OTL logfile created on: 8/01/2012 4:26:42 PM - Run 1 OTL by OldTimer - Version 3.2.31.0 Folder = F:\ Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.19154) Locale: 00000C09 | Country: Australia | Language: ENA | Date Format: d/MM/yyyy 1.75 Gb Total Physical Memory | 1.36 Gb Available Physical Memory | 77.70% Memory free 3.74 Gb Paging File | 3.51 Gb Available in Paging File | 93.88% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files Drive C: | 69.78 Gb Total Space | 5.91 Gb Free Space | 8.46% Space Free | Partition Type: NTFS Drive D: | 69.51 Gb Total Space | 3.78 Gb Free Space | 5.43% Space Free | Partition Type: NTFS Drive F: | 3.67 Gb Total Space | 3.38 Gb Free Space | 91.99% Space Free | Partition Type: FAT32 Computer Name: REDTRINITY | User Name: user | Logged in as Administrator. Boot Mode: SafeMode with Networking | Scan Mode: Current user Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2012/01/08 08:34:26 | 000,584,192 | ---- | M] (OldTimer Tools) -- F:\OTL.exe PRC - [2009/04/11 16:27:48 | 000,182,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\osk.exe PRC - [2009/04/11 16:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe [color=#E56717]========== Modules (No Company Name) ==========[/color] [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - File not found [Auto | Stopped] -- -- (CLTNetCnService) SRV - File not found [Disabled | Stopped] -- -- (aawservice) SRV - [2011/10/14 16:01:50 | 000,994,360 | ---- | M] (Secunia) [Auto | Stopped] -- C:\Program Files\Secunia\PSI\PSIA.exe -- (Secunia PSI Agent) SRV - [2010/12/08 14:31:06 | 000,628,736 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer) SRV - [2007/07/08 10:25:14 | 000,068,096 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe -- (Macromedia Licensing Service) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - [2011/11/19 12:39:59 | 000,239,168 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\Windows\System32\drivers\dtsoftbus01.sys -- (dtsoftbus01) DRV - [2010/12/02 05:06:29 | 000,108,104 | ---- | M] (SlySoft, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AnyDVD.sys -- (AnyDVD) DRV - [2010/11/26 18:02:30 | 000,015,672 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\SmartDefragDriver.sys -- (SmartDefragDriver) DRV - [2010/09/11 21:04:32 | 000,023,456 | ---- | M] (Phoenix Technologies) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\DrvAgent32.sys -- (DrvAgent32) DRV - [2010/09/01 18:30:58 | 000,015,544 | ---- | M] (Secunia) [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\psi_mf.sys -- (PSI) DRV - [2010/08/17 21:33:18 | 000,022,528 | ---- | M] (pBUS-167 Software - http://www.pbus-167.com) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\nhcDriver.sys -- (nhcDriverDevice) DRV - [2010/02/27 17:02:34 | 000,042,112 | ---- | M] (Service & Quality Technology.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\Capt905c.sys -- (SQTECH905C) DRV - [2010/02/11 17:42:22 | 004,450,816 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\atikmdag.sys -- (R300) DRV - [2010/02/11 17:42:22 | 004,450,816 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\atikmdag.sys -- (atikmdag) DRV - [2009/04/11 14:42:52 | 000,031,616 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (winusb) DRV - [2008/10/29 08:29:54 | 000,043,520 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Rtnicxp.sys -- (RTL8023xp) DRV - [2008/08/26 09:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\pccsmcfd.sys -- (pccsmcfd) DRV - [2008/04/16 14:23:44 | 000,112,144 | ---- | M] (Kaspersky Lab) [Kernel | System | Stopped] -- C:\Windows\System32\drivers\kl1.sys -- (kl1) DRV - [2007/06/19 06:34:48 | 000,737,280 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\athr.sys -- (athr) DRV - [2007/04/09 22:27:07 | 000,031,548 | ---- | M] (PowerISO Computing, Inc.) [Kernel | System | Stopped] -- C:\Windows\System32\drivers\scdemu.sys -- (SCDEmu) DRV - [2007/02/18 01:37:34 | 000,088,448 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Stopped] -- C:\Windows\System32\drivers\nwlnkipx.sys -- (NwlnkIpx) DRV - [2007/01/13 10:34:30 | 001,728,896 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\snp2uvc.sys -- (SNP2UVC) USB2.0 PC Camera (SNP2UVC) DRV - [2006/12/12 14:38:12 | 000,286,208 | ---- | M] (Ralink Technology Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\rt61.sys -- (RT61) DRV - [2006/12/08 11:12:02 | 000,076,584 | ---- | M] () [Kernel | Auto | Stopped] -- C:\Acer\Empowering Technology\eRecovery\int15.sys -- (int15) DRV - [2006/11/29 10:44:52 | 000,008,192 | ---- | M] (Conexant Systems, Inc.) [Kernel | Auto | Stopped] -- C:\Windows\System32\drivers\XAudio.sys -- (XAudio) DRV - [2006/11/13 13:58:16 | 000,037,296 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\btusbflt.sys -- (btusbflt) DRV - [2006/11/13 12:02:00 | 000,076,928 | ---- | M] (ENE Technology Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ESM7SK.sys -- (ESMCR) DRV - [2006/11/13 12:02:00 | 000,062,208 | ---- | M] (ENE Technology Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\EMS7SK.sys -- (EMSCR) DRV - [2006/11/13 12:02:00 | 000,042,240 | ---- | M] (ENE Technology Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ESD7SK.sys -- (ESDCR) DRV - [2006/11/10 15:05:00 | 000,018,688 | ---- | M] (Arcsoft, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\afc.sys -- (Afc) DRV - [2006/09/24 23:28:46 | 000,005,248 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | Boot | Running] -- C:\Windows\system32\speedfan.sys -- (speedfan) DRV - [1996/04/04 05:33:26 | 000,005,248 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\system32\giveio.sys -- (giveio) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://en.sg.acer.yahoo.com IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://en.sg.acer.yahoo.com IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://global.acer.com [binary data] IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = Yahoo! Search IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b1ie7 IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1 IE - HKCU\..\URLSearchHook: {BE89472C-B803-4D1D-9A9A-0A63660E0FE3} - No CLSID value found IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.search.defaultenginename: "Yahoo" FF - prefs.js..browser.search.order.1: "Yahoo" FF - prefs.js..browser.search.order.2: "" FF - prefs.js..browser.search.param.yahoo-fr: "chr-greentree_ff&type=386496&ilc=12" FF - prefs.js..browser.search.selectedEngine: "Yahoo" FF - prefs.js..browser.search.useDBForOrder: true FF - prefs.js..browser.startup.homepage: "http://www.google.com.au/" FF - prefs.js..extensions.enabledItems: {a7c6cf7f-112c-4500-a7ea-39801a327e5f}:1.0.9 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21 FF - prefs.js..extensions.enabledItems: cleardnscache@guoxiaod:1.0.4 FF - prefs.js..extensions.enabledItems: {e4a8a97b-f2ed-450b-b12d-ee082ba24781}:0.8.20100408.6 FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.2.2 FF - prefs.js..extensions.enabledItems: bkmrksync@nokia.com:1.0.0.736 FF - prefs.js..extensions.enabledItems: {A27F3FEF-1113-4cfb-A032-8E12D7D8EE70}:7.3.4.48 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23 FF - prefs.js..extensions.enabledItems: firebug@software.joehewitt.com:1.6.2 FF - prefs.js..extensions.enabledItems: testpilot@labs.mozilla.com:1.0.6 FF - prefs.js..keyword.URL: "http://au.search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&ilc=12&type=386496&p=" FF - prefs.js..network.proxy.type: 0 FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32.dll () FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.) FF - HKLM\Software\MozillaPlugins\@ASC/FileLabPlugin;version=1.1.32: C:\ProgramData\FileLab\Plugin\Framework\npFlPluginS.dll (FileLab) FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX,Inc.) FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Player Plugin,version=1.0.0: File not found FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.) FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.) FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\user\AppData\Local\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.) FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\user\AppData\Local\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.) FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 4.0b12\extensions\\Components: C:\Program Files\Mozilla Firefox 4.0 Beta 12\components [2011/11/13 16:28:16 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 8.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/11/13 16:28:16 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 8.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/11/13 16:28:16 | 000,000,000 | ---D | M] FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\{2A22BC1C-2EDE-47C6-B13C-4EEB80FB1C60}: C:\Users\user\AppData\Local\{2A22BC1C-2EDE-47C6-B13C-4EEB80FB1C60}\ [2011/06/04 22:42:19 | 000,000,000 | ---D | M] [2010/08/11 12:45:11 | 000,000,000 | ---D | M] (No name found) -- C:\Users\user\AppData\Roaming\mozilla\Extensions [2010/08/11 12:45:11 | 000,000,000 | ---D | M] (No name found) -- C:\Users\user\AppData\Roaming\mozilla\Extensions\mozswing@mozswing.org [2011/12/16 08:59:32 | 000,000,000 | ---D | M] (No name found) -- C:\Users\user\AppData\Roaming\mozilla\Firefox\Profiles\w3eubqam.default\extensions [2007/10/20 07:52:57 | 000,000,000 | ---D | M] ("Artic glow") -- C:\Users\user\AppData\Roaming\mozilla\Firefox\Profiles\w3eubqam.default\extensions\{082b6fe0-310a-11db-a98b-0800200c9a66} [2011/11/12 09:27:46 | 000,000,000 | ---D | M] (Greasemonkey) -- C:\Users\user\AppData\Roaming\mozilla\Firefox\Profiles\w3eubqam.default\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781} [2009/01/19 09:18:41 | 000,000,595 | ---- | M] () -- C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\w3eubqam.default\searchplugins\yahoo-search.xml [2011/11/19 10:16:01 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions () (No name found) -- C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\W3EUBQAM.DEFAULT\EXTENSIONS\{563E4790-7E70-11DA-A72B-0800200C9A66}.XPI () (No name found) -- C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\W3EUBQAM.DEFAULT\EXTENSIONS\{A7C6CF7F-112C-4500-A7EA-39801A327E5F}.XPI () (No name found) -- C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\W3EUBQAM.DEFAULT\EXTENSIONS\{D10D0BF8-F5B5-C8B4-A8B2-2B9879E08C5D}.XPI () (No name found) -- C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\W3EUBQAM.DEFAULT\EXTENSIONS\{D4DD63FA-01E4-46A7-B6B1-EDAB7D6AD389}.XPI () (No name found) -- C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\W3EUBQAM.DEFAULT\EXTENSIONS\FIREBUG@SOFTWARE.JOEHEWITT.COM.XPI [2011/11/10 10:04:10 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll [2004/07/02 14:51:00 | 000,327,904 | ---- | M] (Macromedia, Inc.) -- C:\Program Files\mozilla firefox\components\np32asw.dll [2004/07/02 14:51:00 | 000,327,904 | ---- | M] (Macromedia, Inc.) -- C:\Program Files\mozilla firefox\plugins\np32asw.dll [2010/11/12 18:53:06 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll [2011/10/18 19:48:20 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml [2011/11/10 10:04:10 | 000,002,040 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\twitter.xml [color=#E56717]========== Chrome ==========[/color] CHR - default_search_provider: Yahoo! (Enabled) CHR - default_search_provider: search_url = http://au.search.yahoo.com/search?fr=chr-greentree_gc&ei=utf-8&ilc=12&type=386496&p={searchTerms} CHR - default_search_provider: suggest_url = CHR - plugin: Shockwave Flash (Enabled) = C:\Users\user\AppData\Local\Google\Chrome\Application\15.0.874.121\gcswf32.dll CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\system32\Macromed\Flash\NPSWF32.dll CHR - plugin: QuickTime Plug-in 7.1 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin2.dll CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin3.dll CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin4.dll CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin5.dll CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin6.dll CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin7.dll CHR - plugin: Java Deployment Toolkit 6.0.230.5 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll CHR - plugin: Java(TM) Platform SE 6 U23 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll CHR - plugin: Adobe Acrobat (Disabled) = C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll CHR - plugin: Silverlight Plug-In (Enabled) = C:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll CHR - plugin: DivX Web Player (Enabled) = C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll CHR - plugin: Microsoft\u00AE Windows Media Player Firefox Plugin (Enabled) = C:\Program Files\Mozilla Firefox\plugins\np-mswmp.dll CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer CHR - plugin: Native Client (Enabled) = C:\Users\user\AppData\Local\Google\Chrome\Application\15.0.874.121\ppGoogleNaClPluginChrome.dll CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\user\AppData\Local\Google\Chrome\Application\15.0.874.121\pdf.dll CHR - plugin: Authorware Web Player (Enabled) = C:\Program Files\Mozilla Firefox\plugins\np32asw.dll CHR - plugin: DivX Player Netscape Plugin (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npDivxPlayerPlugin.dll CHR - plugin: Windows Genuine Advantage (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npLegitCheckPlugin.dll CHR - plugin: DivX VOD Helper Plug-in (Enabled) = C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll CHR - plugin: Google Earth Plugin (Enabled) = C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.69\npGoogleUpdate3.dll CHR - plugin: iTunes Application Detector (Enabled) = C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll CHR - plugin: Windows Presentation Foundation (Enabled) = c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll CHR - plugin: Default Plug-in (Enabled) = default_plugin O1 HOSTS File: ([2011/02/26 10:43:03 | 000,431,044 | R--- | M]) - C:\Windows\System32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O1 - Hosts: ::1 localhost O1 - Hosts: 127.0.0.1 www.007guard.com O1 - Hosts: 127.0.0.1 007guard.com O1 - Hosts: 127.0.0.1 008i.com O1 - Hosts: 127.0.0.1 www.008k.com O1 - Hosts: 127.0.0.1 008k.com O1 - Hosts: 127.0.0.1 www.00hq.com O1 - Hosts: 127.0.0.1 00hq.com O1 - Hosts: 127.0.0.1 010402.com O1 - Hosts: 127.0.0.1 www.032439.com O1 - Hosts: 127.0.0.1 032439.com O1 - Hosts: 127.0.0.1 www.100888290cs.com O1 - Hosts: 127.0.0.1 100888290cs.com O1 - Hosts: 127.0.0.1 www.100sexlinks.com O1 - Hosts: 127.0.0.1 100sexlinks.com O1 - Hosts: 127.0.0.1 www.10sek.com O1 - Hosts: 127.0.0.1 10sek.com O1 - Hosts: 127.0.0.1 www.123topsearch.com O1 - Hosts: 127.0.0.1 123topsearch.com O1 - Hosts: 127.0.0.1 www.132.com O1 - Hosts: 127.0.0.1 132.com O1 - Hosts: 127.0.0.1 www.136136.net O1 - Hosts: 127.0.0.1 136136.net O1 - Hosts: 127.0.0.1 www.163ns.com O1 - Hosts: 14840 more lines... O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited) O2 - BHO: (ShowBarObj Class) - {83A2F9B1-01A2-4AA5-87D1-45B6B8505E96} - C:\Windows\System32\ActiveToolBand.dll (HiTRUST) O3 - HKLM\..\Toolbar: (Acer eDataSecurity Management) - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Windows\System32\eDStoolbar.dll (HiTRUST) O3 - HKCU\..\Toolbar\ShellBrowser: (Acer eDataSecurity Management) - {5CBE3B7C-1E47-477E-A7DD-396DB0476E29} - C:\Windows\System32\eDStoolbar.dll (HiTRUST) O4 - HKCU..\RunOnce: [] C:\Windows\System32\osk.exe (Microsoft Corporation) O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Low Rights present O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 149 O8 - Extra context menu item: Download Using &BitSpirit - C:\Program Files\BitSpirit\bsurl.htm () O9 - Extra Button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm () O9 - Extra 'Tools' menuitem : @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm () O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited) O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Windows\System32\nwprovau.dll (Microsoft Corporation) O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.) O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - %SystemRoot%\system32\wshbth.dll File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - %SystemRoot%\system32\wshbth.dll File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - %SystemRoot%\system32\wshbth.dll File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - %SystemRoot%\system32\wshbth.dll File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - %SystemRoot%\system32\wshbth.dll File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - %SystemRoot%\system32\wshbth.dll File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - %SystemRoot%\system32\wshbth.dll File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - %SystemRoot%\system32\wshbth.dll File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - %SystemRoot%\system32\wshbth.dll File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - %SystemRoot%\system32\wshbth.dll File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - %SystemRoot%\system32\wshbth.dll File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000013 - %SystemRoot%\system32\wshbth.dll File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000014 - %SystemRoot%\system32\wshbth.dll File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000015 - %SystemRoot%\system32\wshbth.dll File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000016 - %SystemRoot%\system32\wshbth.dll File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000017 - %SystemRoot%\system32\wshbth.dll File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000018 - %SystemRoot%\system32\wshbth.dll File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000019 - %SystemRoot%\system32\wshbth.dll File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000020 - %SystemRoot%\system32\wshbth.dll File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000021 - %SystemRoot%\system32\wshbth.dll File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000022 - %SystemRoot%\system32\wshbth.dll File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000023 - %SystemRoot%\system32\wshbth.dll File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000024 - %SystemRoot%\system32\wshbth.dll File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000025 - %SystemRoot%\system32\wshbth.dll File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000026 - %SystemRoot%\system32\wshbth.dll File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000027 - %SystemRoot%\system32\wshbth.dll File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000028 - %SystemRoot%\system32\wshbth.dll File not found O13 - gopher Prefix: missing O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab (Java Plug-in 1.6.0_23) O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab (Reg Error: Key error.) O16 - DPF: {CAFEEFAC-0016-0000-0000-ABCDEFFEDCBA} Reg Error: Value error. (Java Plug-in 1.6.0) O16 - DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab (Java Plug-in 1.6.0_03) O16 - DPF: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab (Java Plug-in 1.6.0_23) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab (Java Plug-in 1.6.0_23) O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{01E83BCD-5676-4A6B-818D-BD2FD5F6873B}: NameServer = 208.67.222.222,208.67.220.220 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{40722F8D-7DFD-4C77-B2EB-EFC6B638B024}: DhcpNameServer = 10.1.1.1 192.168.0.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{7CAAFF8E-7795-4FAD-B7C4-777914DC493F}: DhcpNameServer = 192.168.1.1 O20 - HKLM Winlogon: Shell - (explorer.exe) -C:\Windows\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) -C:\Windows\System32\userinit.exe (Microsoft Corporation) O24 - Desktop WallPaper: C:\Users\user\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg O24 - Desktop BackupWallPaper: C:\Users\user\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2006/09/19 07:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ] O33 - MountPoints2\{0672d7c0-fa0f-11dd-9b25-001b24465528}\Shell\Auto\command - "" = F:\Start.exe O33 - MountPoints2\{0672d7c0-fa0f-11dd-9b25-001b24465528}\Shell\AutoRun\command - "" = C:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL F:\Start.exe O33 - MountPoints2\{a7b2899a-0c32-11e1-bde5-f1633dc99ae4}\Shell - "" = AutoRun O33 - MountPoints2\{a7b2899a-0c32-11e1-bde5-f1633dc99ae4}\Shell\AutoRun\command - "" = G:\Setup.exe O33 - MountPoints2\{a7b2899a-0c32-11e1-bde5-f1633dc99ae4}\Shell\dinstall\command - "" = G:\Setup\directx7\dxsetup.exe O33 - MountPoints2\{b70c48f2-eadf-11dd-85e3-001b24465528}\Shell\Auto\command - "" = F:\Start.exe O33 - MountPoints2\{b70c48f2-eadf-11dd-85e3-001b24465528}\Shell\AutoRun\command - "" = C:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL F:\Start.exe O33 - MountPoints2\{b70c48fc-eadf-11dd-85e3-001b24465528}\Shell\Auto\command - "" = Start.exe O33 - MountPoints2\{b70c48fc-eadf-11dd-85e3-001b24465528}\Shell\AutoRun\command - "" = C:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL Start.exe O33 - MountPoints2\{c3bc44d7-2253-11de-98b8-001b24465528}\Shell\Auto\command - "" = F:\Start.exe O33 - MountPoints2\{c3bc44d7-2253-11de-98b8-001b24465528}\Shell\AutoRun\command - "" = C:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL F:\Start.exe O34 - HKLM BootExecute: (autocheck autochk *) O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] File not found -- C:\Windows\System32\drivers\ File not found -- C:\Windows\System32\ [2012/01/04 10:40:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WhoCrashed [2012/01/04 10:40:44 | 000,000,000 | ---D | C] -- C:\Program Files\WhoCrashed [2012/01/03 11:53:42 | 000,000,000 | ---D | C] -- C:\backup [2012/01/03 11:45:41 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Free Window Registry Repair [2012/01/03 11:45:41 | 000,000,000 | ---D | C] -- C:\Program Files\Free Window Registry Repair [2012/01/03 11:22:06 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Roaming\PC Unleashed Online [2012/01/03 11:22:06 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Roaming\DriverCure [2012/01/03 11:22:03 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC Unleashed Online [2012/01/03 11:22:02 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\PC Unleashed Online [2012/01/03 11:22:01 | 000,000,000 | ---D | C] -- C:\ProgramData\PC Unleashed Online [2012/01/03 11:22:01 | 000,000,000 | ---D | C] -- C:\Program Files\PC Unleashed Online [2012/01/03 11:16:24 | 004,451,592 | ---- | C] (PC Unleashed Online Inc.) -- C:\Users\user\Desktop\PC Unleashed Installer.exe [2012/01/03 11:00:37 | 000,000,000 | ---D | C] -- C:\Users\user\Desktop\afd reg fix [2011/12/27 10:39:52 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\Secunia PSI [2011/12/27 10:39:45 | 000,000,000 | ---D | C] -- C:\Program Files\Secunia [2011/12/27 10:25:12 | 000,062,976 | ---- | C] (Microsoft Corporation) -- C:\Users\user\Desktop\raspptp.sys [2011/12/27 09:56:10 | 001,686,016 | ---- | C] (Clever Components) -- C:\Windows\System32\clinetsuitex6.ocx [2011/12/27 09:56:10 | 000,427,864 | ---- | C] (Xceed Software Inc (450) 442-2626 support@xceedsoft.com www.xceedsoft.com) -- C:\Windows\System32\XceedZip.dll [2011/12/27 09:56:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Genius Professional Edition [2011/12/27 09:56:08 | 000,000,000 | ---D | C] -- C:\Program Files\Driver-Soft [2011/12/24 10:57:15 | 000,509,264 | ---- | C] (Microsoft Corporation) -- C:\Users\user\Desktop\winsdk_web.exe [2011/12/23 10:40:48 | 000,000,000 | ---D | C] -- C:\ProgramData\PC Tools [2011/12/23 10:40:47 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Roaming\Product_RM [2011/12/23 10:36:46 | 004,734,424 | ---- | C] (PC Tools) -- C:\Users\user\Desktop\rminstall_aff.exe [2011/12/23 09:18:51 | 000,000,000 | ---D | C] -- C:\Users\user\Desktop\memtest86-4.0a.iso [2011/12/23 09:17:06 | 000,000,000 | ---D | C] -- C:\Users\user\Desktop\bluescreenview [2011/12/23 09:01:31 | 000,000,000 | ---D | C] -- C:\Windows\Registration [2011/12/22 09:08:05 | 000,000,000 | -HSD | C] -- C:\Users\user\AppData\Local\47365ad0 [2011/12/22 08:53:36 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{FD373993-D3A5-4CB7-9AD7-D6408360B406} [2011/12/22 08:53:24 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{08F4FEB4-74D4-4672-B81C-BD2D9D611038} [2011/12/21 18:57:08 | 000,000,000 | ---D | C] -- C:\Users\user\Desktop\xmas 2011 [2011/12/21 08:22:09 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{58A11241-9CC4-4CE9-9832-85A9C3A8F78B} [2011/12/21 08:21:52 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{14668DF3-4544-489E-B586-ECAD7A88926D} [2011/12/21 07:40:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileLab [2011/12/21 07:40:28 | 000,000,000 | ---D | C] -- C:\ProgramData\FileLab [2011/12/21 07:29:04 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Roaming\Machete Lite [2011/12/21 06:59:35 | 000,000,000 | ---D | C] -- C:\Users\user\Desktop\VideoEditMasterV2_0 [2011/12/20 23:05:12 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Roaming\avidemux [2011/12/20 23:04:47 | 000,000,000 | ---D | C] -- C:\Program Files\Avidemux 2.5 [2011/12/20 22:53:10 | 000,000,000 | ---D | C] -- C:\Users\user\Documents\AVS4YOU [2011/12/20 22:38:10 | 000,000,000 | ---D | C] -- C:\ProgramData\AVS4YOU [2011/12/20 22:37:41 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Roaming\AVS4YOU [2011/12/20 22:32:15 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\AVSMedia [2011/12/20 22:32:13 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msxml3a.dll [2011/12/20 22:32:13 | 000,000,000 | ---D | C] -- C:\Program Files\AVS4YOU [2011/12/20 20:19:29 | 000,000,000 | ---D | C] -- C:\Users\user\Desktop\WMV [2011/12/20 20:18:18 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Roaming\Digiarty [2011/12/20 20:18:18 | 000,000,000 | ---D | C] -- C:\Program Files\Digiarty [2011/12/19 08:29:08 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{A2516962-DCD3-4BA5-82FD-9AEA4BC9B9A0} [2011/12/19 08:28:52 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{7F4F3098-5404-4048-8189-C0D3E72B9DEE} [2011/12/18 08:20:50 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{A9BEC6E9-2B22-426C-84D6-B6007DF44FB5} [2011/12/18 08:20:38 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{0F6ABFA2-1E9A-4889-87B7-37603FEC492E} [2011/12/17 07:45:08 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{7102F4E6-40F8-41EE-9883-DBA3A303C124} [2011/12/17 07:44:55 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{64B03EBB-F989-4054-9CD9-61363B480A5F} [2011/12/16 09:05:56 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{EDC3CF09-4733-47EC-BEC4-5615ABAB4A6B} [2011/12/16 09:05:44 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{F5D78DC9-CBE8-4D9F-8A5D-94875175F03E} [2011/12/15 17:48:04 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{C6D56294-CDB2-4B44-BE8B-499D28050CC2} [2011/12/15 17:47:51 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{DF07B82F-6E57-46BC-81D1-CF365670FF6B} [2011/12/14 20:24:34 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{5476D92F-43A6-4CE0-A5BF-E5A48237157C} [2011/12/14 20:24:22 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{E2B87957-7A4D-44AE-8AA6-76D9D83FD049} [2011/12/14 07:34:48 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{622DCF34-F8FC-4A95-9FD7-67F734841D7C} [2011/12/14 07:34:37 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{3263E332-E135-4C65-9CE6-5BD27FEBC947} [2011/12/13 09:36:18 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{9B404AC2-9763-4819-B89D-BBA05D2D9DAB} [2011/12/13 09:36:06 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{FCADEF03-B387-4EBE-A7D0-925166223008} [2011/12/12 15:46:45 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{668113E6-C43B-4EF7-BB07-6A34E380CF72} [2011/12/12 15:46:32 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{CBF03367-FD17-436E-A69F-6EAEE8ADEE94} [2011/12/12 07:14:49 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{F8A226C5-9145-4400-9319-66D1EED8AF1F} [2011/12/12 07:14:37 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{440C2E60-0AD8-4971-B7B1-4693EA26FB69} [2011/12/11 12:45:54 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{64F81638-FF55-4371-912C-7A080B51769B} [2011/12/10 09:48:34 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{2DD370FF-A996-40C8-A222-1C1C00F41BE5} [2011/12/10 09:48:15 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{5DB04F40-53B4-43A9-898C-5922A78F7C28} [2007/07/13 19:01:11 | 000,323,584 | ---- | C] ( ) -- C:\Windows\System32\LXCRhcp.dll [2007/05/31 19:26:08 | 000,016,384 | ---- | C] ( ) -- C:\Windows\System32\ClearEvent.exe [2007/05/31 19:19:37 | 000,053,248 | ---- | C] ( ) -- C:\Windows\System32\csnp2uvc.dll [2007/03/16 23:18:48 | 000,053,248 | ---- | C] ( ) -- C:\Windows\System32\Interop.Shell32.dll [2006/12/12 02:12:08 | 000,385,968 | ---- | C] ( ) -- C:\Windows\System32\lxcrih.exe [2006/11/07 07:37:46 | 000,643,072 | ---- | C] ( ) -- C:\Windows\System32\lxcrpmui.dll [2006/11/07 07:35:50 | 001,224,704 | ---- | C] ( ) -- C:\Windows\System32\lxcrserv.dll [2006/11/07 07:28:08 | 000,421,888 | ---- | C] ( ) -- C:\Windows\System32\lxcrcomm.dll [2006/11/07 07:26:14 | 000,585,728 | ---- | C] ( ) -- C:\Windows\System32\lxcrlmpm.dll [2006/11/07 07:24:44 | 000,397,312 | ---- | C] ( ) -- C:\Windows\System32\lxcriesc.dll [2006/11/07 07:21:48 | 000,094,208 | ---- | C] ( ) -- C:\Windows\System32\lxcrpplc.dll [2006/11/07 07:20:48 | 000,684,032 | ---- | C] ( ) -- C:\Windows\System32\lxcrcomc.dll [2006/11/07 07:20:14 | 000,163,840 | ---- | C] ( ) -- C:\Windows\System32\lxcrprox.dll [2006/11/07 07:12:44 | 000,413,696 | ---- | C] ( ) -- C:\Windows\System32\lxcrinpa.dll [2006/11/07 07:11:58 | 000,991,232 | ---- | C] ( ) -- C:\Windows\System32\lxcrusb1.dll [7 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ] [1 C:\ProgramData\*.tmp files -> C:\ProgramData\*.tmp -> ] [1 C:\ProgramData\*.tmp files -> C:\ProgramData\*.tmp -> ] [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] File not found -- C:\Windows\System32\drivers\ File not found -- C:\Windows\System32\ [2012/01/08 16:25:04 | 000,607,600 | ---- | M] () -- C:\Windows\System32\perfh009.dat [2012/01/08 16:25:04 | 000,107,478 | ---- | M] () -- C:\Windows\System32\perfc009.dat [2012/01/08 16:20:48 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2012/01/08 16:20:23 | 197,736,626 | ---- | M] () -- C:\Windows\MEMORY.DMP [2012/01/08 16:18:14 | 000,000,878 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job [2012/01/08 16:18:13 | 000,003,296 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0 [2012/01/08 16:18:13 | 000,003,296 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0 [2012/01/04 10:40:55 | 000,023,025 | ---- | M] () -- C:\Users\user\AppData\Local\Temp16.html [2012/01/04 10:40:47 | 000,001,955 | ---- | M] () -- C:\Users\user\AppData\Local\Temp1.html [2012/01/03 11:45:41 | 000,000,844 | ---- | M] () -- C:\Users\user\Desktop\Free Window Registry Repair.lnk [2012/01/03 11:22:11 | 000,000,426 | ---- | M] () -- C:\Windows\tasks\PC Unleashed Registration3.job [2012/01/03 11:22:03 | 000,000,958 | ---- | M] () -- C:\Users\user\Desktop\PC Unleashed Online PC Unleashed.lnk [2012/01/03 11:22:02 | 000,000,436 | ---- | M] () -- C:\Windows\tasks\PC Unleashed Update Version3.job [2012/01/03 11:22:02 | 000,000,398 | ---- | M] () -- C:\Windows\tasks\PC Unleashed Defrag.job [2012/01/03 11:22:02 | 000,000,380 | ---- | M] () -- C:\Windows\tasks\PC Unleashed.job [2012/01/03 11:16:08 | 004,451,592 | ---- | M] (PC Unleashed Online Inc.) -- C:\Users\user\Desktop\PC Unleashed Installer.exe [2012/01/03 11:11:50 | 000,333,917 | ---- | M] () -- C:\Users\user\Desktop\FSS.exe [2012/01/03 11:06:25 | 000,033,792 | ---- | M] () -- C:\Windows\System32\umstartup.etl [2012/01/03 11:00:25 | 000,239,104 | ---- | M] () -- C:\Users\user\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2012/01/03 10:55:52 | 000,000,611 | ---- | M] () -- C:\Users\user\Desktop\afd reg fix.zip [2011/12/27 10:43:52 | 000,000,012 | ---- | M] () -- C:\Windows\bthservsdp.dat [2011/12/27 10:42:07 | 000,000,390 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{CDB10A40-66EC-4850-B40F-72B11E25B490}.job [2011/12/27 09:56:10 | 000,000,920 | ---- | M] () -- C:\Users\user\Desktop\Driver Genius Professional Edition.lnk [2011/12/24 10:53:20 | 000,509,264 | ---- | M] (Microsoft Corporation) -- C:\Users\user\Desktop\winsdk_web.exe [2011/12/24 09:54:12 | 000,290,836 | ---- | M] () -- C:\Users\user\Desktop\Synaptics_v15_2_20_C_XP32_Vista32_Win7-32_Signed_Marketing_SGS94_UI-Scrybe.exe [2011/12/23 10:39:17 | 000,008,052 | ---- | M] () -- C:\Users\user\AppData\Local\d3d9caps.dat [2011/12/23 10:36:16 | 004,734,424 | ---- | M] (PC Tools) -- C:\Users\user\Desktop\rminstall_aff.exe [2011/12/23 09:02:24 | 000,391,784 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT [2011/12/22 11:13:03 | 000,000,904 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3799663574-4239777656-4106443164-1000UA.job [2011/12/22 11:08:00 | 000,000,882 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job [2011/12/22 09:09:51 | 000,414,368 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl [2011/12/21 18:19:47 | 000,000,852 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3799663574-4239777656-4106443164-1000Core.job [2011/12/20 20:18:28 | 000,001,019 | ---- | M] () -- C:\Users\Public\Desktop\WinX DVD Ripper.lnk [2011/12/17 14:48:40 | 000,015,266 | ---- | M] () -- C:\Users\user\Desktop\avatar233848_1.gif [2011/12/11 23:31:40 | 001,146,006 | ---- | M] () -- C:\Users\user\world3.png [2011/12/11 23:30:01 | 001,278,898 | ---- | M] () -- C:\Users\user\world2.png [2011/12/11 23:29:02 | 001,648,150 | ---- | M] () -- C:\Users\user\world1.png [2011/12/11 13:41:37 | 000,065,536 | ---- | M] () -- C:\Windows\System32\Ikeext.etl [7 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ] [1 C:\ProgramData\*.tmp files -> C:\ProgramData\*.tmp -> ] [1 C:\ProgramData\*.tmp files -> C:\ProgramData\*.tmp -> ] [color=#E56717]========== Files Created - No Company Name ==========[/color] [2012/01/04 10:40:55 | 000,023,025 | ---- | C] () -- C:\Users\user\AppData\Local\Temp16.html [2012/01/04 10:40:47 | 000,001,955 | ---- | C] () -- C:\Users\user\AppData\Local\Temp1.html [2012/01/03 11:45:41 | 000,000,844 | ---- | C] () -- C:\Users\user\Desktop\Free Window Registry Repair.lnk [2012/01/03 11:22:11 | 000,000,426 | ---- | C] () -- C:\Windows\tasks\PC Unleashed Registration3.job [2012/01/03 11:22:03 | 000,000,958 | ---- | C] () -- C:\Users\user\Desktop\PC Unleashed Online PC Unleashed.lnk [2012/01/03 11:22:02 | 000,000,436 | ---- | C] () -- C:\Windows\tasks\PC Unleashed Update Version3.job [2012/01/03 11:22:02 | 000,000,398 | ---- | C] () -- C:\Windows\tasks\PC Unleashed Defrag.job [2012/01/03 11:22:02 | 000,000,380 | ---- | C] () -- C:\Windows\tasks\PC Unleashed.job [2012/01/03 11:12:48 | 000,333,917 | ---- | C] () -- C:\Users\user\Desktop\FSS.exe [2012/01/03 11:00:34 | 000,000,611 | ---- | C] () -- C:\Users\user\Desktop\afd reg fix.zip [2011/12/27 10:42:07 | 000,000,390 | -H-- | C] () -- C:\Windows\tasks\User_Feed_Synchronization-{CDB10A40-66EC-4850-B40F-72B11E25B490}.job [2011/12/27 10:39:46 | 000,000,866 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Secunia PSI.lnk [2011/12/27 09:56:10 | 000,000,920 | ---- | C] () -- C:\Users\user\Desktop\Driver Genius Professional Edition.lnk [2011/12/24 09:55:19 | 000,290,836 | ---- | C] () -- C:\Users\user\Desktop\Synaptics_v15_2_20_C_XP32_Vista32_Win7-32_Signed_Marketing_SGS94_UI-Scrybe.exe [2011/12/20 20:18:28 | 000,001,019 | ---- | C] () -- C:\Users\Public\Desktop\WinX DVD Ripper.lnk [2011/12/17 14:48:34 | 000,015,266 | ---- | C] () -- C:\Users\user\Desktop\avatar233848_1.gif [2011/12/11 23:31:39 | 001,146,006 | ---- | C] () -- C:\Users\user\world3.png [2011/12/11 23:30:00 | 001,278,898 | ---- | C] () -- C:\Users\user\world2.png [2011/12/10 12:18:16 | 001,648,150 | ---- | C] () -- C:\Users\user\world1.png [2011/12/07 16:43:51 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin [2011/11/30 15:46:35 | 000,175,616 | ---- | C] () -- C:\Windows\System32\unrar.dll [2011/11/19 13:21:09 | 000,000,640 | ---- | C] () -- C:\Windows\EFXP.INI [2011/11/19 12:49:25 | 000,000,982 | ---- | C] () -- C:\Windows\EF.ini [2011/10/28 16:52:30 | 000,001,492 | ---- | C] () -- C:\ProgramData\ss.ini [2011/06/04 22:42:25 | 000,000,000 | ---- | C] () -- C:\Users\user\AppData\Local\Dweyigokim.bin [2011/06/04 22:42:21 | 000,000,120 | ---- | C] () -- C:\Users\user\AppData\Local\Vsixikovuv.dat [2011/03/28 20:21:45 | 000,000,021 | -H-- | C] () -- C:\Users\user\AppData\Local\xftredahs.dat [2011/03/01 16:45:29 | 000,029,008 | ---- | C] () -- C:\Windows\System32\SmartDefragBootTime.exe [2011/03/01 16:45:29 | 000,015,672 | ---- | C] () -- C:\Windows\System32\drivers\SmartDefragDriver.sys [2011/02/21 10:27:10 | 000,000,125 | -HS- | C] () -- C:\ProgramData\.zreglib [2010/12/13 21:27:40 | 000,000,552 | ---- | C] () -- C:\Users\user\AppData\Local\d3d8caps.dat [2010/08/06 09:55:29 | 000,000,736 | ---- | C] () -- C:\Windows\SamsungMaster.INI [2010/08/05 18:09:27 | 000,107,612 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchema.bin [2010/08/05 18:09:26 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll [2010/08/05 18:08:35 | 000,018,904 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchemaTrivial.bin [2010/01/14 12:41:00 | 000,309,248 | ---- | C] () -- C:\Windows\System32\sqlite36_engine.dll [2010/01/14 12:38:00 | 000,023,552 | ---- | C] () -- C:\Windows\System32\DirectCOM.dll [2009/04/24 08:29:16 | 000,189,051 | ---- | C] () -- C:\Windows\System32\atiicdxx.dat [2009/03/26 21:27:53 | 000,000,417 | ---- | C] () -- C:\Windows\crackpdf.INI [2009/02/23 16:00:06 | 000,010,752 | ---- | C] () -- C:\Windows\System32\BASSMOD.dll [2008/12/17 22:26:00 | 000,765,952 | ---- | C] () -- C:\Windows\System32\xvidcore.dll [2008/12/17 22:26:00 | 000,180,224 | ---- | C] () -- C:\Windows\System32\xvidvfw.dll [2008/12/17 22:26:00 | 000,008,704 | ---- | C] () -- C:\Windows\System32\vidccleaner.exe [2008/10/25 16:45:29 | 000,000,000 | ---- | C] () -- C:\Windows\iPlayer.INI [2008/09/13 21:44:59 | 000,034,706 | ---- | C] () -- C:\Windows\scunin.dat [2008/05/23 08:22:18 | 003,596,288 | ---- | C] () -- C:\Windows\System32\qt-dx331.dll [2008/03/10 02:15:53 | 000,000,000 | ---- | C] () -- C:\Windows\PowerReg.dat [2008/02/24 23:19:45 | 000,691,545 | ---- | C] () -- C:\Windows\unins000.exe [2008/02/24 23:19:45 | 000,002,541 | ---- | C] () -- C:\Windows\unins000.dat [2008/02/21 15:58:12 | 000,000,169 | ---- | C] () -- C:\Windows\disney.ini [2007/11/13 14:33:07 | 000,020,436 | ---- | C] () -- C:\Windows\W2BNEUnin.dat [2007/10/27 09:25:10 | 000,598,016 | ---- | C] () -- C:\Windows\System32\viscomqtde.dll [2007/10/26 22:55:39 | 000,394,240 | ---- | C] () -- C:\Windows\System32\Smab.dll [2007/10/26 22:55:38 | 000,502,784 | ---- | C] () -- C:\Windows\x2.64.exe [2007/10/26 22:55:38 | 000,240,128 | ---- | C] () -- C:\Windows\System32\x.264.exe [2007/10/26 22:55:38 | 000,217,073 | ---- | C] () -- C:\Windows\meta4.exe [2007/10/26 22:55:38 | 000,066,560 | ---- | C] () -- C:\Windows\MOTA113.exe [2007/10/26 22:55:38 | 000,027,648 | ---- | C] () -- C:\Windows\System32\AVSredirect.dll [2007/09/16 11:44:02 | 000,008,052 | ---- | C] () -- C:\Users\user\AppData\Local\d3d9caps.dat [2007/08/19 16:11:12 | 000,226,832 | ---- | C] () -- C:\Windows\System32\nwshlxnt.dll [2007/08/17 19:35:25 | 000,000,013 | -H-- | C] () -- C:\ProgramData\jgalt.ayn [2007/07/14 20:09:19 | 000,000,236 | ---- | C] () -- C:\Users\user\AppData\Roaming\wklnhst.dat [2007/07/14 16:45:17 | 000,000,699 | ---- | C] () -- C:\Windows\eReg.dat [2007/07/13 19:03:32 | 000,045,056 | ---- | C] () -- C:\Windows\System32\LXPRMON.DLL [2007/07/13 19:03:32 | 000,032,768 | ---- | C] () -- C:\Windows\System32\LXPMONUI.DLL [2007/07/13 19:01:11 | 000,274,432 | ---- | C] () -- C:\Windows\System32\LXCRinst.dll [2007/07/13 18:56:09 | 000,344,064 | ---- | C] () -- C:\Windows\System32\lxcrcoin.dll [2007/07/07 16:25:20 | 000,000,335 | ---- | C] () -- C:\Windows\nsreg.dat [2007/07/07 13:59:56 | 000,239,104 | ---- | C] () -- C:\Users\user\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2007/06/27 19:33:34 | 000,000,037 | ---- | C] () -- C:\Windows\Acer.ini [2007/05/31 19:26:08 | 000,016,384 | ---- | C] () -- C:\Windows\System32\LauncheRyAgentUser.exe [2007/05/31 19:23:02 | 000,401,408 | ---- | C] () -- C:\Windows\AcerOrbiCam.exe [2007/05/31 19:19:09 | 000,106,496 | ---- | C] () -- C:\Windows\DetectHWID.exe [2007/05/31 19:10:20 | 000,000,012 | ---- | C] () -- C:\Windows\bthservsdp.dat [2007/05/31 19:03:10 | 000,000,030 | ---- | C] () -- C:\Windows\SETPANEL.INI [2007/05/31 19:03:08 | 000,000,094 | ---- | C] () -- C:\Windows\CLEANUP.INI [2007/03/17 00:42:18 | 000,001,024 | RH-- | C] () -- C:\Windows\System32\NTIBUN4.dll [2007/03/16 23:34:22 | 000,198,144 | ---- | C] () -- C:\Windows\System32\_psisdecd.dll [2007/03/16 23:25:09 | 000,076,584 | ---- | C] () -- C:\Windows\System32\drivers\int15.sys [2007/03/16 23:25:09 | 000,015,656 | ---- | C] () -- C:\Windows\System32\drivers\int15_64.sys [2007/03/16 23:24:17 | 000,065,536 | ---- | C] () -- C:\Windows\System32\NATTraversal.dll [2007/03/16 23:18:48 | 000,331,776 | ---- | C] () -- C:\Windows\System32\ScrollBarLib.dll [2007/03/16 23:04:02 | 000,356,352 | ---- | C] () -- C:\Windows\EMCRI.dll [2007/03/16 21:24:01 | 003,107,788 | ---- | C] () -- C:\Windows\System32\atiumdva.dat [2007/03/16 21:23:47 | 001,060,424 | ---- | C] () -- C:\Windows\System32\WdfCoInstaller01000.dll [2007/03/16 21:23:26 | 001,728,896 | ---- | C] () -- C:\Windows\System32\drivers\snp2uvc.sys [2007/02/07 16:58:10 | 000,204,800 | ---- | C] () -- C:\Windows\System32\NotesActnMenu.dll [2007/02/07 16:57:58 | 000,266,240 | ---- | C] () -- C:\Windows\System32\NotesExtmngr.dll [2007/02/07 16:57:20 | 000,086,016 | ---- | C] () -- C:\Windows\System32\MSNSpook.dll [2007/02/07 16:56:30 | 000,028,672 | ---- | C] () -- C:\Windows\System32\BatchCrypto.dll [2007/02/07 16:56:28 | 000,073,728 | ---- | C] () -- C:\Windows\System32\APISlice.dll [2007/02/07 16:52:08 | 000,063,488 | ---- | C] () -- C:\Windows\System32\ShowErrMsg.dll [2006/12/26 08:44:48 | 000,022,016 | ---- | C] () -- C:\Windows\System32\MailFormat_U.dll [2006/11/30 08:28:54 | 000,389,120 | ---- | C] () -- C:\Windows\System32\btwhidcs.dll [2006/11/13 22:50:06 | 000,071,680 | ---- | C] () -- C:\Windows\System32\HTCA_SelfExtract.bin [2006/11/02 22:57:28 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat [2006/11/02 22:47:37 | 000,391,784 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT [2006/11/02 22:35:32 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll [2006/11/02 20:33:01 | 000,607,600 | ---- | C] () -- C:\Windows\System32\perfh009.dat [2006/11/02 20:33:01 | 000,287,440 | ---- | C] () -- C:\Windows\System32\perfi009.dat [2006/11/02 20:33:01 | 000,107,478 | ---- | C] () -- C:\Windows\System32\perfc009.dat [2006/11/02 20:33:01 | 000,030,674 | ---- | C] () -- C:\Windows\System32\perfd009.dat [2006/11/02 20:25:44 | 000,159,744 | ---- | C] () -- C:\Windows\System32\atitmmxx.dll [2006/11/02 20:23:21 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat [2006/11/02 18:58:30 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin [2006/11/02 18:19:00 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT [2006/11/02 17:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini [2006/11/02 17:25:31 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat [2006/08/15 07:01:48 | 000,065,536 | ---- | C] () -- C:\Windows\System32\lxcrcaps.dll [2006/08/09 05:58:04 | 000,692,224 | ---- | C] () -- C:\Windows\System32\lxcrdrs.dll [2006/03/23 18:33:20 | 000,040,960 | ---- | C] () -- C:\Windows\System32\lxcrvs.dll [2006/03/06 10:41:02 | 000,073,728 | ---- | C] () -- C:\Windows\System32\AMV_DecDLL.dll [2005/12/21 02:54:04 | 000,061,440 | ---- | C] () -- C:\Windows\System32\lxcrcnv4.dll [2004/01/12 18:53:52 | 000,172,032 | ---- | C] () -- C:\Windows\System32\lame_enc.dll [2001/12/27 08:12:30 | 000,065,536 | ---- | C] () -- C:\Windows\System32\multiplex_vcd.dll [2001/11/15 05:56:00 | 001,802,240 | ---- | C] () -- C:\Windows\System32\lcppn21.dll [2001/09/04 15:46:38 | 000,110,592 | ---- | C] () -- C:\Windows\System32\Hmpg12.dll [2001/07/31 08:33:56 | 000,118,784 | ---- | C] () -- C:\Windows\System32\HMPV2_ENC.dll [2001/07/24 14:04:36 | 000,118,784 | ---- | C] () -- C:\Windows\System32\HMPV2_ENC_MMX.dll [1996/04/04 05:33:26 | 000,005,248 | ---- | C] () -- C:\Windows\System32\giveio.sys [color=#E56717]========== Alternate Data Streams ==========[/color] @Alternate Data Stream - 858 bytes -> C:\Users\user\Documents\The Parenting Sanctuary Informer - August 2007.eml:OECustomProperty @Alternate Data Stream - 122 bytes -> C:\ProgramData\TEMP:15DE523E @Alternate Data Stream - 114 bytes -> C:\ProgramData\TEMP:0F8F5844 @Alternate Data Stream - 112 bytes -> C:\ProgramData\TEMP:D1B5B4F1 @Alternate Data Stream - 1012 bytes -> C:\Users\user\Documents\TPS Informer - August 2007.eml:OECustomProperty @Alternate Data Stream - 100 bytes -> C:\ProgramData\TEMP:ADF211B1 < End of report >