-05-04 06:04:02 | 000,000,362 | ---- | C] () -- C:\Windows\tasks\At3.job
[2011-05-04 06:03:46 | 000,000,362 | ---- | C] () -- C:\Windows\tasks\At2.job
[2011-05-04 06:03:41 | 000,000,362 | ---- | C] () -- C:\Windows\tasks\At1.job
[2011-05-01 13:21:03 | 000,063,343 | ---- | C] () -- C:\Users\Touroad\Documents\제목 없음.wma
[2011-04-23 18:03:32 | 000,001,320 | ---- | C] () -- C:\Users\Touroad\Desktop\Major League Baseball 2K11.lnk
[2011-04-23 12:37:36 | 000,000,682 | ---- | C] () -- C:\Users\Touroad\Desktop\FIFA 11 - 바로 가기.lnk
[2011-04-22 21:31:19 | 000,001,269 | ---- | C] () -- C:\Users\Touroad\Desktop\CM 11.lnk
[2011-04-22 21:16:50 | 000,001,143 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA Download Manager.lnk
[2011-04-22 21:16:50 | 000,001,131 | ---- | C] () -- C:\Users\Public\Desktop\EA Download Manager.lnk
[2011-04-22 10:46:36 | 000,000,538 | ---- | C] () -- C:\Windows\tasks\hpwebreg_xxxxxxxxxx.job
[2011-04-21 21:20:11 | 000,001,091 | ---- | C] () -- C:\Users\Touroad\Desktop\Napoleon - Total War.lnk
[2011-04-21 05:19:05 | 000,000,918 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\I.R.I.S. OCR 등록.lnk
[2011-04-21 05:18:43 | 000,002,212 | ---- | C] () -- C:\Users\Public\Desktop\HP Officejet 6500 E710a-f.lnk
[2011-04-21 05:18:43 | 000,001,888 | ---- | C] () -- C:\Users\Public\Desktop\HP ePrintCenter - HP Officejet 6500 E710a-f.lnk
[2011-04-21 05:18:43 | 000,001,217 | ---- | C] () -- C:\Users\Public\Desktop\HP Officejet 6500 E710a-f Scan.lnk
[2011-04-21 05:18:43 | 000,001,180 | ---- | C] () -- C:\Users\Public\Desktop\전산용품 판매처 - HP Officejet 6500 E710a-f.lnk
[2011-04-10 12:12:07 | 000,000,617 | ---- | C] () -- C:\Users\Touroad\Desktop\티토렌트 토렌트검색기.url
[2011-04-03 18:15:28 | 000,024,576 | R--- | C] () -- C:\Windows\SysWow64\AsIO.dll
[2011-04-03 18:15:28 | 000,013,440 | R--- | C] () -- C:\Windows\SysWow64\drivers\AsIO.sys
[2011-04-03 18:15:22 | 000,011,832 | ---- | C] () -- C:\Windows\SysWow64\drivers\AsInsHelp64.sys
[2011-04-03 18:15:22 | 000,010,216 | ---- | C] () -- C:\Windows\SysWow64\drivers\AsInsHelp32.sys
[2011-04-03 16:48:09 | 000,001,769 | ---- | C] () -- C:\Windows\Language_trs.ini
[2011-04-03 16:48:05 | 000,033,683 | ---- | C] () -- C:\Windows\Ascd_tmp.ini
[2011-03-24 23:10:04 | 000,197,120 | ---- | C] () -- C:\Windows\patchw32.dll
[2011-03-14 23:50:14 | 000,567,152 | ---- | C] () -- C:\Windows\SysWow64\NJUninst.exe
[2011-02-28 02:20:02 | 000,667,136 | ---- | C] () -- C:\Windows\SysWow64\OGACheckControl.dll
[2011-02-20 23:03:11 | 000,026,844 | ---- | C] () -- C:\Windows\SysWow64\teexcept.dat
[2011-02-20 23:01:57 | 000,072,272 | ---- | C] () -- C:\Windows\SysWow64\cosa.dll
[2011-02-10 21:22:52 | 000,021,764 | ---- | C] () -- C:\Windows\SysWow64\CoreAAC-uninstall.exe
[2011-02-09 12:31:12 | 000,000,074 | ---- | C] () -- C:\Windows\DragSearch.INI
[2011-02-09 10:45:06 | 000,000,017 | ---- | C] () -- C:\Users\Touroad\AppData\Local\resmon.resmoncfg
[2011-02-09 10:34:24 | 000,000,069 | ---- | C] () -- C:\Windows\hjimesv.ini
[2011-02-09 10:34:22 | 000,000,016 | ---- | C] () -- C:\Windows\SysWow64\winhcfgb.ini
[2009-07-13 22:38:36 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2009-07-13 19:35:51 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT
[2009-07-13 19:34:42 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat
[2009-07-13 17:10:29 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2009-07-13 16:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2009-07-13 14:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2009-06-30 01:58:20 | 000,008,192 | ---- | C] () -- C:\Windows\SysWow64\veraportutil.dll
[2009-06-10 14:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat
[2009-04-02 05:30:14 | 000,010,296 | ---- | C] () -- C:\Windows\SysWow64\drivers\ASUSHWIO.SYS
[2009-02-18 20:35:10 | 000,049,152 | R--- | C] () -- C:\Windows\DAOD.exe
[2008-12-01 02:32:32 | 000,362,029 | ---- | C] () -- C:\Windows\SysWow64\sqlite3.dll
 
[color=#E56717]========== LOP Check ==========[/color]
 
[2011-05-03 19:58:31 | 000,000,000 | ---D | M] -- C:\Users\Touroad\AppData\Roaming\.minecraft
[2011-04-23 18:37:26 | 000,000,000 | ---D | M] -- C:\Users\Touroad\AppData\Roaming\2K Sports
[2011-03-24 23:18:50 | 000,000,000 | ---D | M] -- C:\Users\Touroad\AppData\Roaming\Atari
[2011-03-26 09:20:03 | 000,000,000 | ---D | M] -- C:\Users\Touroad\AppData\Roaming\Command and Conquer 4
[2011-02-11 08:34:15 | 000,000,000 | ---D | M] -- C:\Users\Touroad\AppData\Roaming\DAEMON Tools Lite
[2011-04-03 18:17:42 | 000,000,000 | ---D | M] -- C:\Users\Touroad\AppData\Roaming\DeviceVm
[2011-02-09 13:01:07 | 000,000,000 | ---D | M] -- C:\Users\Touroad\AppData\Roaming\EurekaLog
[2011-04-15 18:12:06 | 000,000,000 | ---D | M] -- C:\Users\Touroad\AppData\Roaming\fyextend
[2011-02-09 10:43:15 | 000,000,000 | ---D | M] -- C:\Users\Touroad\AppData\Roaming\HNC
[2011-02-11 02:55:43 | 000,000,000 | ---D | M] -- C:\Users\Touroad\AppData\Roaming\ieung3
[2011-03-24 09:30:13 | 000,000,000 | ---D | M] -- C:\Users\Touroad\AppData\Roaming\Leadertech
[2011-04-21 21:38:22 | 000,000,000 | ---D | M] -- C:\Users\Touroad\AppData\Roaming\The Creative Assembly
[2011-05-07 13:59:32 | 000,000,000 | ---D | M] -- C:\Users\Touroad\AppData\Roaming\uTorrent
[2011-05-06 19:32:52 | 000,000,362 | ---- | M] () -- C:\Windows\Tasks\At1.job
[2011-05-05 20:00:00 | 000,000,362 | ---- | M] () -- C:\Windows\Tasks\At10.job
[2011-05-06 19:32:52 | 000,000,362 | ---- | M] () -- C:\Windows\Tasks\At11.job
[2011-05-06 19:32:52 | 000,000,362 | ---- | M] () -- C:\Windows\Tasks\At12.job
[2011-05-06 19:32:52 | 000,000,362 | ---- | M] () -- C:\Windows\Tasks\At13.job
[2011-05-06 19:32:52 | 000,000,362 | ---- | M] () -- C:\Windows\Tasks\At14.job
[2011-05-06 19:32:52 | 000,000,362 | ---- | M] () -- C:\Windows\Tasks\At15.job
[2011-05-06 19:32:52 | 000,000,362 | ---- | M] () -- C:\Windows\Tasks\At16.job
[2011-05-06 19:32:52 | 000,000,362 | ---- | M] () -- C:\Windows\Tasks\At17.job
[2011-05-06 19:32:52 | 000,000,362 | ---- | M] () -- C:\Windows\Tasks\At18.job
[2011-05-06 19:32:52 | 000,000,362 | ---- | M] () -- C:\Windows\Tasks\At2.job
[2011-05-06 19:32:52 | 000,000,362 | ---- | M] () -- C:\Windows\Tasks\At3.job
[2011-05-06 19:32:52 | 000,000,362 | ---- | M] () -- C:\Windows\Tasks\At4.job
[2011-05-06 19:32:52 | 000,000,362 | ---- | M] () -- C:\Windows\Tasks\At5.job
[2011-05-06 19:32:52 | 000,000,362 | ---- | M] () -- C:\Windows\Tasks\At6.job
[2011-05-06 19:32:52 | 000,000,362 | ---- | M] () -- C:\Windows\Tasks\At7.job
[2011-05-06 19:32:52 | 000,000,362 | ---- | M] () -- C:\Windows\Tasks\At8.job
[2011-05-06 19:32:52 | 000,000,362 | ---- | M] () -- C:\Windows\Tasks\At9.job
[2011-05-06 21:27:21 | 000,000,308 | ---- | M] () -- C:\Windows\Tasks\BearShareNAG.job
[2011-05-06 21:27:21 | 000,000,310 | -HS- | M] () -- C:\Windows\Tasks\bkamxjb.job
[2011-05-06 21:27:28 | 000,000,362 | -HS- | M] () -- C:\Windows\Tasks\gelfkifi.job
[2009-07-13 22:08:49 | 000,015,878 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2011-05-06 21:27:28 | 000,000,310 | -HS- | M] () -- C:\Windows\Tasks\uicweweyc.job
[2011-05-06 21:27:28 | 000,000,310 | -HS- | M] () -- C:\Windows\Tasks\Vlyhe.job
 
[color=#E56717]========== Purity Check ==========[/color]
 
 

< End of report >