OTL logfile created on: 2/25/2012 5:36:43 PM - Run 
OTLPE by OldTimer - Version 3.1.48.0     Folder = X:\Programs\OTLPE
Windows 7 Home Premium Service Pack 1 (Version = 6.1.7601) - Type = System
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
 
3.00 Gb Total Physical Memory | 3.00 Gb Available Physical Memory | 90.00% Memory free
3.00 Gb Paging File | 3.00 Gb Available in Paging File | 98.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 231.42 Gb Total Space | 156.72 Gb Free Space | 67.72% Space Free | Partition Type: NTFS
Drive X: | 284.12 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS
 
Computer Name: REATOGO | User Name: SYSTEM
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
Using ControlSet: ControlSet001
 
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
 
SRV - [2012/02/24 11:29:23 | 006,480,192 | ---- | M] (SurfRight B.V.) [Auto] -- C:\Users\Mike\Downloads\HitmanPro35.exe -- (HitmanPro35CrusaderBoot) Hitman Pro 3.5 Crusader (Boot)
SRV - [2012/02/22 06:30:57 | 000,494,464 | ---- | M] (Sysinternals - www.sysinternals.com) [On_Demand] -- C:\Users\Mike\AppData\Local\Temp\ITSQS.exe -- (ITSQS)
SRV - [2012/02/21 17:56:57 | 000,116,608 | ---- | M] (SUPERAntiSpyware.com) [Auto] -- C:\Program Files\SUPERAntiSpyware\SASCORE.EXE -- (!SASCORE)
SRV - [2012/01/03 08:10:42 | 000,063,928 | ---- | M] (Adobe Systems Incorporated) [Auto] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2011/10/12 05:25:22 | 004,433,248 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto] -- C:\Program Files\AVG\AVG2012\AVGIDSAgent.exe -- (AVGIDSAgent)
SRV - [2011/08/10 14:35:20 | 000,227,184 | ---- | M] () [Auto] -- C:\Program Files\Motorola\MotoHelper\MotoHelperService.exe -- (MotoHelper)
SRV - [2011/08/02 05:09:08 | 000,192,776 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto] -- C:\Program Files\AVG\AVG2012\avgwdsvc.exe -- (avgwd)
SRV - [2010/12/13 14:37:46 | 000,135,536 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Program Files\Microsoft LifeCam\MSCamS32.exe -- (MSCamSvc)
SRV - [2010/05/01 07:35:48 | 001,343,400 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\Wat\WatAdminSvc.exe -- (WatAdminSvc)
SRV - [2010/04/15 19:30:58 | 000,137,216 | ---- | M] (Eagletron Inc.) [Auto] -- C:\Program Files\Common Files\Eagletron\TrackerPodSvcSvr.exe -- (Eagletron TrackerPod Service)
SRV - [2009/09/04 11:43:38 | 000,595,232 | ---- | M] (Broadcom Corporation.) [Auto] -- C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe -- (btwdins)
SRV - [2009/08/21 08:29:40 | 000,464,224 | ---- | M] (TOSHIBA Corporation) [Auto] -- C:\Program Files\Toshiba\Power Saver\TosCoSrv.exe -- (TosCoSrv)
SRV - [2009/07/20 11:28:10 | 000,121,360 | ---- | M] (Logitech, Inc.) [On_Demand] -- C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe -- (LBTServ)
SRV - [2009/07/13 20:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009/07/13 20:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2008/01/21 18:54:46 | 000,083,312 | ---- | M] (TOSHIBA Corporation) [Auto] -- C:\Program Files\Toshiba\TOSHIBA DVD PLAYER\TNaviSrv.exe -- (TNaviSrv)
SRV - [2007/12/25 16:07:14 | 000,040,960 | ---- | M] (TOSHIBA CORPORATION) [Auto] -- C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe -- (ConfigFree Service)
SRV - [2007/11/21 20:23:32 | 000,129,632 | ---- | M] (TOSHIBA Corporation) [Auto] -- C:\Windows\System32\TODDSrv.exe -- (TODDSrv)
SRV - [2007/10/23 19:27:16 | 000,066,928 | ---- | M] () [Auto] -- C:\Toshiba\IVP\swupdate\swupdtmr.exe -- (Swupdtmr)
SRV - [2007/09/28 19:05:16 | 000,128,360 | ---- | M] (TOSHIBA CORPORATION) [Auto] -- C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe -- (TOSHIBA Bluetooth Service)
SRV - [2007/01/25 21:47:50 | 000,136,816 | ---- | M] () [Auto] -- C:\Toshiba\IVP\ISM\pinger.exe -- (pinger)
SRV - [2006/10/09 15:28:06 | 000,230,928 | ---- | M] (DigitalPersona, Inc.) [Auto] -- C:\Program Files\DigitalPersona\Bin\DpHost.exe -- (DpHost)
SRV - [2006/08/23 19:39:48 | 000,049,152 | ---- | M] (Ulead Systems, Inc.) [Auto] -- C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe -- (UleadBurningHelper)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV - File not found [Kernel | System] --  -- (SydexFDD)
DRV - File not found [Kernel | System] --  -- (SpNtDrv)
DRV - File not found [Kernel | On_Demand] --  -- (motusbdevice)
DRV - File not found [Kernel | On_Demand] --  -- (Motousbnet)
DRV - File not found [Kernel | On_Demand] --  -- (MotoSwitchService)
DRV - File not found [Kernel | On_Demand] --  -- (motmodem)
DRV - File not found [Kernel | On_Demand] --  -- (motccgpfl)
DRV - File not found [Kernel | On_Demand] --  -- (motccgp)
DRV - File not found [Kernel | On_Demand] --  -- (BTCFilterService)
DRV - [2012/02/24 11:31:03 | 000,023,624 | ---- | M] () [Kernel | Disabled] -- C:\Windows\System32\drivers\hitmanpro35.sys -- (hitmanpro35)
DRV - [2012/02/21 17:56:38 | 000,067,664 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System] -- C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS -- (SASKUTIL)
DRV - [2011/10/07 05:23:48 | 000,230,608 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System] -- C:\Windows\System32\drivers\avgldx86.sys -- (Avgldx86)
DRV - [2011/10/04 05:21:28 | 000,016,720 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand] -- C:\Windows\System32\drivers\AVGIDSShim.sys -- (AVGIDSShim)
DRV - [2011/09/22 17:10:34 | 000,238,696 | ---- | M] (Microsoft Corporation) [File_System | Disabled] -- C:\Windows\System32\drivers\RsFx0105.sys -- (RsFx0105)
DRV - [2011/09/13 05:30:10 | 000,032,592 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot] -- C:\Windows\System32\drivers\avgrkx86.sys -- (Avgrkx86)
DRV - [2011/08/08 05:08:58 | 000,040,016 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System] -- C:\Windows\System32\drivers\avgmfx86.sys -- (Avgmfx86)
DRV - [2011/07/11 00:14:38 | 000,295,248 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System] -- C:\Windows\System32\drivers\avgtdix.sys -- (Avgtdix)
DRV - [2011/07/11 00:14:14 | 000,024,272 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand] -- C:\Windows\System32\drivers\AVGIDSFilter.sys -- (AVGIDSFilter)
DRV - [2011/07/11 00:14:12 | 000,134,736 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand] -- C:\Windows\System32\drivers\AVGIDSDriver.sys -- (AVGIDSDriver)
DRV - [2011/07/11 00:14:12 | 000,023,120 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | Boot] -- C:\Windows\System32\drivers\AVGIDSEH.sys -- (AVGIDSEH)
DRV - [2010/11/20 05:24:41 | 000,052,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV - [2010/11/20 04:59:44 | 000,035,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\winusb.sys -- (WinUsb)
DRV - [2010/05/20 15:27:24 | 000,030,576 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\nx6000.sys -- (MSHUSBVideo)
DRV - [2010/04/14 00:01:48 | 000,045,736 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand] -- C:\Windows\System32\drivers\btusbflt.sys -- (btusbflt)
DRV - [2009/12/20 10:53:32 | 000,234,016 | ---- | M] (Realtek                                            ) [Kernel | On_Demand] -- C:\Windows\System32\drivers\Rtlh86.sys -- (RTL8169)
DRV - [2009/11/27 07:40:02 | 000,075,264 | ---- | M] (u-blox AG) [Kernel | On_Demand] -- C:\Windows\System32\drivers\ubloxusb.sys -- (ubloxusb)
DRV - [2009/11/18 19:36:00 | 000,035,016 | ---- | M] (Eagletron Inc.) [Kernel | Auto] -- C:\Windows\System32\drivers\dvdriver.sys -- (DVDRIVER)
DRV - [2009/07/14 14:28:42 | 000,023,512 | ---- | M] (TOSHIBA Corporation) [Kernel | Boot] -- C:\Windows\System32\drivers\TVALZ_O.SYS -- (TVALZ)
DRV - [2009/07/13 17:13:48 | 001,035,776 | ---- | M] (LSI Corp) [Kernel | On_Demand] -- C:\Windows\System32\drivers\AGRSM.sys -- (AgereSoftModem)
DRV - [2009/07/13 17:02:51 | 004,231,168 | ---- | M] (Intel Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\netw5v32.sys -- (netw5v32) Intel(R)
DRV - [2009/06/17 11:56:32 | 000,028,560 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand] -- C:\Windows\System32\drivers\LUsbFilt.sys -- (LUsbFilt)
DRV - [2009/06/17 11:56:16 | 000,037,392 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand] -- C:\Windows\System32\drivers\LMouFilt.Sys -- (LMouFilt)
DRV - [2009/06/17 11:56:06 | 000,035,472 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand] -- C:\Windows\System32\drivers\LHidFilt.Sys -- (LHidFilt)
DRV - [2008/07/15 19:59:06 | 000,017,960 | ---- | M] (Chicony Electronics Co., Ltd.) [Kernel | On_Demand] -- C:\Windows\System32\drivers\UVCFTR_S.SYS -- (UVCFTR)
DRV - [2007/03/22 01:02:04 | 000,037,376 | ---- | M] (REDC) [Kernel | Auto] -- C:\Windows\System32\drivers\rixdptsk.sys -- (rismxdp)
DRV - [2007/02/24 17:42:22 | 000,039,936 | ---- | M] (REDC) [Kernel | Auto] -- C:\Windows\System32\drivers\rimmptsk.sys -- (rimmptsk)
DRV - [2007/01/23 19:40:20 | 000,042,496 | ---- | M] (REDC) [Kernel | Auto] -- C:\Windows\System32\drivers\rimsptsk.sys -- (rimsptsk)
DRV - [2006/11/20 17:11:14 | 000,007,168 | ---- | M] (TOSHIBA Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\FwLnk.sys -- (FwLnk)
DRV - [2006/11/09 01:32:00 | 000,219,264 | ---- | M] (TOSHIBA CORPORATION) [Kernel | Disabled] -- C:\Windows\system32\drivers\kr10i.sys -- (KR10I)
DRV - [2006/11/09 01:31:00 | 000,211,072 | ---- | M] (TOSHIBA CORPORATION) [Kernel | Disabled] -- C:\Windows\system32\drivers\kr10n.sys -- (KR10N)
DRV - [2006/10/23 19:32:20 | 000,009,216 | ---- | M] (TOSHIBA Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\tosrfec.sys -- (tosrfec)
DRV - [2006/10/18 14:50:04 | 000,016,128 | ---- | M] (TOSHIBA Corporation.) [Kernel | On_Demand] -- C:\Windows\System32\drivers\tdcmdpst.sys -- (tdcmdpst)
DRV - [2006/10/04 21:42:42 | 000,002,560 | ---- | M] (Sonic Solutions) [Kernel | System] -- C:\Windows\System32\drivers\cdralw2k.sys -- (Cdralw2k)
DRV - [2006/10/04 21:42:42 | 000,002,432 | ---- | M] (Sonic Solutions) [Kernel | System] -- C:\Windows\System32\drivers\cdr4_xp.sys -- (Cdr4_xp)
DRV - [2006/09/16 16:25:38 | 000,035,584 | ---- | M] (DigitalPersona®, Inc.) [Kernel | On_Demand] -- C:\Windows\System32\drivers\dpK0Bx01.sys -- (dpK0Bx01)
DRV - [2006/09/16 16:23:06 | 000,047,360 | ---- | M] (DigitalPersona®, Inc.) [Kernel | On_Demand] -- C:\Windows\System32\drivers\usbdpfp.sys -- (usbdpfp)
DRV - [2005/11/16 15:18:00 | 001,461,376 | ---- | M] (Adaptec Inc.) [Kernel | On_Demand] -- C:\Windows\System32\drivers\avcuwil2.sys -- (AvcUWil2)
DRV - [2005/10/31 12:49:00 | 000,018,048 | ---- | M] (Adaptec, Inc) [Kernel | On_Demand] -- C:\Windows\System32\drivers\avcuwfl2.sys -- (AVC3310F)
DRV - [2004/07/22 07:36:16 | 000,042,240 | ---- | M] (Prolific Technology Inc.) [Kernel | On_Demand] -- C:\Windows\System32\drivers\ser2plms.sys -- (ser2plms)
DRV - [2004/05/11 06:27:32 | 000,212,608 | ---- | M] (OrangeWare, Inc.) [Kernel | Auto] -- C:\Windows\System32\drivers\WebCamDV.sys -- (WebCamDV)
DRV - [2004/01/30 13:08:59 | 000,012,672 | ---- | M] (OrangeWare, Inc.) [Kernel | On_Demand] -- C:\Windows\System32\drivers\wcdvaud.sys -- (WCDV_Aud)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
IE - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.toshibadirect.com/dpdstart
 
 
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
 
IE - HKU\Mike_ON_C\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.toshibadirect.com/dpdstart
IE - HKU\Mike_ON_C\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKU\Mike_ON_C\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKU\Mike_ON_C\Software\Microsoft\Internet Explorer\Main,Start Page Restore = about:blank
IE - HKU\Mike_ON_C\Software\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKU\Mike_ON_C\..\URLSearchHook: {472734EA-242A-422b-ADF8-83D1E48CC825} - Reg Error: Key error. File not found
IE - HKU\Mike_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\Mike_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = 127.0.0.1:9421;192.168.*.*
 
IE - HKU\NetworkService_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
 
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE:  File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\4.1.10111.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\Program Files\Microsoft Office\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeLive,version=1.5: C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\Program Files\Microsoft Office\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/wpi,version=1.0: C:\Program Files\Microsoft\Web Platform Installer\\npwpidetector.dll ()
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=12.0.1.647: C:\Program Files\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=12.0.1.647: C:\Program Files\real\realplayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpchromebrowserrecordext;version=12.0.1.652: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprphtml5videoshim;version=12.0.1.652: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=12.0.1.647: C:\Program Files\real\realplayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=:  
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.99\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.99\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{1E73965B-8B48-48be-9C8D-68B920ABC1C4}: C:\Program Files\AVG\AVG2012\Firefox4\ [2012/02/01 08:14:22 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2012/02/20 06:26:58 | 000,000,000 | ---D | M]
 
 
O1 HOSTS File: ([2012/02/21 22:50:30 | 000,000,824 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG2012\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (no name) - {9D425283-D487-4337-BAB6-AB8354A81457} - No CLSID value found.
O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
O2 - BHO: (Yontoo Layers) - {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} -  File not found
O3 - HKLM\..\Toolbar: (no name) - {9D425283-D487-4337-BAB6-AB8354A81457} - No CLSID value found.
O3 - HKU\Mike_ON_C\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O3 - HKU\Mike_ON_C\..\Toolbar\WebBrowser: (no name) - {9D425283-D487-4337-BAB6-AB8354A81457} - No CLSID value found.
O4 - HKLM..\Run: [00TCrdMain] C:\Program Files\Toshiba\FlashCards\TCrdMain.exe (TOSHIBA Corporation)
O4 - HKLM..\Run: [AVG_TRAY] C:\Program Files\AVG\AVG2012\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [Camera Assistant Software] C:\Program Files\Camera Assistant Software for Toshiba\traybar.exe (Chicony)
O4 - HKLM..\Run: [CLMLServer] C:\Program Files\CyberLink\PowerCinema for TOSHIBA\Kernel\CLML\CLMLSvc.exe (CyberLink)
O4 - HKLM..\Run: [DPAgnt] C:\Program Files\DigitalPersona\Bin\DPAgnt.exe (DigitalPersona, Inc.)
O4 - HKLM..\Run: [HSON] C:\Program Files\Toshiba\TBS\HSON.exe (TOSHIBA Corporation)
O4 - HKLM..\Run: [ITSecMng] C:\Program Files\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe ( TOSHIBA CORPORATION)
O4 - HKLM..\Run: [Kernel and Hardware Abstraction Layer] C:\Windows\KHALMNPR.Exe (Logitech, Inc.)
O4 - HKLM..\Run: [LifeCam] C:\Program Files\Microsoft LifeCam\LifeExp.exe (Microsoft Corporation)
O4 - HKLM..\Run: [OWCWebCamDV] C:\Windows\system\wcdvtray.exe (OrangeWare, Inc.)
O4 - HKLM..\Run: [PCMAgent] C:\Program Files\CyberLink\PowerCinema for TOSHIBA\PCMAgent.exe (CyberLink Corp.)
O4 - HKLM..\Run: [RtHDVCpl] C:\Windows\RtHDVCpl.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [ScUninst] C:\Users\Mike\AppData\Local\Temp\ScUninst.exe (Way2call Communications Ltd.)
O4 - HKLM..\Run: [SmoothView] C:\Program Files\Toshiba\SmoothView\SmoothView.exe (TOSHIBA Corporation)
O4 - HKLM..\Run: [TaskTray]  File not found
O4 - HKLM..\Run: [TkBellExe] C:\program files\real\realplayer\Update\realsched.exe (RealNetworks, Inc.)
O4 - HKLM..\Run: [TPwrMain] C:\Program Files\Toshiba\Power Saver\TPwrMain.exe (TOSHIBA Corporation)
O4 - HKU\.DEFAULT..\Run: [dplaysvr]  File not found
O4 - HKU\Mike_ON_C..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE (SUPERAntiSpyware.com)
O4 - HKU\Mike_ON_C..\Run: [TOSCDSPD] C:\Program Files\Toshiba\TOSCDSPD\TOSCDSPD.exe (TOSHIBA)
O4 - HKU\LocalService_ON_C..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O4 - HKU\NetworkService_ON_C..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Run: CEC_CM_SW = C:\Windows\system32\config\systemprofile\AppData\Roaming\42CB3E.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - C:\Program Files\Microsoft Office\Office14\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: Se&nd to OneNote - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O8 - Extra context menu item: Send image to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm ()
O8 - Extra context menu item: Send page to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll (Sun Microsystems, Inc.)
O9 - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra Button: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O13 - gopher Prefix: missing
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/C/0/C/C0CBBA88-A6F2-48D9-9B0E-1719D1177202/LegitCheckControl.cab (Windows Genuine Advantage Validation Tool)
O16 - DPF: {1C3DE665-D259-4C72-9D7D-C51FCB4CCFB9} http://ryansmarine.viewnetcam.com:50000/SysCamInst.cab (Panasonic Network Camera)
O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} http://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab (Facebook Photo Uploader 5 Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab (Java Plug-in 1.6.0_03)
O16 - DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab (Java Plug-in 1.6.0_03)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab (Java Plug-in 1.6.0_03)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O16 - DPF: {DE625294-70E6-45ED-B895-CFFA13AEB044} http://68.15.12.110:8086/activex/AMC.cab (AxisMediaControlEmb Class)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O16 - DPF: {FDAC3966-5DDA-4DE8-B936-14714E467426} http://173.164.248.35/viewer/common/audio.cab (Canon Network Camea Audio Receiver)
O16 - DPF: {FE92D9C3-4A69-4EC7-8651-1DC8531D0075} http://68.15.12.110:8012/user/TSBnwCam.CAB (TSBnwCam Control)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 209.18.47.61 209.18.47.62 192.168.1.1
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG2012\avgpp.dll (AVG Technologies CZ, s.r.o.)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) -  File not found
O20 - Winlogon\Notify\DPWLN  : DllName - C:\Windows\system32\DPWLEvHd.dll - C:\Windows\System32\DPWLEvHd.dll (DigitalPersona, Inc.)
O20 - Winlogon\Notify\LBTWlgn: DllName - c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll - C:\Program Files\Common Files\Logishrd\Bluetooth\LBTWLgn.dll (Logitech, Inc.)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL (SuperAdBlocker.com)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/06/10 16:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2006/03/24 06:06:41 | 000,000,053 | R--- | M] () - X:\AUTORUN.INF -- [ CDFS ]
O33 - MountPoints2\{1a9fc001-a6ed-11df-b59a-000272ab4494}\Shell - "" = AutoRun
O33 - MountPoints2\{1a9fc001-a6ed-11df-b59a-000272ab4494}\Shell\AutoRun\command - "" = F:\setup.exe -a
O33 - MountPoints2\{98d7b9f8-afac-11e0-8bef-001e333433bb}\Shell - "" = AutoRun
O33 - MountPoints2\{98d7b9f8-afac-11e0-8bef-001e333433bb}\Shell\AutoRun\command - "" = E:\setup.exe -a
O33 - MountPoints2\{b8769dfc-a352-11e0-8341-001e333433bb}\Shell - "" = AutoRun
O33 - MountPoints2\{b8769dfc-a352-11e0-8341-001e333433bb}\Shell\AutoRun\command - "" = F:\setup.exe -a
O34 - HKLM BootExecute: (autocheck autochk *) -  File not found
O34 - HKLM BootExecute: (C:\PROGRA~1\AVG\AVG2012\avgrsx.exe /sync /restart) - C:\Program Files\AVG\AVG2012\avgrsx.exe (AVG Technologies CZ, s.r.o.)
O34 - HKLM BootExecute: (bootdelete) - C:\Windows\System32\bootdelete.exe (SurfRight B.V.)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2012/02/24 11:41:33 | 000,012,872 | ---- | C] (SurfRight B.V.) -- C:\Windows\System32\bootdelete.exe
[2012/02/24 11:30:00 | 000,000,000 | ---D | C] -- C:\ProgramData\Hitman Pro
[2012/02/23 23:49:36 | 000,000,000 | ---D | C] -- C:\Users\Mike\AppData\Local\{985ABA6E-1CEB-4B56-A12B-A3691EA80FF4}
[2012/02/23 23:49:25 | 000,000,000 | ---D | C] -- C:\Users\Mike\AppData\Local\{BF43E938-C045-4B1A-9537-AB6AFDFE0227}
[2012/02/23 17:05:10 | 000,000,000 | ---D | C] -- C:\ProgramData\PC Tools
[2012/02/23 11:48:55 | 000,000,000 | ---D | C] -- C:\Users\Mike\AppData\Local\{67AC2953-C88A-46AD-AD4A-A4233584E396}
[2012/02/23 11:48:36 | 000,000,000 | ---D | C] -- C:\Users\Mike\AppData\Local\{5342F956-E7A4-4C48-9AFD-DB8465E4219D}
[2012/02/22 05:51:00 | 000,000,000 | ---D | C] -- C:\Users\Mike\AppData\Local\{35FB42A1-EFAE-43AC-AADA-C197D9BC9DC4}
[2012/02/22 05:50:40 | 000,000,000 | ---D | C] -- C:\Users\Mike\AppData\Local\{CA9E22F8-418B-45D8-8F71-FFB68C51BA0F}
[2012/02/21 17:50:09 | 000,000,000 | ---D | C] -- C:\Users\Mike\AppData\Local\{B45C1F8A-4CF8-4707-BEFF-8B9652150FC5}
[2012/02/21 17:49:56 | 000,000,000 | ---D | C] -- C:\Users\Mike\AppData\Local\{B535F8AB-88AC-437D-B68E-9670D9182259}
[2012/02/20 06:34:26 | 000,000,000 | ---D | C] -- C:\Users\Mike\AppData\Local\{65067E31-1D96-4194-AAB1-F9E0416AC465}
[2012/02/20 06:34:02 | 000,000,000 | ---D | C] -- C:\Users\Mike\AppData\Local\{78ACE10B-35E1-4724-960E-49C7C9C35FE3}
[2012/02/20 02:43:19 | 000,000,000 | ---D | C] -- C:\Users\Mike\AppData\Local\{E2688B55-3941-4090-B3D5-EF1D9BE840A7}
[2012/02/20 02:43:10 | 000,000,000 | ---D | C] -- C:\Users\Mike\AppData\Local\{AFA83908-C99E-408F-BBAE-C01EF153A702}
[2012/02/20 02:42:57 | 000,000,000 | ---D | C] -- C:\Users\Mike\AppData\Local\{D031911A-0F1D-42E7-A26A-396063446F39}
[2012/02/19 14:42:29 | 000,000,000 | ---D | C] -- C:\Users\Mike\AppData\Local\{C89F1D6F-1EA8-479E-BFA0-BABA703FF92E}
[2012/02/18 23:51:04 | 000,000,000 | ---D | C] -- C:\Users\Mike\AppData\Local\{54FB8247-BAF9-4CA9-9D50-DDAD076216B4}
[2012/02/18 23:50:53 | 000,000,000 | ---D | C] -- C:\Users\Mike\AppData\Local\{D8E721A0-32CF-4575-9BE5-529BE43E4884}
[2012/02/18 20:46:38 | 000,000,000 | ---D | C] -- C:\Qoobox
[2012/02/18 20:46:12 | 000,000,000 | ---D | C] -- C:\32788R22FWJFW
[2012/02/18 15:57:16 | 000,000,000 | ---D | C] -- C:\Users\Mike\AppData\Roaming\Ulead Systems
[2012/02/18 15:57:06 | 000,000,000 | ---D | C] -- C:\Users\Mike\Documents\Ulead DVD MovieFactory
[2012/02/18 14:53:33 | 002,382,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2012/02/18 14:53:32 | 000,716,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript.dll
[2012/02/18 14:53:31 | 001,798,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
[2012/02/18 14:53:31 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2012/02/18 14:53:30 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\url.dll
[2012/02/18 14:53:30 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2012/02/18 14:53:27 | 001,427,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2012/02/18 14:53:05 | 002,343,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2012/02/18 13:42:19 | 000,000,000 | ---D | C] -- C:\Intel
[2012/02/18 12:28:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2012/02/18 12:28:36 | 000,020,464 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2012/02/18 11:50:15 | 000,000,000 | ---D | C] -- C:\Users\Mike\AppData\Local\{77E5FF78-B997-4622-B9BF-5B71A3F1376D}
[2012/02/18 11:49:38 | 000,000,000 | ---D | C] -- C:\Users\Mike\AppData\Local\{DC26F4C1-8358-433E-8D7B-BA45A237F2A0}
[2012/02/18 07:02:14 | 000,000,000 | ---D | C] -- C:\Users\Mike\AppData\Local\{B3ACDF28-3BD0-4C83-8733-A291F802EF96}
[2012/02/17 19:01:51 | 000,000,000 | ---D | C] -- C:\Users\Mike\AppData\Local\{4941C780-618C-47FB-ADFE-1BEA2D151B55}
[2012/02/17 07:01:23 | 000,000,000 | ---D | C] -- C:\Users\Mike\AppData\Local\{5CB61C05-9ABE-4211-B252-49E3747216A6}
[2012/02/16 19:00:58 | 000,000,000 | ---D | C] -- C:\Users\Mike\AppData\Local\{8E619F7A-C3AF-4A98-A96D-8F7FDF1BE158}
[2012/02/16 19:00:47 | 000,000,000 | ---D | C] -- C:\Users\Mike\AppData\Local\{C81D1AEC-EAF4-4B25-8734-9E84CAF3647E}
[2012/02/16 11:12:38 | 000,000,000 | ---D | C] -- C:\Users\Mike\AppData\Roaming\Malwarebytes
[2012/02/16 11:12:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2012/02/16 11:12:29 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2012/02/16 07:00:22 | 000,000,000 | ---D | C] -- C:\Users\Mike\AppData\Local\{1545D97E-4FC1-4E70-89D9-679A414D6409}
[2012/02/16 07:00:08 | 000,000,000 | ---D | C] -- C:\Users\Mike\AppData\Local\{8900A161-8521-41E7-BF3F-43A3C6646271}
[2012/02/15 16:38:46 | 000,000,000 | ---D | C] -- C:\Users\Mike\AppData\Local\{0E63733E-21CD-4264-9C0C-70EA737BA0F1}
[2012/02/15 16:38:32 | 000,000,000 | ---D | C] -- C:\Users\Mike\AppData\Local\{62EDBD9D-22C6-429D-B7FC-2603BEAE31A1}
[2012/02/15 04:38:02 | 000,000,000 | ---D | C] -- C:\Users\Mike\AppData\Local\{960A7B3E-E7B1-436B-B8FE-98640E76E9F4}
[2012/02/14 16:37:39 | 000,000,000 | ---D | C] -- C:\Users\Mike\AppData\Local\{C6944C6A-5D9F-4CBF-A9D1-C7B7F1F156AE}
[2012/02/14 16:37:29 | 000,000,000 | ---D | C] -- C:\Users\Mike\AppData\Local\{B0EC813E-CFF4-46C7-A034-5671023B8408}
[2012/02/14 01:12:51 | 000,000,000 | ---D | C] -- C:\Users\Mike\AppData\Local\{75F345C4-753B-46F4-ABE3-566955CB1AF4}
[2012/02/13 13:12:21 | 000,000,000 | ---D | C] -- C:\Users\Mike\AppData\Local\{223B71A0-02A7-4858-AFC1-A858B43F975F}
[2012/02/13 01:11:49 | 000,000,000 | ---D | C] -- C:\Users\Mike\AppData\Local\{D8DBDB79-ED04-45BC-B2C5-EA79E55B83F6}
[2012/02/12 13:11:19 | 000,000,000 | ---D | C] -- C:\Users\Mike\AppData\Local\{F173E388-0BC5-4B5B-B643-8B578C6E782A}
[2012/02/12 01:10:50 | 000,000,000 | ---D | C] -- C:\Users\Mike\AppData\Local\{20566B4D-CE62-4448-A46C-8E4C3F4EF9E7}
[2012/02/11 13:10:20 | 000,000,000 | ---D | C] -- C:\Users\Mike\AppData\Local\{B21D86A8-F6FB-46DB-8BD4-75E25CE7AB86}
[2012/02/11 01:09:50 | 000,000,000 | ---D | C] -- C:\Users\Mike\AppData\Local\{F963AB52-DB56-43B0-AEB2-E0EDE9E60C8D}
[2012/02/10 13:09:25 | 000,000,000 | ---D | C] -- C:\Users\Mike\AppData\Local\{45349407-4851-4A6B-B311-0ADB600D85AD}
[2012/02/10 01:09:03 | 000,000,000 | ---D | C] -- C:\Users\Mike\AppData\Local\{9E4EB32A-C404-44D5-8341-903E9EB20810}
[2012/02/09 13:08:41 | 000,000,000 | ---D | C] -- C:\Users\Mike\AppData\Local\{86B7BA6F-8396-41AA-97C5-0088F4A5DDD4}
[2012/02/09 01:08:20 | 000,000,000 | ---D | C] -- C:\Users\Mike\AppData\Local\{7D49DAA1-EAF6-4590-9C06-7D3D4354ABCD}
[2012/02/08 13:07:57 | 000,000,000 | ---D | C] -- C:\Users\Mike\AppData\Local\{13C14BFE-ED66-4598-B2FE-125F00387218}
[2012/02/08 01:07:35 | 000,000,000 | ---D | C] -- C:\Users\Mike\AppData\Local\{83C9F9DA-2088-4745-9643-950AC0C4092B}
[2012/02/07 13:07:13 | 000,000,000 | ---D | C] -- C:\Users\Mike\AppData\Local\{00A8C89B-1DAB-41AA-8622-4E3502ADE088}
[2012/02/07 01:06:51 | 000,000,000 | ---D | C] -- C:\Users\Mike\AppData\Local\{FD885E42-FE7B-4B9F-92DB-AB98AC55E31A}
[2012/02/06 13:06:30 | 000,000,000 | ---D | C] -- C:\Users\Mike\AppData\Local\{448C01D1-C7A7-4804-B8B1-9EF34E39A675}
[2012/02/06 01:06:08 | 000,000,000 | ---D | C] -- C:\Users\Mike\AppData\Local\{1933979C-F2F6-4691-B576-7D207A576728}
[2012/02/05 13:05:47 | 000,000,000 | ---D | C] -- C:\Users\Mike\AppData\Local\{080F944A-B97A-4BF9-A4A4-C08FFE90BA41}
[2012/02/05 01:05:24 | 000,000,000 | ---D | C] -- C:\Users\Mike\AppData\Local\{6EBC5230-5D47-42D5-956C-7A1B02A956CF}
[2012/02/04 17:23:56 | 000,000,000 | ---D | C] -- C:\Program Files\LastPass
[2012/02/04 13:04:59 | 000,000,000 | ---D | C] -- C:\Users\Mike\AppData\Local\{821BC5BC-1613-4104-8800-9CDDCB70319B}
[2012/02/04 01:04:36 | 000,000,000 | ---D | C] -- C:\Users\Mike\AppData\Local\{851B7486-A556-4F48-A9FF-6C0E6DA1EE59}
[2012/02/03 13:04:13 | 000,000,000 | ---D | C] -- C:\Users\Mike\AppData\Local\{79AF760F-E18E-4BE6-998B-1E129FCA0C29}
[2012/02/03 01:03:52 | 000,000,000 | ---D | C] -- C:\Users\Mike\AppData\Local\{0A90ECD8-62F9-44FF-B794-948607E229FA}
[2012/02/02 13:03:29 | 000,000,000 | ---D | C] -- C:\Users\Mike\AppData\Local\{828867CD-B98D-4694-960F-6B53474742B3}
[2012/02/02 01:03:07 | 000,000,000 | ---D | C] -- C:\Users\Mike\AppData\Local\{03013DBC-6FA8-48B7-9FC3-8989C3553C18}
[2012/02/01 13:02:45 | 000,000,000 | ---D | C] -- C:\Users\Mike\AppData\Local\{E534C89B-4880-422B-AD96-A135789EDAD9}
[2012/02/01 01:02:24 | 000,000,000 | ---D | C] -- C:\Users\Mike\AppData\Local\{67147821-375D-46E3-8FBF-097CA4EC1024}
[2012/01/31 13:02:03 | 000,000,000 | ---D | C] -- C:\Users\Mike\AppData\Local\{4BE7FFC8-BA5A-435A-9437-88FADC49C978}
[2012/01/31 01:01:41 | 000,000,000 | ---D | C] -- C:\Users\Mike\AppData\Local\{F750FD8C-211C-4226-A282-CF8DBEE0944D}
[2012/01/30 13:01:20 | 000,000,000 | ---D | C] -- C:\Users\Mike\AppData\Local\{812ADAC0-AAA3-45E2-B59E-4AB384AD236E}
[2012/01/30 01:00:59 | 000,000,000 | ---D | C] -- C:\Users\Mike\AppData\Local\{DF4BF218-1618-4506-B511-4568EEDD5ECF}
[2012/01/29 13:00:37 | 000,000,000 | ---D | C] -- C:\Users\Mike\AppData\Local\{EA1826FB-D5F9-4247-B1A9-948746317C37}
[2012/01/29 01:00:15 | 000,000,000 | ---D | C] -- C:\Users\Mike\AppData\Local\{D0DD3D62-D838-4A8B-AC2F-6CB9D65F9158}
[2012/01/28 12:59:52 | 000,000,000 | ---D | C] -- C:\Users\Mike\AppData\Local\{D299CE7A-112F-4932-8C2F-34591A6B1C43}
[2012/01/28 00:59:31 | 000,000,000 | ---D | C] -- C:\Users\Mike\AppData\Local\{35E19A0B-4FA1-4787-A092-0B436108EFC9}
[2012/01/27 12:59:09 | 000,000,000 | ---D | C] -- C:\Users\Mike\AppData\Local\{46E2FDAB-0F2D-4480-BAF2-CADBFDBF4D78}
[2012/01/27 00:58:47 | 000,000,000 | ---D | C] -- C:\Users\Mike\AppData\Local\{1440D0CF-C926-4A51-ABC7-1A4529042F65}
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2012/02/24 17:58:32 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012/02/24 11:41:33 | 000,012,872 | ---- | M] (SurfRight B.V.) -- C:\Windows\System32\bootdelete.exe
[2012/02/24 11:41:33 | 000,003,594 | ---- | M] () -- C:\Windows\System32\.crusader
[2012/02/24 11:41:33 | 000,000,926 | ---- | M] () -- C:\Windows\System32\bootdelete.lst
[2012/02/24 11:31:03 | 000,023,624 | ---- | M] () -- C:\Windows\System32\drivers\hitmanpro35.sys
[2012/02/24 11:25:00 | 000,000,882 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2012/02/24 09:34:54 | 089,952,282 | ---- | M] () -- C:\Windows\System32\drivers\Avg\incavi.avm
[2012/02/23 20:12:24 | 000,000,878 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2012/02/23 17:41:47 | 000,009,728 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012/02/23 17:41:47 | 000,009,728 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012/02/23 17:33:51 | 2408,017,920 | -HS- | M] () -- C:\hiberfil.sys
[2012/02/21 23:00:48 | 000,000,000 | R--D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
[2012/02/21 22:53:07 | 000,006,744 | ---- | M] () -- C:\Users\Mike\Documents\MyPasswords.pwd
[2012/02/21 22:50:30 | 000,000,824 | ---- | M] () -- C:\Windows\System32\drivers\etc\hosts
[2012/02/21 21:13:40 | 000,567,336 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2012/02/21 20:24:50 | 000,000,000 | R--D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
[2012/02/21 20:24:50 | 000,000,000 | ---D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games
[2012/02/20 09:44:55 | 482,110,895 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2012/02/20 06:29:54 | 000,000,000 | ---D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
[2012/02/20 06:29:54 | 000,000,000 | ---D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Real
[2012/02/20 06:29:54 | 000,000,000 | ---D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Works
[2012/02/20 06:29:54 | 000,000,000 | ---D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools
[2012/02/20 06:29:54 | 000,000,000 | ---D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Live Add-in
[2012/02/20 06:29:54 | 000,000,000 | ---D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
[2012/02/20 06:29:54 | 000,000,000 | ---D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft LifeCam
[2012/02/20 06:29:54 | 000,000,000 | ---D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2012/02/20 06:29:53 | 000,000,000 | ---D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Performer
[2012/02/20 06:29:53 | 000,000,000 | ---D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dorgem
[2012/02/20 06:29:53 | 000,000,000 | ---D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG PC Tuneup 2011
[2012/02/20 06:27:06 | 000,000,000 | R--D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2012/02/20 06:27:06 | 000,000,000 | R--D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
[2012/02/20 06:26:58 | 000,000,000 | R--D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
[2012/02/20 06:26:58 | 000,000,000 | ---D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Yawcam
[2012/02/20 06:26:58 | 000,000,000 | ---D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip
[2012/02/20 06:26:58 | 000,000,000 | ---D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media
[2012/02/20 06:26:58 | 000,000,000 | ---D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Way2call Multiple Hi-Phone Devices Drivers
[2012/02/20 06:26:56 | 000,000,000 | ---D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TOSHIBA
[2012/02/20 06:26:54 | 000,000,000 | ---D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TOSHIBA Support
[2012/02/20 06:26:54 | 000,000,000 | ---D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TOSHIBA DVD PLAYER
[2012/02/20 06:26:54 | 000,000,000 | ---D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tams11
[2012/02/20 06:26:53 | 000,000,000 | ---D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony Picture Utility
[2012/02/20 06:26:53 | 000,000,000 | ---D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SnagIt 7
[2012/02/20 06:26:53 | 000,000,000 | ---D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
[2012/02/20 06:26:52 | 000,000,000 | ---D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OrangeWare WebCamDV
[2012/02/20 06:26:52 | 000,000,000 | ---D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Motorola
[2012/02/20 06:26:52 | 000,000,000 | ---D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Visual Studio .NET 2003
[2012/02/20 06:26:51 | 000,000,000 | ---D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Visual Basic 6.0
[2012/02/20 06:26:51 | 000,000,000 | ---D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft SQL Server 2008
[2012/02/20 06:26:51 | 000,000,000 | ---D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
[2012/02/20 06:26:50 | 000,000,000 | ---D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Live Meeting 2007
[2012/02/20 06:26:49 | 000,000,000 | ---D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft .NET Framework SDK v1.1
[2012/02/20 06:26:49 | 000,000,000 | ---D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Memeo AutoBackup
[2012/02/20 06:26:48 | 000,000,000 | R--D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
[2012/02/20 06:26:48 | 000,000,000 | ---D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
[2012/02/20 06:26:48 | 000,000,000 | ---D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel® Matrix Storage Manager
[2012/02/20 06:26:48 | 000,000,000 | ---D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel PROSet Wireless
[2012/02/20 06:26:48 | 000,000,000 | ---D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ImgBurn
[2012/02/20 06:26:47 | 000,000,000 | ---D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HxD Hex Editor
[2012/02/20 06:26:47 | 000,000,000 | ---D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HTML Help Workshop
[2012/02/20 06:26:47 | 000,000,000 | ---D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
[2012/02/20 06:26:45 | 000,000,000 | ---D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Eagletron
[2012/02/20 06:26:45 | 000,000,000 | ---D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVD MovieFactory for TOSHIBA
[2012/02/20 06:26:44 | 000,000,000 | R--D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DigitalPersona Password Manager
[2012/02/20 06:26:44 | 000,000,000 | R--D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PowerCinema for TOSHIBA
[2012/02/20 06:26:44 | 000,000,000 | ---D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Design Era
[2012/02/20 06:26:44 | 000,000,000 | ---D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Camera Assistant Software
[2012/02/20 06:26:42 | 000,000,000 | ---D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG 2012
[2012/02/20 06:26:42 | 000,000,000 | ---D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avery Dennison
[2012/02/18 15:50:00 | 000,002,441 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader X.lnk
[2012/02/18 15:49:16 | 000,689,660 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2012/02/18 15:49:16 | 000,131,094 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2012/02/18 14:01:32 | 000,000,000 | RH-D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
[2012/02/18 12:28:41 | 000,001,082 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2012/02/01 08:14:22 | 000,000,946 | ---- | M] () -- C:\Users\Public\Desktop\AVG 2012.lnk
[2012/01/27 02:15:02 | 000,396,105 | ---- | M] () -- C:\Windows\System32\drivers\Avg\iavichjg.avm
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2012/02/24 11:41:33 | 000,003,594 | ---- | C] () -- C:\Windows\System32\.crusader
[2012/02/24 11:41:33 | 000,000,926 | ---- | C] () -- C:\Windows\System32\bootdelete.lst
[2012/02/24 11:31:03 | 000,023,624 | ---- | C] () -- C:\Windows\System32\drivers\hitmanpro35.sys
[2012/02/18 12:28:41 | 000,001,082 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2012/01/01 07:24:04 | 000,001,352 | -HS- | C] () -- C:\Users\Mike\AppData\Local\xpk64vn22kq6ilhpiwrg703053i2qqf716s20byhjg2
[2012/01/01 07:24:04 | 000,001,352 | -HS- | C] () -- C:\ProgramData\xpk64vn22kq6ilhpiwrg703053i2qqf716s20byhjg2
[2011/10/25 06:28:19 | 000,175,971 | ---- | C] () -- C:\Users\Mike\AppData\Local\debuggee.mdmp
[2011/06/10 06:34:52 | 000,080,416 | ---- | C] () -- C:\Windows\System32\RtNicProp32.dll
[2011/04/29 14:22:35 | 000,000,042 | ---- | C] () -- C:\Windows\BDNET32.INI
[2011/03/17 12:50:14 | 000,252,928 | ---- | C] () -- C:\Windows\System32\DShowRdpFilter.dll
[2010/12/17 09:04:59 | 000,074,240 | ---- | C] () -- C:\Windows\trackerpod_server.exe
[2010/12/14 15:10:56 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2010/06/02 09:20:05 | 000,140,288 | ---- | C] () -- C:\Windows\System32\igfxtvcx.dll
[2010/05/25 07:22:08 | 000,013,312 | ---- | C] () -- C:\Users\Mike\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/04/27 02:36:47 | 000,000,258 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2010/04/26 22:43:48 | 000,022,880 | ---- | C] () -- C:\Windows\System32\emptyregdb.dat
[2010/02/13 10:10:26 | 000,148,904 | ---- | C] () -- C:\Windows\hpoins19.dat
[2010/02/13 10:09:42 | 000,026,952 | ---- | C] () -- C:\Windows\hpomdl19.dat
[2010/01/12 19:09:52 | 000,275,255 | ---- | C] () -- C:\Windows\closesec.exe
[2009/09/23 18:16:08 | 002,050,952 | ---- | C] () -- C:\Windows\System32\igkrng400.bin
[2009/08/03 14:07:42 | 000,403,816 | ---- | C] () -- C:\Windows\System32\OGACheckControl.dll
[2009/08/03 14:07:42 | 000,230,768 | ---- | C] () -- C:\Windows\System32\OGAEXEC.exe
[2009/07/13 23:57:37 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2009/07/13 23:33:53 | 000,567,336 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2009/07/13 21:05:48 | 000,689,660 | ---- | C] () -- C:\Windows\System32\perfh009.dat
[2009/07/13 21:05:48 | 000,291,294 | ---- | C] () -- C:\Windows\System32\perfi009.dat
[2009/07/13 21:05:48 | 000,131,094 | ---- | C] () -- C:\Windows\System32\perfc009.dat
[2009/07/13 21:05:48 | 000,031,548 | ---- | C] () -- C:\Windows\System32\perfd009.dat
[2009/07/13 21:05:05 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT
[2009/07/13 21:04:11 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat
[2009/07/13 18:55:01 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2009/07/13 18:51:43 | 000,073,728 | ---- | C] () -- C:\Windows\System32\BthpanContextHandler.dll
[2009/07/13 18:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\System32\BWContextHandler.dll
[2009/06/10 16:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat
[2009/05/01 12:55:54 | 000,000,352 | ---- | C] () -- C:\Users\Mike\AppData\Roaming\wklnhst.dat
[2009/04/12 20:22:08 | 000,000,018 | ---- | C] () -- C:\Users\Mike\AppData\Roaming\QT.dat
[2008/12/13 10:49:05 | 000,056,832 | ---- | C] () -- C:\Windows\System32\iyvu9_32.dll
[2008/09/02 12:50:53 | 000,761,856 | ---- | C] () -- C:\Windows\System32\xvidcore.dll
[2008/09/02 12:50:53 | 000,180,224 | ---- | C] () -- C:\Windows\System32\xvidvfw.dll
[2008/09/02 12:50:51 | 003,596,288 | ---- | C] () -- C:\Windows\System32\qt-dx331.dll
[2008/05/27 11:59:59 | 000,000,535 | ---- | C] () -- C:\Windows\ODBCINST.INI
[2008/04/19 23:19:32 | 000,000,636 | ---- | C] () -- C:\Windows\ODBC.INI
[2008/04/19 14:31:02 | 000,000,014 | RHS- | C] () -- C:\Windows\System32\drivers\fbd.sys
[2008/04/19 14:31:02 | 000,000,004 | RHS- | C] () -- C:\Windows\System32\drivers\taishop.sys
[2008/03/20 00:57:39 | 000,128,113 | ---- | C] () -- C:\Windows\System32\csellang.ini
[2008/03/20 00:57:39 | 000,045,056 | ---- | C] () -- C:\Windows\System32\csellang.dll
[2008/03/20 00:57:39 | 000,010,150 | ---- | C] () -- C:\Windows\System32\tosmreg.ini
[2008/03/20 00:57:39 | 000,007,671 | ---- | C] () -- C:\Windows\System32\cseltbl.ini
[2008/03/01 12:05:25 | 000,257,053 | ---- | C] () -- C:\Windows\WOLSET.EXE
[2008/02/12 22:07:53 | 000,000,000 | ---- | C] () -- C:\Windows\NDSTray.INI
[2008/02/12 21:43:52 | 000,204,800 | ---- | C] () -- C:\Windows\System32\IVIresizeW7.dll
[2008/02/12 21:43:52 | 000,200,704 | ---- | C] () -- C:\Windows\System32\IVIresizeA6.dll
[2008/02/12 21:43:52 | 000,192,512 | ---- | C] () -- C:\Windows\System32\IVIresizeP6.dll
[2008/02/12 21:43:52 | 000,192,512 | ---- | C] () -- C:\Windows\System32\IVIresizeM6.dll
[2008/02/12 21:43:52 | 000,188,416 | ---- | C] () -- C:\Windows\System32\IVIresizePX.dll
[2008/02/12 21:43:52 | 000,020,480 | ---- | C] () -- C:\Windows\System32\IVIresize.dll
[2008/02/12 21:09:34 | 000,016,480 | ---- | C] () -- C:\Windows\System32\rixdicon.dll
[2008/02/12 21:06:19 | 000,000,852 | ---- | C] () -- C:\Windows\System32\drivers\RTKHDRC1.dat
[2008/02/12 21:06:19 | 000,000,852 | ---- | C] () -- C:\Windows\System32\drivers\RTKHDRC0.dat
[2008/02/12 21:06:19 | 000,000,520 | ---- | C] () -- C:\Windows\System32\drivers\RTEQEX1.dat
[2008/02/12 21:06:19 | 000,000,520 | ---- | C] () -- C:\Windows\System32\drivers\RTEQEX0.dat
[2008/02/12 21:06:19 | 000,000,176 | ---- | C] () -- C:\Windows\System32\drivers\RTHDAEQ1.dat
[2008/02/12 21:06:19 | 000,000,176 | ---- | C] () -- C:\Windows\System32\drivers\RTHDAEQ0.dat
[2008/02/12 20:38:07 | 000,157,040 | ---- | C] () -- C:\Windows\fdbpinger.exe
[2008/01/28 20:01:42 | 000,057,344 | ---- | C] () -- C:\Windows\System32\SmartFaceVCapt.dll
[2008/01/28 20:01:06 | 000,471,040 | ---- | C] () -- C:\Windows\System32\SmartFaceVCP.dll
[2008/01/28 19:53:02 | 006,701,056 | ---- | C] () -- C:\Windows\System32\FaceHI.dll
[2008/01/28 19:53:02 | 000,995,328 | ---- | C] () -- C:\Windows\System32\FaceRec.dll
[2008/01/28 19:53:02 | 000,126,976 | ---- | C] () -- C:\Windows\System32\SmartFaceVCtrl.dll
[2008/01/28 19:52:28 | 000,094,208 | ---- | C] () -- C:\Windows\System32\IppLib.dll
[2007/12/21 19:46:32 | 000,118,784 | ---- | C] () -- C:\Windows\System32\TosBtAcc.dll
[2007/10/08 16:21:46 | 000,958,464 | ---- | C] () -- C:\Windows\System32\WLIHVUI.dll
[2006/10/09 15:27:40 | 000,951,824 | ---- | C] () -- C:\Windows\System32\DPCredProv.dll
[2006/03/09 12:58:00 | 001,060,424 | ---- | C] () -- C:\Windows\System32\WdfCoInstaller01000.dll
[2005/07/23 00:30:18 | 000,065,536 | ---- | C] () -- C:\Windows\System32\TosCommAPI.dll
[2000/07/14 23:00:00 | 000,030,720 | ---- | C] () -- C:\Windows\REGTLIB.EXE
[1998/06/09 23:00:00 | 000,015,120 | ---- | C] () -- C:\Windows\System32\REPUTIL.DLL
 
[color=#E56717]========== LOP Check ==========[/color]
 
[2010/12/09 08:23:36 | 000,000,000 | ---D | M] -- C:\Users\Mike\AppData\Roaming\AVG
[2011/10/12 06:54:23 | 000,000,000 | ---D | M] -- C:\Users\Mike\AppData\Roaming\AVG2012
[2012/02/18 13:28:27 | 000,000,000 | ---D | M] -- C:\Users\Mike\AppData\Roaming\BitZipper
[2010/09/07 12:50:13 | 000,000,000 | ---D | M] -- C:\Users\Mike\AppData\Roaming\DigitalPersona
[2011/12/11 17:40:07 | 000,000,000 | ---D | M] -- C:\Users\Mike\AppData\Roaming\flightgear.org
[2010/04/30 10:37:04 | 000,000,000 | ---D | M] -- C:\Users\Mike\AppData\Roaming\ImgBurn
[2011/05/06 17:08:41 | 000,000,000 | ---D | M] -- C:\Users\Mike\AppData\Roaming\Leadertech
[2010/04/30 10:37:05 | 000,000,000 | ---D | M] -- C:\Users\Mike\AppData\Roaming\LimeWire
[2010/04/30 10:37:31 | 000,000,000 | ---D | M] -- C:\Users\Mike\AppData\Roaming\Mael
[2010/06/29 10:08:58 | 000,000,000 | ---D | M] -- C:\Users\Mike\AppData\Roaming\Open Source Applications Foundation
[2010/06/29 10:08:57 | 000,000,000 | ---D | M] -- C:\Users\Mike\AppData\Roaming\Python-Eggs
[2011/10/19 16:01:52 | 000,000,000 | ---D | M] -- C:\Users\Mike\AppData\Roaming\Sikuli
[2010/04/30 10:37:51 | 000,000,000 | ---D | M] -- C:\Users\Mike\AppData\Roaming\SPAMfighter
[2011/12/11 09:36:03 | 000,000,000 | ---D | M] -- C:\Users\Mike\AppData\Roaming\Subversion
[2010/04/30 10:37:52 | 000,000,000 | ---D | M] -- C:\Users\Mike\AppData\Roaming\Template
[2010/08/27 12:48:04 | 000,000,000 | ---D | M] -- C:\Users\Mike\AppData\Roaming\Toshiba
[2012/02/18 15:57:16 | 000,000,000 | ---D | M] -- C:\Users\Mike\AppData\Roaming\Ulead Systems
[2010/04/30 10:37:53 | 000,000,000 | ---D | M] -- C:\Users\Mike\AppData\Roaming\WinBatch
[2010/11/01 06:10:08 | 000,000,000 | ---D | M] -- C:\Users\Mike\AppData\Roaming\Windows Live Writer
[2009/07/13 23:53:55 | 000,000,000 | -HSD | M] -- C:\ProgramData\Application Data
[2010/04/30 10:12:34 | 000,000,000 | ---D | M] -- C:\ProgramData\Applications
[2010/04/30 10:12:59 | 000,000,000 | ---D | M] -- C:\ProgramData\Avery
[2012/02/18 13:56:05 | 000,000,000 | ---D | M] -- C:\ProgramData\AVG2012
[2010/10/16 09:58:17 | 000,000,000 | ---D | M] -- C:\ProgramData\avg9
[2011/03/09 19:41:52 | 000,000,000 | ---D | M] -- C:\ProgramData\Cisco Systems
[2010/10/16 13:48:46 | 000,000,000 | -H-D | M] -- C:\ProgramData\Common Files
[2009/07/13 23:53:55 | 000,000,000 | -HSD | M] -- C:\ProgramData\Desktop
[2009/07/13 23:53:55 | 000,000,000 | -HSD | M] -- C:\ProgramData\Documents
[2010/04/30 10:13:13 | 000,000,000 | ---D | M] -- C:\ProgramData\eSellerate
[2009/07/13 23:53:55 | 000,000,000 | -HSD | M] -- C:\ProgramData\Favorites
[2010/05/25 07:21:24 | 000,000,000 | ---D | M] -- C:\ProgramData\Flip Video
[2010/04/30 10:13:13 | 000,000,000 | ---D | M] -- C:\ProgramData\Griaule
[2012/02/24 11:41:33 | 000,000,000 | ---D | M] -- C:\ProgramData\Hitman Pro
[2010/04/30 10:13:16 | 000,000,000 | --SD | M] -- C:\ProgramData\Memeo
[2012/02/24 09:35:07 | 000,000,000 | ---D | M] -- C:\ProgramData\MFAData
[2010/04/30 10:13:43 | 000,000,000 | ---D | M] -- C:\ProgramData\Napster
[2010/04/30 10:13:44 | 000,000,000 | ---D | M] -- C:\ProgramData\Roaming
[2012/02/18 14:01:32 | 000,000,000 | ---D | M] -- C:\ProgramData\Sierra
[2009/07/13 23:53:55 | 000,000,000 | -HSD | M] -- C:\ProgramData\Start Menu
[2012/02/23 17:32:55 | 000,000,000 | ---D | M] -- C:\ProgramData\TEMP
[2009/07/13 23:53:55 | 000,000,000 | -HSD | M] -- C:\ProgramData\Templates
[2010/04/30 10:13:45 | 000,000,000 | ---D | M] -- C:\ProgramData\Toshiba
[2010/04/30 10:13:46 | 000,000,000 | ---D | M] -- C:\ProgramData\Ulead Systems
[2011/07/16 08:59:55 | 000,000,000 | ---D | M] -- C:\ProgramData\Uniblue
[2012/02/18 11:58:20 | 000,000,000 | ---D | M] -- C:\ProgramData\WeCareReminder
[2010/04/30 10:13:46 | 000,000,000 | ---D | M] -- C:\ProgramData\WindowsSearch
[2010/04/30 10:13:46 | 000,000,000 | ---D | M] -- C:\ProgramData\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}
[2012/02/23 20:10:57 | 000,032,548 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
 
[color=#E56717]========== Purity Check ==========[/color]
 
 
 
[color=#E56717]========== Custom Scans ==========[/color]
 
 
 
[color=#A23BEC]< MD5 for: EXPLORER.EXE  >[/color]
[2011/02/26 00:19:21 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=0FB9C74046656D1579A64660AD67B746 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_54149f9ef14031fc\explorer.exe
[2009/07/13 20:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=15BC38A7492BEFE831966ADB477CF76F -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_518afd35db100430\explorer.exe
[2011/02/26 00:51:13 | 002,614,784 | ---- | M] (Microsoft Corporation) MD5=255CF508D7CFB10E0794D6AC93280BD8 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20910_none_525b5180f3f95373\explorer.exe
[2009/10/31 00:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=2626FC9755BE22F805D3CFA0CE3EE727 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_51a66d6ddafc2ed1\explorer.exe
[2011/02/26 00:33:07 | 002,614,784 | ---- | M] (Microsoft Corporation) MD5=2AF58D15EDC06EC6FDACCE1F19482BBF -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16768_none_51a3a583dafd0cef\explorer.exe
[2010/11/20 07:17:09 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=40D777B7A95E00593EB1568C68514493 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_53bc10fdd7fe87ca\explorer.exe
[2011/02/25 00:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\explorer.exe
[2011/02/25 00:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_5389023fd8245f84\explorer.exe
[2009/08/03 00:49:47 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=9FF6C4C91A3711C0A3B18F87B08B518D -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_526619d4f3f142e6\explorer.exe
[2009/08/03 00:35:50 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=B95EEB0F4E5EFBF1038A35B3351CF047 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_51e07e31dad00878\explorer.exe
[2009/10/31 01:00:51 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=C76153C7ECA00FA852BB0C193378F917 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_52283b2af41f3691\explorer.exe
 
[color=#A23BEC]< MD5 for: USERINIT.EXE  >[/color]
[2010/11/20 07:17:48 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\System32\userinit.exe
[2010/11/20 07:17:48 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_de3024012ff21116\userinit.exe
[2009/07/13 20:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_dbff103933038d7c\userinit.exe
 
[color=#A23BEC]< MD5 for: WININIT.EXE  >[/color]
[2009/07/13 20:14:45 | 000,096,256 | ---- | M] (Microsoft Corporation) MD5=B5C5DCAD3899512020D135600129D665 -- C:\Windows\System32\wininit.exe
[2009/07/13 20:14:45 | 000,096,256 | ---- | M] (Microsoft Corporation) MD5=B5C5DCAD3899512020D135600129D665 -- C:\Windows\winsxs\x86_microsoft-windows-wininit_31bf3856ad364e35_6.1.7600.16385_none_30c90ef265a43c13\wininit.exe
 
[color=#A23BEC]< MD5 for: WINLOGON.EXE  >[/color]
[2009/10/28 01:17:59 | 000,285,696 | ---- | M] (Microsoft Corporation) MD5=37CDB7E72EB66BA85A87CBE37E7F03FD -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16447_none_6fc699643622d177\winlogon.exe
[2009/10/28 00:52:08 | 000,285,696 | ---- | M] (Microsoft Corporation) MD5=3BABE6767C78FBF5FB8435FEED187F30 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.20560_none_703394514f56f7c2\winlogon.exe
[2012/01/13 14:53:20 | 000,182,856 | ---- | M] () MD5=63EEC8A8B221AB79045E776E5F592868 -- C:\Program Files\Malwarebytes' Anti-Malware\Chameleon\winlogon.exe
[2010/11/20 07:17:54 | 000,286,720 | ---- | M] (Microsoft Corporation) MD5=6D13E1406F50C66E2A95D97F22C47560 -- C:\Windows\System32\winlogon.exe
[2010/11/20 07:17:54 | 000,286,720 | ---- | M] (Microsoft Corporation) MD5=6D13E1406F50C66E2A95D97F22C47560 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.17514_none_71ca6b0233339500\winlogon.exe
[2009/07/13 20:14:45 | 000,285,696 | ---- | M] (Microsoft Corporation) MD5=8EC6A4AB12B8F3759E21F8E3A388F2CF -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16385_none_6f99573a36451166\winlogon.exe
 
[color=#E56717]========== Alternate Data Streams ==========[/color]
 
@Alternate Data Stream - 138 bytes -> C:\ProgramData\TEMP:0B4227B4
@Alternate Data Stream - 109 bytes -> C:\ProgramData\TEMP:DFC5A2B2
< End of report >