OTL logfile created on: 27/12/2011 22:39:21 - Run 2
OTL by OldTimer - Version 3.2.31.0     Folder = C:\Users\Icikle\Desktop
 Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7601.17514)
Locale: 00000809 | Country: United Kingdom | Language: ENG | Date Format: dd/MM/yyyy
 
3.25 Gb Total Physical Memory | 2.48 Gb Available Physical Memory | 76.47% Memory free
6.49 Gb Paging File | 5.67 Gb Available in Paging File | 87.37% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 931.41 Gb Total Space | 731.25 Gb Free Space | 78.51% Space Free | Partition Type: NTFS
Drive E: | 100.00 Mb Total Space | 70.16 Mb Free Space | 70.17% Space Free | Partition Type: NTFS
 
Computer Name: UPSTAIRS | User Name: Icikle | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
 
[color=#E56717]========== Processes (SafeList) ==========[/color]
 
PRC - [2011/12/27 21:48:28 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Users\Icikle\Desktop\OTL.exe
PRC - [2011/11/28 18:01:24 | 003,744,552 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe
PRC - [2011/11/28 18:01:23 | 000,044,768 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
PRC - [2011/10/26 02:01:18 | 000,417,792 | ---- | M] (AMD) -- C:\Windows\System32\atieclxx.exe
PRC - [2011/10/26 02:00:46 | 000,176,128 | ---- | M] (AMD) -- C:\Windows\System32\atiesrxx.exe
PRC - [2011/10/25 21:13:10 | 000,291,840 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
PRC - [2011/08/15 16:18:10 | 001,361,288 | ---- | M] (LogMeIn Inc.) -- C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
PRC - [2011/06/06 11:55:28 | 000,064,952 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2011/02/25 05:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2010/11/20 12:17:47 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
 
 
[color=#E56717]========== Modules (No Company Name) ==========[/color]
 
MOD - [2011/12/20 14:53:00 | 000,748,544 | ---- | M] () -- C:\Windows\System32\protector.dll
 
 
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
 
SRV - [2011/12/08 14:29:54 | 000,419,624 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2011/11/28 18:01:23 | 000,044,768 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus)
SRV - [2011/10/26 02:00:46 | 000,176,128 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\System32\atiesrxx.exe -- (AMD External Events Utility)
SRV - [2011/10/25 21:13:10 | 000,291,840 | ---- | M] (Advanced Micro Devices, Inc.) [Auto | Running] -- C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe -- (AMD FUEL Service)
SRV - [2011/08/31 17:00:48 | 000,366,152 | ---- | M] (Malwarebytes Corporation) [Auto | Stopped] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2011/08/15 16:18:10 | 001,361,288 | ---- | M] (LogMeIn Inc.) [Auto | Running] -- C:\Program Files\LogMeIn Hamachi\hamachi-2.exe -- (Hamachi2Svc)
SRV - [2011/06/06 11:55:28 | 000,064,952 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2010/12/18 18:55:23 | 001,343,400 | ---- | M] (Microsoft Corporation) [Unknown | Stopped] -- C:\Windows\System32\Wat\WatAdminSvc.exe -- (WatAdminSvc)
SRV - [2009/07/14 01:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009/07/14 01:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV - [2011/11/28 17:53:53 | 000,435,032 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\System32\drivers\aswSnx.sys -- (aswSnx)
DRV - [2011/11/28 17:53:35 | 000,314,456 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2011/11/28 17:52:19 | 000,034,392 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2011/11/28 17:52:16 | 000,052,952 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2011/11/28 17:52:07 | 000,055,128 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV - [2011/11/28 17:51:50 | 000,020,568 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2011/10/26 03:03:48 | 008,853,504 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmdag.sys -- (amdkmdag)
DRV - [2011/10/26 01:21:36 | 000,264,192 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmpag.sys -- (amdkmdap)
DRV - [2011/08/31 17:00:50 | 000,022,216 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\mbam.sys -- (MBAMProtector)
DRV - [2011/08/08 18:13:10 | 000,117,584 | ---- | M] (SysProgs.org) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\BazisVirtualCDBus.sys -- (BazisVirtualCDBus)
DRV - [2011/06/24 05:25:26 | 000,039,424 | ---- | M] (Advanced Micro Devices) [Kernel | Auto | Running] -- C:\Program Files\ATI Technologies\ATI.ACE\Fuel\i386\aoddriver2.sys -- (AODDriver4.01)
DRV - [2011/06/06 22:06:54 | 000,211,984 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AtihdW73.sys -- (AtiHDAudioService)
DRV - [2010/11/20 10:24:41 | 000,052,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV - [2010/02/18 08:18:22 | 000,037,944 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\amdiox86.sys -- (amdiox86)
DRV - [2010/01/11 10:02:44 | 001,119,232 | ---- | M] (VIA Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\viahduaa.sys -- (VIAHdAudAddService)
DRV - [2009/08/04 02:28:18 | 000,011,296 | R--- | M] () [Kernel | System | Running] -- C:\Windows\System32\drivers\AsIO.sys -- (AsIO)
DRV - [2009/07/17 03:36:30 | 000,013,216 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ASACPI.sys -- (MTsensor)
DRV - [2009/07/13 23:45:33 | 000,083,456 | ---- | M] (Brother Industries Ltd.) [Kernel | System | Running] -- C:\Windows\System32\drivers\serial.sys -- (Serial)
DRV - [2009/05/07 20:30:28 | 000,014,392 | ---- | M] (Advanced Micro Devices Inc.) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\AtiPcie.sys -- (AtiPcie) AMD PCI Express (3GIO)
DRV - [2009/05/06 07:00:38 | 000,012,928 | ---- | M] (ROCCAT Development, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ArvoFltr.sys -- (ArvoFltr)
DRV - [2009/03/18 17:35:40 | 000,026,176 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\hamachi.sys -- (hamachi)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,bProtector Start Page = http://www.goonsearch.com/?source=IBR-IB-PDP-INS-HP
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,bProtector Start Page = http://www.goonsearch.com/?source=IBR-IB-PDP-INS-HP
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = Preserve
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://uk.ask.com/?l=dis&o=14196
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://uk.msn.com/?ocid=iehp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-gb
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = CA 74 8B 9E 6B A5 CC 01  [binary data]
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
 
[color=#E56717]========== FireFox ==========[/color]
 
FF - prefs.js..browser.search.defaultengine: "google"
FF - prefs.js..browser.search.defaultenginename: "google"
FF - prefs.js..browser.search.order.1: "ask.com"
FF - prefs.js..browser.startup.homepage: "google.com"
FF - prefs.js..extensions.enabledItems: {cafeefac-0016-0000-0020-abcdeffedcba}:6.0.20
FF - prefs.js..keyword.url: "http://www.google.com/search?ie=utf-8&oe=utf-8&sourceid=navclient&gfns=1&q="
 
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=:  File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@esn.me/esnsonar,version=0.70.4: C:\Program Files\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
FF - HKLM\Software\MozillaPlugins\@esn/esnlaunch,version=1.102.0: C:\Program Files\Battlelog Web Plugins\1.102.0\npesnlaunch.dll (ESN Social Software AB)
FF - HKLM\Software\MozillaPlugins\@esn/esnlaunch,version=1.104.0: C:\Program Files\Battlelog Web Plugins\1.104.0\npesnlaunch.dll (ESN Social Software AB)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\4.0.60831.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nexon.net/NxGame: C:\ProgramData\NexonUS\NGM\npNxGameUS.dll File not found
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll File not found
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\Icikle\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF - HKCU\Software\MozillaPlugins\electronicarts.com/GameFacePlugin: C:\Users\Icikle\AppData\Roaming\Electronic Arts\Game Face\npGameFacePlugin.dll (Electronic Arts)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 8.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/11/10 00:02:12 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 8.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/10/05 13:11:51 | 000,000,000 | ---D | M]
 
[2010/12/17 21:44:05 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Icikle\AppData\Roaming\Mozilla\Extensions
[2011/12/20 14:52:18 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Icikle\AppData\Roaming\Mozilla\Firefox\Profiles\mxws1nhw.default\extensions
[2011/12/20 14:53:00 | 000,002,409 | ---- | M] () -- C:\Users\Icikle\AppData\Roaming\Mozilla\Firefox\Profiles\mxws1nhw.default\searchplugins\SearchTheWeb.xml
[2011/11/10 00:02:13 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2011/11/10 00:02:12 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2010/12/18 17:27:00 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2010/01/01 08:00:00 | 000,001,538 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazon-en-GB.xml
[2010/01/01 08:00:00 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml
[2010/01/01 08:00:00 | 000,000,947 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\chambers-en-GB.xml
[2010/01/01 08:00:00 | 000,001,180 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay-en-GB.xml
[2010/01/01 08:00:00 | 000,001,135 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-en-GB.xml
 
O1 HOSTS File: ([2011/12/27 22:36:26 | 000,000,098 | ---- | M]) - C:\Windows\System32\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1       localhost
O1 - Hosts: ::1       localhost
O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware (reboot)] C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{B6595905-E595-4BF5-AA22-B6ED642245EC}: NameServer = 213.120.234.6,217.32.171.22
O20 - AppInit_DLLs: (protector.dll) -C:\Windows\System32\protector.dll ()
O20 - HKLM Winlogon: Shell - (explorer.exe) -C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) -C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) -C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/06/10 21:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{d977115c-d979-11e0-b6d1-20cf30f0b924}\Shell - "" = AutoRun
O33 - MountPoints2\{d977115c-d979-11e0-b6d1-20cf30f0b924}\Shell\AutoRun\command - "" = F:\SETUP.EXE
O33 - MountPoints2\{e6bc6eed-c610-11e0-afe2-20cf30f0b924}\Shell - "" = AutoRun
O33 - MountPoints2\{e6bc6eed-c610-11e0-afe2-20cf30f0b924}\Shell\AutoRun\command - "" = F:\autorun.exe
O33 - MountPoints2\F\Shell - "" = AutoRun
O33 - MountPoints2\F\Shell\AutoRun\command - "" = F:\autorun.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2011/12/27 22:36:24 | 000,000,000 | ---D | C] -- C:\_OTL
[2011/12/27 21:55:11 | 001,918,464 | ---- | C] (AVAST Software) -- C:\Users\Icikle\Desktop\aswMBR.exe
[2011/12/27 21:48:25 | 000,584,192 | ---- | C] (OldTimer Tools) -- C:\Users\Icikle\Desktop\OTL.exe
[2011/12/27 12:53:53 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{9B7B5088-54BA-4D8A-9127-CDF2E10AF2CF}
[2011/12/27 12:53:31 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{CB1A2435-ECC2-4833-A963-FD4E3CF7A281}
[2011/12/27 00:53:06 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{61224B6F-C517-458A-9907-D4235221F180}
[2011/12/27 00:52:43 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{7216AF2F-9BC9-4192-93B0-ED507DEDE0D6}
[2011/12/26 12:52:18 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{ED6DD265-62ED-401C-A34D-9F1B8E788E19}
[2011/12/26 12:51:55 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{0E9334BB-4F11-4BE7-9543-E57E6AED839E}
[2011/12/26 00:51:30 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{F29F4AF0-FFAB-4BAF-BBD8-953EF75613A5}
[2011/12/26 00:51:02 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{356EF51C-90A1-4C62-BC29-239D0A2A3887}
[2011/12/25 12:50:50 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{E8E2D4F7-4F09-4AF0-B062-E245C6200C3C}
[2011/12/25 12:50:27 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{046162C4-7457-4541-9315-0BDAF3A8755C}
[2011/12/25 00:50:02 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{2AAD95EF-544D-46A9-87FA-27CC546B9875}
[2011/12/25 00:49:40 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{25AB2F75-18AA-486F-A603-25AD7CD79410}
[2011/12/24 12:49:15 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{AB98897C-47E4-4461-A2D2-2091A79E2160}
[2011/12/24 12:48:53 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{C46B4C05-FEE1-4213-B96C-57C2E22C0F4B}
[2011/12/24 00:48:28 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{580564C8-5851-4C86-9CA9-ECF2AFC7218D}
[2011/12/24 00:48:05 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{49426BC7-F8DF-4235-BC37-A2BBB56B2357}
[2011/12/23 12:47:40 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{D491D8F1-01A8-4BBB-9BD9-0851DA12915B}
[2011/12/23 12:47:18 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{158174EB-36A0-44FC-A78C-C642DC3D8DAE}
[2011/12/23 00:46:53 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{DACF7733-E2D0-4E9F-A128-FD0ACE379F0B}
[2011/12/23 00:46:26 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{29AD0A23-8B83-4289-9C24-F04E7384FCF8}
[2011/12/22 12:46:00 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{84F869A3-2BE3-4103-961D-B00E3078239D}
[2011/12/22 12:45:42 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{48684E85-84CB-4AFD-831E-4CA0AC7DBAFB}
[2011/12/21 17:46:52 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HiJackThis
[2011/12/21 17:46:52 | 000,000,000 | ---D | C] -- C:\Program Files\Hijackthis
[2011/12/21 16:45:12 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{38BC4412-2D73-4DAA-8E7C-FC118B47009D}
[2011/12/21 16:44:52 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{843D882F-2F7A-4A3D-864D-81B4F732846F}
[2011/12/21 02:50:55 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{3D460422-72D7-4245-878E-C1D32137B2B2}
[2011/12/20 15:53:10 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Roaming\Malwarebytes
[2011/12/20 15:53:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2011/12/20 15:53:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2011/12/20 15:53:03 | 000,022,216 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2011/12/20 15:53:03 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2011/12/20 14:50:06 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{21400C18-70A3-4A51-8BA3-ACD62643B8AB}
[2011/12/20 14:49:27 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{8177464B-6A57-4626-B911-AE489355A809}
[2011/12/20 00:32:52 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{5A4A4E8D-8502-4D78-9E1A-BDE06B45CE7C}
[2011/12/20 00:32:30 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{EE59B73B-3A90-41F7-A29A-7B83626845DB}
[2011/12/19 23:35:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Real Lives 2007
[2011/12/19 23:35:10 | 000,000,000 | ---D | C] -- C:\Program Files\Educational Simulations
[2011/12/19 22:21:00 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Roaming\PerformerSoft
[2011/12/19 22:20:59 | 000,017,464 | ---- | C] (PerformerSoft LLC) -- C:\Windows\System32\roboot.exe
[2011/12/19 22:16:51 | 000,299,520 | ---- | C] (InstallShield Corporation, Inc.) -- C:\Windows\uninst.exe
[2011/12/19 12:32:05 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{9D7E2D3D-D4C6-40A0-8863-21B72577DA76}
[2011/12/19 12:31:32 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{8A8FCE7E-57F4-4D3D-9B53-8E359E5B1A78}
[2011/12/17 08:12:14 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{FC299397-7718-4E43-BCCC-98894FE8A712}
[2011/12/17 08:11:52 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{4E31356A-2955-4E3A-B0F1-6DB6EF76E236}
[2011/12/16 15:46:09 | 000,000,000 | ---D | C] -- C:\Users\Icikle\Documents\My Curse
[2011/12/16 15:45:35 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Curse
[2011/12/16 15:22:44 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{FED898D6-057B-4488-9321-E8BA5BEC7FAE}
[2011/12/16 15:22:19 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{7FC1ACA5-F9C5-4AA4-877B-DD410AAF3A25}
[2011/12/16 01:51:52 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{ED06FA55-5769-469D-8478-E1A809DAB961}
[2011/12/16 01:51:30 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{B37C640B-F452-4588-B0D1-506FA4431588}
[2011/12/15 15:45:07 | 000,000,000 | ---D | C] -- C:\Users\Icikle\FrostWire
[2011/12/15 15:45:06 | 000,000,000 | ---D | C] -- C:\Users\Icikle\.frostwire5
[2011/12/15 13:51:17 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{25703C0D-074C-405F-92B6-7859A7F73B9D}
[2011/12/15 13:51:05 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{0FC434B5-1FB2-458C-8D6E-96578BB9AAF7}
[2011/12/15 00:38:59 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{4C0AF3C8-3FE0-4AAB-9722-6B49F4F259FC}
[2011/12/15 00:38:37 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{E0343CD4-BC03-4B95-9964-D609B876205E}
[2011/12/14 12:38:11 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{2DD932B4-DC38-4473-983F-DD5F6C8093EA}
[2011/12/14 12:37:40 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{99930905-19A1-454D-8770-C2DE7508EAD8}
[2011/12/13 16:05:39 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{FDE61FF0-CE56-4AE2-A3B3-583DAE8E186C}
[2011/12/13 16:05:00 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{E927CF49-0BD5-4592-8751-E66E7C302C3D}
[2011/12/13 01:24:39 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{D8C065E5-F287-4119-9397-C3A98AFEBCF3}
[2011/12/13 01:24:16 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{7963B21A-24D0-4CF8-A27D-A6E122B205A3}
[2011/12/12 21:34:04 | 000,000,000 | ---D | C] -- C:\Users\Icikle\Documents\Remote Assistance Logs
[2011/12/12 13:24:04 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{DDA553CF-AA47-4683-88D8-24C4F363DC90}
[2011/12/12 13:23:41 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{30BB158F-71CF-47E3-9C15-7193FCD55518}
[2011/12/12 01:23:16 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{7F565330-D061-41B7-999B-38E62B7D326D}
[2011/12/12 01:22:54 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{77C06B4E-826B-4F3A-A51B-E3CEE23FDF9F}
[2011/12/11 13:22:41 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{1707F78C-01D0-47CD-9FCF-CE0CC66968AD}
[2011/12/11 13:22:19 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{4EAC9272-A6A0-4BA7-9286-052BD43A8F71}
[2011/12/11 01:21:54 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{F162AB78-AAC8-4851-A73B-8D7C259819EB}
[2011/12/11 01:21:32 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{6D340DFC-43C8-4DAB-89A4-1182F0FBAB4A}
[2011/12/10 13:21:01 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{F51FC80F-789C-4C95-9FB7-1DD4BE03F651}
[2011/12/10 13:20:38 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{7507805C-4726-4420-AF08-58BCBE8F4A24}
[2011/12/10 01:20:12 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{37D77079-E9D0-4DDF-B76D-A14A09149164}
[2011/12/10 01:19:50 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{5ADB367E-5985-453E-A549-6307BD1CB401}
[2011/12/09 13:19:25 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{FDEC1474-56D9-46C3-B0AE-FF5236F2241B}
[2011/12/09 13:19:01 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{3C603969-137C-434F-A04C-B89BF170974F}
[2011/12/09 01:18:35 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{93F32EBD-217C-47E6-8B05-5D5366D1969A}
[2011/12/09 01:18:12 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{0F177141-61DA-49F5-A05C-F1FCFED9007D}
[2011/12/08 13:17:47 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{003CA5CD-7442-45CD-8196-1C9D6D72026A}
[2011/12/08 13:17:24 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{C31E75F9-A79D-4DA5-B58F-2C4ADF57B5AA}
[2011/12/08 01:16:59 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{87D937FF-64C3-428A-ACF2-6D8AE5C14FCA}
[2011/12/08 01:16:37 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{8E8F3DB2-62B2-473C-BA27-0310A7A5320F}
[2011/12/07 13:16:23 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{DDA00605-AE85-4A13-85D8-BD03E4EB5824}
[2011/12/07 13:16:05 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{10CA1A45-6262-4C8C-92EA-22C086335CE2}
[2011/12/07 00:35:47 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{91C4980D-D70A-4E24-B295-2B36E5EAE469}
[2011/12/07 00:35:24 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{0916A668-4E92-4B48-A4D0-91F86D42F292}
[2011/12/06 12:34:57 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{07D62E13-1E52-4257-AF94-25C228F0A22E}
[2011/12/06 12:34:39 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{1353BDCC-C745-4F0B-80F2-24406BBB97A6}
[2011/12/05 13:18:54 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{B9FA9203-8794-4FCC-8736-83FF4520DCFD}
[2011/12/05 13:18:35 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{6FE73EB3-6E80-4B1F-B833-FF20D2333B54}
[2011/12/05 00:37:58 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{26AA1E05-D7FC-4B76-BF6B-8F442210FC2D}
[2011/12/05 00:37:36 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{120C5752-593C-4BCD-8571-190A34BAF699}
[2011/12/04 12:37:23 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{EAD685E6-1965-488D-9CAD-3A5DF1335908}
[2011/12/04 12:37:01 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{FA78E74B-13CF-4AA8-8D54-581F39F8BF00}
[2011/12/04 00:36:36 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{73326FC9-588D-4B96-9C18-0E15A1536469}
[2011/12/04 00:36:13 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{ED645547-2CCC-4CE0-957B-EADC194127F8}
[2011/12/03 12:36:01 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{2D4DB91B-DF45-4AA9-B641-18F8CFBBA21C}
[2011/12/03 12:35:38 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{DB981C91-AC84-41CB-8E61-110D98193890}
[2011/12/03 00:35:13 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{01AA9674-6BAD-4973-A1BB-4742592A8B5C}
[2011/12/03 00:34:45 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{A704712C-106E-4C4F-B98E-A5394AA5C3B2}
[2011/12/02 12:34:32 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{3173D426-9185-42F3-BF76-F076FA331508}
[2011/12/02 12:34:08 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{37590662-A7BA-419A-A6A0-7D80939BC6A2}
[2011/12/01 14:13:25 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{83CD5F03-9FA6-4AE9-BC23-5310291741F3}
[2011/12/01 14:12:58 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{914B3F21-FAF9-46E4-9B86-FDE6E7C7DCA3}
[2011/12/01 01:22:04 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{19419CDF-AFE5-4C53-8219-9CCA819F35BD}
[2011/12/01 01:21:33 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{23CAF57B-ADFB-4797-9F32-524FD2B108B7}
[2011/11/30 13:21:21 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{B328081F-4603-46E0-90F2-4F8320A0DFC1}
[2011/11/30 13:20:58 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{BCE74E54-C662-4672-954A-0630C705F617}
[2011/11/30 01:20:33 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{67FA1653-DCFE-4890-AA69-DCFFF0073E18}
[2011/11/30 01:20:04 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{E5101E4E-8D57-4952-9ED4-FF7B6B6AC68F}
[2011/11/29 13:19:48 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{A19E1559-8313-438B-B9AF-2FDB76F8FFEB}
[2011/11/29 13:19:08 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{86390AA7-F242-49ED-8A87-BB73E5BB1122}
[2011/11/28 19:56:12 | 000,000,000 | ---D | C] -- C:\Users\Icikle\Documents\Star Wars - The Old Republic
[2011/11/28 14:03:57 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{AC36C62B-AAA3-4059-8E70-4BB6848BAECE}
[2011/11/28 14:03:40 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{6C08DEFD-3F0F-4345-8962-07708F5D9561}
[2011/11/28 00:11:45 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{6675A71E-A0E6-4453-985B-D3FA5562A15D}
[2011/11/28 00:11:23 | 000,000,000 | ---D | C] -- C:\Users\Icikle\AppData\Local\{B384DDCB-76F8-44F4-8401-9E8555E73325}
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2011/12/27 22:37:52 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011/12/27 22:37:47 | 2615,812,096 | -HS- | M] () -- C:\hiberfil.sys
[2011/12/27 22:36:26 | 000,000,098 | ---- | M] () -- C:\Windows\System32\drivers\etc\Hosts
[2011/12/27 21:55:13 | 001,918,464 | ---- | M] (AVAST Software) -- C:\Users\Icikle\Desktop\aswMBR.exe
[2011/12/27 21:48:28 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Users\Icikle\Desktop\OTL.exe
[2011/12/27 12:35:41 | 000,019,520 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011/12/27 12:35:41 | 000,019,520 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011/12/22 13:12:21 | 000,001,908 | ---- | M] () -- C:\Windows\diagwrn.xml
[2011/12/22 13:12:21 | 000,001,908 | ---- | M] () -- C:\Windows\diagerr.xml
[2011/12/21 18:14:44 | 000,002,577 | ---- | M] () -- C:\Windows\System32\config.nt
[2011/12/21 17:46:52 | 000,002,991 | ---- | M] () -- C:\Users\Icikle\Desktop\HiJackThis.lnk
[2011/12/20 22:00:55 | 000,140,072 | ---- | M] () -- C:\Windows\System32\drivers\PnkBstrK.sys
[2011/12/20 22:00:45 | 000,280,904 | ---- | M] () -- C:\Windows\System32\PnkBstrB.xtr
[2011/12/20 21:58:26 | 000,280,904 | ---- | M] () -- C:\Windows\System32\PnkBstrB.ex0
[2011/12/20 15:53:06 | 000,001,067 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011/12/20 14:53:38 | 000,001,994 | ---- | M] () -- C:\Users\Icikle\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2011/12/20 14:53:15 | 000,628,024 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2011/12/20 14:53:15 | 000,110,208 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2011/12/20 14:53:00 | 000,748,544 | ---- | M] () -- C:\Windows\System32\protector.dll
[2011/12/19 22:21:01 | 000,001,043 | ---- | M] () -- C:\ProgramData\repository.xml
[2011/12/19 22:17:22 | 000,003,120 | ---- | M] () -- C:\Windows\System32\2TCUEPSQ.ocx
[2011/12/19 22:16:50 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2011/12/19 22:16:50 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2011/12/16 15:45:35 | 000,000,312 | ---- | M] () -- C:\Users\Icikle\Desktop\Curse Client.appref-ms
[2011/12/15 13:45:51 | 000,292,472 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2011/12/06 23:56:48 | 000,138,056 | ---- | M] () -- C:\Users\Icikle\AppData\Roaming\PnkBstrK.sys
[2011/12/02 18:04:22 | 000,017,464 | ---- | M] (PerformerSoft LLC) -- C:\Windows\System32\roboot.exe
[2011/11/28 18:01:25 | 000,041,184 | ---- | M] (AVAST Software) -- C:\Windows\avastSS.scr
[2011/11/28 18:01:23 | 000,199,816 | ---- | M] (AVAST Software) -- C:\Windows\System32\aswBoot.exe
[2011/11/28 17:53:53 | 000,435,032 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswSnx.sys
[2011/11/28 17:53:35 | 000,314,456 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswSP.sys
[2011/11/28 17:52:19 | 000,034,392 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswRdr.sys
[2011/11/28 17:52:16 | 000,052,952 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswTdi.sys
[2011/11/28 17:52:07 | 000,055,128 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswMonFlt.sys
[2011/11/28 17:51:50 | 000,020,568 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswFsBlk.sys
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2011/12/22 13:12:17 | 000,001,908 | ---- | C] () -- C:\Windows\diagwrn.xml
[2011/12/22 13:12:17 | 000,001,908 | ---- | C] () -- C:\Windows\diagerr.xml
[2011/12/21 17:46:52 | 000,002,991 | ---- | C] () -- C:\Users\Icikle\Desktop\HiJackThis.lnk
[2011/12/20 15:53:06 | 000,001,067 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011/12/19 22:21:01 | 000,001,043 | ---- | C] () -- C:\ProgramData\repository.xml
[2011/12/19 22:20:41 | 000,748,544 | ---- | C] () -- C:\Windows\System32\protector.dll
[2011/12/19 22:17:22 | 000,003,120 | ---- | C] () -- C:\Windows\System32\2TCUEPSQ.ocx
[2011/12/19 22:16:50 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS
[2011/12/19 22:16:50 | 000,000,000 | RHS- | C] () -- C:\IO.SYS
[2011/12/16 15:45:35 | 000,000,312 | ---- | C] () -- C:\Users\Icikle\Desktop\Curse Client.appref-ms
[2011/11/09 20:49:38 | 000,007,605 | ---- | C] () -- C:\Users\Icikle\AppData\Local\Resmon.ResmonCfg
[2011/10/28 21:13:04 | 000,140,072 | ---- | C] () -- C:\Windows\System32\drivers\PnkBstrK.sys
[2011/10/28 21:13:03 | 000,138,056 | ---- | C] () -- C:\Users\Icikle\AppData\Roaming\PnkBstrK.sys
[2011/10/28 21:12:30 | 000,280,904 | ---- | C] () -- C:\Windows\System32\PnkBstrB.exe
[2011/10/28 21:12:27 | 000,075,136 | ---- | C] () -- C:\Windows\System32\PnkBstrA.exe
[2011/10/26 01:31:36 | 000,204,952 | ---- | C] () -- C:\Windows\System32\ativvsvl.dat
[2011/10/26 01:31:36 | 000,157,144 | ---- | C] () -- C:\Windows\System32\ativvsva.dat
[2011/10/25 21:21:48 | 000,056,832 | ---- | C] () -- C:\Windows\System32\OpenVideo.dll
[2011/10/25 21:21:34 | 000,056,832 | ---- | C] () -- C:\Windows\System32\OVDecoder.dll
[2011/09/14 10:47:40 | 000,053,760 | ---- | C] () -- C:\Windows\System32\OVDecode.dll
[2011/09/12 22:06:16 | 000,003,917 | ---- | C] () -- C:\Windows\System32\atipblag.dat
[2011/08/30 14:33:12 | 000,239,869 | ---- | C] () -- C:\Windows\System32\atiicdxx.dat
[2011/06/10 23:25:12 | 000,120,284 | -H-- | C] () -- C:\Windows\System32\mlfcache.dat
[2011/06/10 05:34:52 | 000,080,416 | ---- | C] () -- C:\Windows\System32\RtNicProp32.dll
[2011/04/09 17:55:28 | 000,179,261 | ---- | C] () -- C:\Windows\System32\xlive.dll.cat
[2010/12/19 13:35:15 | 000,035,023 | ---- | C] () -- C:\Windows\Ascd_log.ini
[2010/12/17 22:46:12 | 000,000,262 | ---- | C] () -- C:\Windows\{789289CA-F73A-4A16-A331-54D498CE069F}_WiseFW.ini
[2010/12/17 22:17:31 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2010/12/17 21:34:59 | 000,024,576 | R--- | C] () -- C:\Windows\System32\AsIO.dll
[2010/12/17 21:34:59 | 000,011,296 | R--- | C] () -- C:\Windows\System32\drivers\AsIO.sys
[2010/12/17 21:30:30 | 000,001,769 | ---- | C] () -- C:\Windows\Language_trs.ini
[2010/12/17 21:30:27 | 000,028,607 | ---- | C] () -- C:\Windows\Ascd_tmp.ini
[2009/07/17 03:36:30 | 000,013,216 | ---- | C] () -- C:\Windows\System32\drivers\ASACPI.sys
[2009/07/14 04:57:37 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2009/07/14 04:33:53 | 000,292,472 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2009/07/14 02:05:48 | 000,628,024 | ---- | C] () -- C:\Windows\System32\perfh009.dat
[2009/07/14 02:05:48 | 000,291,294 | ---- | C] () -- C:\Windows\System32\perfi009.dat
[2009/07/14 02:05:48 | 000,110,208 | ---- | C] () -- C:\Windows\System32\perfc009.dat
[2009/07/14 02:05:48 | 000,031,548 | ---- | C] () -- C:\Windows\System32\perfd009.dat
[2009/07/14 02:05:05 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT
[2009/07/14 02:04:11 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat
[2009/07/13 23:55:01 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2009/07/13 23:51:43 | 000,073,728 | ---- | C] () -- C:\Windows\System32\BthpanContextHandler.dll
[2009/07/13 23:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\System32\BWContextHandler.dll
[2009/07/09 01:03:02 | 000,058,880 | ---- | C] () -- C:\Windows\System32\bdmpegv.dll
[2009/06/10 21:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat
[2009/04/03 12:30:14 | 000,010,296 | ---- | C] () -- C:\Windows\System32\drivers\ASUSHWIO.SYS
 
[color=#E56717]========== LOP Check ==========[/color]
 
[2011/08/14 01:08:44 | 000,000,000 | ---D | M] -- C:\Users\Icikle\AppData\Roaming\DAEMON Tools Pro
[2011/09/30 14:47:07 | 000,000,000 | ---D | M] -- C:\Users\Icikle\AppData\Roaming\Electronic Arts
[2011/10/20 13:46:25 | 000,000,000 | ---D | M] -- C:\Users\Icikle\AppData\Roaming\fltk.org
[2011/08/18 17:30:23 | 000,000,000 | ---D | M] -- C:\Users\Icikle\AppData\Roaming\Free PDF to Word Converter
[2011/06/08 21:18:39 | 000,000,000 | ---D | M] -- C:\Users\Icikle\AppData\Roaming\LolClient
[2010/12/18 17:31:05 | 000,000,000 | ---D | M] -- C:\Users\Icikle\AppData\Roaming\OpenOffice.org
[2011/10/28 20:40:49 | 000,000,000 | ---D | M] -- C:\Users\Icikle\AppData\Roaming\Origin
[2011/12/19 22:21:45 | 000,000,000 | ---D | M] -- C:\Users\Icikle\AppData\Roaming\PerformerSoft
[2011/11/12 15:52:43 | 000,000,000 | ---D | M] -- C:\Users\Icikle\AppData\Roaming\Sports Interactive
[2011/06/07 20:51:12 | 000,000,000 | ---D | M] -- C:\Users\Icikle\AppData\Roaming\SystemRequirementsLab
[2011/07/30 23:44:57 | 000,000,000 | ---D | M] -- C:\Users\Icikle\AppData\Roaming\Tunngle
[2011/12/19 23:26:00 | 000,000,000 | ---D | M] -- C:\Users\Icikle\AppData\Roaming\uTorrent
[2011/11/25 17:50:57 | 000,032,620 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
 
[color=#E56717]========== Purity Check ==========[/color]
 
 

< End of report >