Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

search engine redirecting virus,,babylon toolbar and all games home to

Started by livtheflip , Sep 15 2011 02:50 AM

  • This topic is locked This topic is locked

#16
Render
Posted 18 September 2011 - 08:01 PM

Render

    Trusted Helper

  • Malware Removal
  • 4,195 posts
Yes. Backup your valuable data before formating.
  • 0

Advertisements

#17
Render
Posted 18 September 2011 - 08:02 PM

Render

    Trusted Helper

  • Malware Removal
  • 4,195 posts
Yes. Backup your valuable data before formating.
  • 0

#18
livtheflip
Posted 19 September 2011 - 01:36 AM

livtheflip

    Member

  • Topic Starter
  • Member
  • PipPip
  • 21 posts
ive formatted the H drive only.

here is the new OTL Log:

OTL logfile created on: 9/19/2011 3:21:12 PM - Run 4
OTL by OldTimer - Version 3.2.28.0 Folder = C:\Users\LivthefLip\Downloads
Windows Vista Home Premium Edition Service Pack 1 (Version = 6.0.6001) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6001.18000)
Locale: 00003409 | Country: Republic of the Philippines | Language: ENP | Date Format: M/d/yyyy

1.99 Gb Total Physical Memory | 0.83 Gb Available Physical Memory | 41.73% Memory free
4.22 Gb Paging File | 2.24 Gb Available in Paging File | 53.12% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 69.77 Gb Total Space | 35.46 Gb Free Space | 50.82% Space Free | Partition Type: NTFS
Drive D: | 66.27 Gb Total Space | 50.92 Gb Free Space | 76.83% Space Free | Partition Type: NTFS
Drive E: | 3.24 Gb Total Space | 3.20 Gb Free Space | 98.62% Space Free | Partition Type: NTFS
Drive H: | 149.05 Gb Total Space | 148.96 Gb Free Space | 99.94% Space Free | Partition Type: NTFS

Computer Name: LIVTHEFLIP-PC | User Name: LivthefLip | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011/09/19 08:57:24 | 000,208,896 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Users\LivthefLip\AppData\Local\Temp\RtkBtMnt.exe
PRC - [2011/09/15 16:10:42 | 000,581,632 | ---- | M] (OldTimer Tools) -- C:\Users\LivthefLip\Downloads\OTL.exe
PRC - [2011/09/11 15:22:37 | 000,273,528 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\Real\RealPlayer\Update\realsched.exe
PRC - [2011/09/11 11:32:50 | 001,251,720 | ---- | M] () -- C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
PRC - [2011/09/03 14:01:45 | 000,924,632 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2011/08/31 17:00:48 | 000,449,608 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
PRC - [2011/08/31 17:00:48 | 000,366,152 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2011/07/29 07:08:12 | 001,259,376 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe
PRC - [2010/04/07 20:57:42 | 000,099,896 | ---- | M] (HP) -- C:\Windows\System32\HPSIsvc.exe
PRC - [2008/10/29 14:29:41 | 002,927,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2008/10/17 15:52:10 | 000,149,352 | ---- | M] (Symantec Corporation) -- C:\Program Files\Common Files\Symantec Shared\CCSVCHST.EXE
PRC - [2008/10/16 17:26:20 | 000,860,160 | ---- | M] (Intel® Corporation) -- C:\Program Files\Intel\WiFi\bin\EvtEng.exe
PRC - [2008/10/16 16:54:34 | 000,466,944 | ---- | M] (Intel® Corporation) -- C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
PRC - [2008/03/20 07:03:48 | 002,376,992 | ---- | M] (McAfee, Inc.) -- c:\Program Files\Common Files\Mcafee\MNA\McNASvc.exe
PRC - [2008/02/25 16:53:24 | 000,518,656 | ---- | M] (Egis Incorporated) -- C:\Acer\Empowering Technology\eDataSecurity\x86\eDSLoader.exe
PRC - [2008/02/25 16:50:10 | 000,491,008 | ---- | M] (Egis Incorporated) -- C:\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe
PRC - [2008/02/06 01:47:12 | 000,458,752 | ---- | M] (Acer Inc.) -- C:\Acer\Empowering Technology\ePower\ePower_DMC.exe
PRC - [2008/01/24 10:29:00 | 004,702,208 | ---- | M] (Realtek Semiconductor) -- C:\Windows\RtHDVCpl.exe
PRC - [2008/01/24 10:28:00 | 000,102,400 | ---- | M] (Synaptics, Inc.) -- C:\Program Files\Synaptics\SynTP\SynTPStart.exe
PRC - [2008/01/10 10:43:28 | 000,323,584 | ---- | M] (Acer Inc.) -- C:\Acer\Empowering Technology\Acer.Empowering.Framework.Supervisor.exe
PRC - [2008/01/02 21:17:28 | 000,707,080 | ---- | M] (Dritek System Inc.) -- C:\Program Files\Launch Manager\QtZgAcer.EXE
PRC - [2007/12/21 03:33:14 | 000,761,856 | ---- | M] (Acer Inc.) -- C:\Acer\Empowering Technology\eNet\eNMTray.exe
PRC - [2007/12/21 03:32:04 | 000,131,072 | ---- | M] (Acer Inc.) -- C:\Acer\Empowering Technology\eNet\eNet Service.exe
PRC - [2007/12/20 10:09:22 | 000,024,576 | ---- | M] () -- C:\Acer\Empowering Technology\eSettings\Service\capuserv.exe
PRC - [2007/11/28 10:54:36 | 000,110,592 | ---- | M] () -- C:\Acer\Mobility Center\MobilityService.exe
PRC - [2007/10/10 22:41:54 | 001,286,144 | ---- | M] (CyberLink) -- C:\Acer\Empowering Technology\eAudio\eAudio.exe
PRC - [2007/10/02 08:42:36 | 000,024,576 | ---- | M] (Acer Inc.) -- C:\Acer\Empowering Technology\eLock\Service\eLockServ.exe
PRC - [2007/09/21 05:57:28 | 000,167,936 | ---- | M] (acer) -- C:\Acer\Empowering Technology\ePower\ePowerSvc.exe
PRC - [2007/09/10 15:28:18 | 000,057,344 | ---- | M] (Acer Inc.) -- C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe
PRC - [2007/09/06 12:02:04 | 000,393,216 | ---- | M] (Acer Inc.) -- C:\Acer\Empowering Technology\eRecovery\eRAgent.exe
PRC - [2007/08/31 11:49:50 | 000,243,064 | ---- | M] (Symantec Corporation) -- C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe
PRC - [2007/03/29 13:11:50 | 000,719,664 | ---- | M] (Broadcom Corporation.) -- C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe


========== Modules (No Company Name) ==========

MOD - [2011/09/11 21:40:42 | 000,998,400 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Management\31729b33207d1093721f9e943302b900\System.Management.ni.dll
MOD - [2011/09/11 21:40:40 | 000,212,992 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\ba71341e41687591124f9a5680cb0981\System.ServiceProcess.ni.dll
MOD - [2011/09/11 21:40:13 | 011,796,992 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\47b2e1d9030f551f685dfea0b618e7fd\System.Web.ni.dll
MOD - [2011/09/11 21:39:37 | 000,771,584 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\a4fd3b000abfd4712b02ec223df3e9dd\System.Runtime.Remoting.ni.dll
MOD - [2011/09/11 21:39:19 | 012,430,848 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\6d75eb3ca10a514754f5e87cc2134f07\System.Windows.Forms.ni.dll
MOD - [2011/09/11 21:39:03 | 001,587,200 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\19d027c3381110e60c003f2c8bd307ee\System.Drawing.ni.dll
MOD - [2011/09/11 21:38:52 | 005,450,752 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\38b9d09539b67b08ee996db6c71f8a9b\System.Xml.ni.dll
MOD - [2011/09/11 21:38:46 | 000,971,264 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\982c005f97eacba888acdda322c49362\System.Configuration.ni.dll
MOD - [2011/09/11 21:38:35 | 007,868,416 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\57ac9ba5419d6bf4b79f2979b0755428\System.ni.dll
MOD - [2011/09/11 21:38:20 | 011,486,720 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\c068708e16abf0be77a21b9f29817d83\mscorlib.ni.dll
MOD - [2011/09/11 16:08:12 | 006,277,280 | ---- | M] () -- C:\Windows\System32\Macromed\Flash\NPSWF32.dll
MOD - [2011/09/11 15:11:04 | 000,077,312 | ---- | M] () -- C:\Users\LivthefLip\AppData\Roaming\Mozilla\Firefox\Profiles\yhzzhqm6.default\extensions\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}\components\RadioWMPCoreGecko6.dll
MOD - [2011/09/03 14:01:45 | 001,846,232 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2011/07/29 07:09:42 | 000,096,112 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdateCheck.dll
MOD - [2011/07/29 07:08:12 | 001,259,376 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe
MOD - [2011/06/24 22:56:36 | 000,087,328 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2011/06/24 22:56:14 | 001,241,888 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
MOD - [2008/01/10 10:43:12 | 000,057,344 | ---- | M] () -- C:\Acer\Empowering Technology\Acer.Empowering.Framework.DialogManager.dll
MOD - [2008/01/10 10:42:54 | 000,024,576 | ---- | M] () -- C:\Acer\Empowering Technology\Acer.Empowering.Framework.PasswordSetting.dll
MOD - [2008/01/03 18:00:48 | 000,227,888 | ---- | M] () -- C:\Acer\Empowering Technology\eDataSecurity\x86\ShowErrMsg.dll
MOD - [2007/12/21 05:58:00 | 000,679,936 | ---- | M] () -- C:\Acer\Empowering Technology\eLock\eLockCTL.dll
MOD - [2007/12/21 03:33:26 | 000,249,856 | ---- | M] () -- C:\Acer\Empowering Technology\eNet\eNetPlugin.dll
MOD - [2007/12/20 10:09:38 | 000,028,672 | ---- | M] () -- C:\Acer\Empowering Technology\eSettings\eSettings.Plugin.dll
MOD - [2007/12/20 10:08:54 | 000,155,648 | ---- | M] () -- C:\Acer\Empowering Technology\eSettings\eSettings.Presenter.dll
MOD - [2007/12/20 10:08:28 | 003,420,160 | ---- | M] () -- C:\Acer\Empowering Technology\eSettings\eSettings.View.dll
MOD - [2007/12/20 10:08:10 | 000,032,768 | ---- | M] () -- C:\Acer\Empowering Technology\eSettings.Model.ComputerInterfaces.dll
MOD - [2007/10/10 22:41:08 | 000,106,496 | ---- | M] () -- C:\Acer\Empowering Technology\eAudio\eAudioUI.dll
MOD - [2007/09/21 06:01:12 | 000,208,896 | ---- | M] () -- C:\Acer\Empowering Technology\ePower\SysHook.dll
MOD - [2007/09/12 01:59:04 | 000,307,200 | ---- | M] () -- C:\Acer\Empowering Technology\ePresentation\ePresentationCTL.dll
MOD - [2007/03/29 13:02:48 | 000,126,976 | ---- | M] () -- C:\Program Files\WIDCOMM\Bluetooth Software\BTKeyInd.dll
MOD - [2007/03/29 12:42:38 | 000,389,120 | ---- | M] () -- C:\Windows\System32\btwhidcs.dll
MOD - [2007/02/13 06:26:30 | 000,016,384 | ---- | M] () -- C:\Acer\Empowering Technology\eRecovery\ServiceInterface.dll
MOD - [2006/12/10 21:51:08 | 000,077,824 | R--- | M] () -- C:\Program Files\HP\Digital Imaging\bin\crm\xmltok.dll
MOD - [2006/12/10 21:51:08 | 000,065,536 | R--- | M] () -- C:\Program Files\HP\Digital Imaging\bin\crm\xmlparse.dll


========== Win32 Services (SafeList) ==========

SRV - [2011/09/11 11:32:50 | 001,251,720 | ---- | M] () [On_Demand | Running] -- C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe -- (Symantec Core LC)
SRV - [2011/08/31 17:00:48 | 000,366,152 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2010/04/07 20:57:42 | 000,099,896 | ---- | M] (HP) [Auto | Running] -- C:\Windows\System32\HPSIsvc.exe -- (HPSIService)
SRV - [2008/10/17 15:52:10 | 000,149,352 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe -- (LiveUpdate Notice)
SRV - [2008/10/17 15:52:10 | 000,149,352 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe -- (CLTNetCnService)
SRV - [2008/10/17 15:52:10 | 000,149,352 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe -- (ccSetMgr)
SRV - [2008/10/17 15:52:10 | 000,149,352 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe -- (ccEvtMgr)
SRV - [2008/10/16 17:26:20 | 000,860,160 | ---- | M] (Intel® Corporation) [Auto | Running] -- C:\Program Files\Intel\WiFi\bin\EvtEng.exe -- (EvtEng)
SRV - [2008/10/16 16:54:34 | 000,466,944 | ---- | M] (Intel® Corporation) [Auto | Running] -- C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe -- (RegSrvc)
SRV - [2008/03/20 07:03:48 | 002,376,992 | ---- | M] (McAfee, Inc.) [Auto | Running] -- c:\Program Files\Common Files\Mcafee\MNA\McNASvc.exe -- (McNASvc)
SRV - [2008/02/25 16:50:10 | 000,491,008 | ---- | M] (Egis Incorporated) [Auto | Running] -- C:\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe -- (eDataSecurity Service)
SRV - [2008/01/21 10:23:32 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2007/12/21 03:32:04 | 000,131,072 | ---- | M] (Acer Inc.) [Auto | Running] -- C:\Acer\Empowering Technology\eNet\eNet Service.exe -- (eNet Service)
SRV - [2007/12/20 10:09:22 | 000,024,576 | ---- | M] () [Auto | Running] -- C:\Acer\Empowering Technology\eSettings\Service\capuserv.exe -- (eSettingsService)
SRV - [2007/11/28 10:54:36 | 000,110,592 | ---- | M] () [Auto | Running] -- C:\Acer\Mobility Center\MobilityService.exe -- (MobilityService)
SRV - [2007/10/02 08:42:36 | 000,024,576 | ---- | M] (Acer Inc.) [Auto | Running] -- C:\Acer\Empowering Technology\eLock\Service\eLockServ.exe -- (eLockService)
SRV - [2007/09/21 05:57:28 | 000,167,936 | ---- | M] (acer) [Auto | Running] -- C:\Acer\Empowering Technology\ePower\ePowerSvc.exe -- (WMIService)
SRV - [2007/09/10 15:28:18 | 000,057,344 | ---- | M] (Acer Inc.) [Auto | Running] -- C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe -- (eRecoveryService)
SRV - [2007/08/31 11:49:50 | 000,243,064 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe -- (Automatic LiveUpdate Scheduler)
SRV - [2007/08/23 20:35:00 | 003,192,184 | ---- | M] (Symantec Corporation) [On_Demand | Stopped] -- C:\Program Files\Symantec\LiveUpdate\LuComServer_3_4.EXE -- (LiveUpdate)
SRV - [2007/08/22 07:21:00 | 000,055,640 | ---- | M] (Symantec Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe -- (comHost)


========== Driver Services (SafeList) ==========

DRV - [2079/07/19 15:18:48 | 001,576,312 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\ProgramData\Symantec\Definitions\VirusDefs\20110918.008\NAVEX15.SYS -- (NAVEX15)
DRV - [2079/07/19 15:18:48 | 000,374,392 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys -- (eeCtrl)
DRV - [2079/07/19 15:18:48 | 000,287,792 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\ProgramData\Symantec\Definitions\SymcData\ipsdefs\20110915.001\IDSvix86.sys -- (IDSvix86)
DRV - [2079/07/19 15:18:48 | 000,105,592 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys -- (EraserUtilRebootDrv)
DRV - [2079/07/19 15:18:48 | 000,086,136 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\ProgramData\Symantec\Definitions\VirusDefs\20110918.008\NAVENG.SYS -- (NAVENG)
DRV - [2011/09/11 11:41:28 | 000,124,464 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\SYMEVENT.SYS -- (SymEvent)
DRV - [2011/08/31 17:00:50 | 000,022,216 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\mbam.sys -- (MBAMProtector)
DRV - [2010/03/06 07:40:57 | 000,017,408 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\mvusbews.sys -- (mvusbews)
DRV - [2009/03/17 12:56:58 | 000,447,024 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys -- (SPBBCDrv)
DRV - [2009/02/19 13:31:42 | 000,024,112 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\SymIMV.sys -- (SymIM)
DRV - [2009/02/19 13:31:18 | 000,041,008 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\SYMNDISV.SYS -- (SYMNDISV)
DRV - [2009/02/19 13:31:16 | 000,184,496 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\System32\Drivers\SYMTDI.SYS -- (SYMTDI)
DRV - [2009/02/19 13:31:16 | 000,096,560 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\SYMFW.SYS -- (SYMFW)
DRV - [2009/02/19 13:31:16 | 000,022,320 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\SYMREDRV.SYS -- (SYMREDRV)
DRV - [2009/02/19 13:31:16 | 000,013,616 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\SYMDNS.SYS -- (SYMDNS)
DRV - [2008/11/17 07:40:22 | 003,668,480 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\NETw5v32.sys -- (NETw5v32) Intel®
DRV - [2008/07/30 17:42:12 | 000,023,888 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\COH_Mon.sys -- (COH_Mon)
DRV - [2008/05/06 16:06:00 | 000,011,520 | ---- | M] (Western Digital Technologies) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\wdcsam.sys -- (WDC_SAM)
DRV - [2008/02/15 17:42:42 | 000,046,592 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\rimmptsk.sys -- (rimmptsk)
DRV - [2008/01/30 18:34:00 | 007,629,504 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2008/01/24 10:29:00 | 000,043,008 | ---- | M] (Winbond Electronics Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\winbondcir.sys -- (winbondcir)
DRV - [2008/01/24 10:29:00 | 000,008,704 | ---- | M] (Conexant Systems, Inc.) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\XAudio.sys -- (XAudio)
DRV - [2008/01/21 10:23:20 | 002,225,664 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\NETw3v32.sys -- (NETw3v32) Intel®
DRV - [2007/11/30 23:57:12 | 000,317,616 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\srtspl.sys -- (SRTSPL)
DRV - [2007/11/30 23:57:12 | 000,279,088 | ---- | M] (Symantec Corporation) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\srtsp.sys -- (SRTSP)
DRV - [2007/11/30 23:57:12 | 000,043,696 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\srtspx.sys -- (SRTSPX)
DRV - [2007/10/31 10:36:32 | 002,252,800 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\NETw4v32.sys -- (NETw4v32) Intel®
DRV - [2007/08/08 23:39:00 | 000,036,056 | ---- | M] (Symantec Corporation) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\CO_Mon.sys -- (CO_Mon)
DRV - [2007/08/08 10:37:00 | 001,729,152 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\snp2uvc.sys -- (SNP2UVC) USB2.0 PC Camera (SNP2UVC)
DRV - [2007/07/31 03:54:02 | 000,038,400 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\rixdptsk.sys -- (rismxdp)
DRV - [2007/07/31 02:42:58 | 000,043,008 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\rimsptsk.sys -- (rimsptsk)
DRV - [2007/07/03 10:05:20 | 000,015,392 | ---- | M] (Acer, Inc.) [Kernel | Auto | Running] -- C:\Acer\Empowering Technology\eRecovery\int15.sys -- (int15)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://en.ph.acer.yahoo.com


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-529779327-4180284273-165655323-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://global.acer.com [binary data]
IE - HKU\S-1-5-21-529779327-4180284273-165655323-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com.ph/
IE - HKU\S-1-5-21-529779327-4180284273-165655323-1000\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKU\S-1-5-21-529779327-4180284273-165655323-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.selectedEngine: "Search the web (Babylon)"
FF - prefs.js..browser.startup.homepage: "http://www.google.com.ph/"
FF - prefs.js..keyword.URL: "http://search.babylo...0&affID=100474"
FF - prefs.js..network.proxy.type: 0


FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6: C:\Program Files\Yahoo!\Shared\npYState.dll (Yahoo! Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=12.0.1.666: C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=12.0.1.666: C:\Program Files\Real\RealPlayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpchromebrowserrecordext;version=12.0.1.666: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprphtml5videoshim;version=12.0.1.666: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=12.0.1.666: C:\Program Files\Real\RealPlayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2011/09/11 14:51:57 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2011/09/11 15:22:54 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 6.0.2\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/09/11 15:22:49 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 6.0.2\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/09/11 15:29:23 | 000,000,000 | ---D | M]

[2011/09/11 11:32:24 | 000,000,000 | ---D | M] (No name found) -- C:\Users\LivthefLip\AppData\Roaming\Mozilla\Extensions
[2011/09/18 09:04:29 | 000,000,000 | ---D | M] (No name found) -- C:\Users\LivthefLip\AppData\Roaming\Mozilla\Firefox\Profiles\yhzzhqm6.default\extensions
[2011/09/15 08:02:38 | 000,000,000 | ---D | M] (Yahoo! Toolbar) -- C:\Users\LivthefLip\AppData\Roaming\Mozilla\Firefox\Profiles\yhzzhqm6.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
[2011/09/11 15:11:04 | 000,000,000 | ---D | M] (uTorrentBar Community Toolbar) -- C:\Users\LivthefLip\AppData\Roaming\Mozilla\Firefox\Profiles\yhzzhqm6.default\extensions\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}
[2011/09/18 09:04:32 | 000,000,000 | ---D | M] (Babylon) -- C:\Users\LivthefLip\AppData\Roaming\Mozilla\Firefox\Profiles\yhzzhqm6.default\extensions\[email protected]
[2011/09/11 15:29:27 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2011/09/11 15:29:27 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA}
[2011/09/11 15:22:54 | 000,000,000 | ---D | M] (RealPlayer Browser Record Plugin) -- C:\PROGRAMDATA\REAL\REALPLAYER\BROWSERRECORDPLUGIN\FIREFOX\EXT
[2011/09/03 14:01:45 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2011/09/11 15:29:15 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2011/09/18 09:04:29 | 000,002,288 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\babylon.xml
[2011/09/03 07:25:59 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml

O1 HOSTS File: ([2011/09/16 14:55:42 | 000,000,098 | ---- | M]) - C:\Windows\System32\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - No CLSID value found.
O2 - BHO: (Babylon toolbar helper) - {2EECD738-5844-4a99-B4B6-146BF802613B} - C:\Program Files\BabylonToolbar\BabylonToolbar\1.4.35.10\bh\BabylonToolbar.dll (Babylon BHO)
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (DivX Plus Web Player HTML5 <video>) - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
O2 - BHO: (Reg Error: Value error.) - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Common Files\Symantec Shared\coShared\Browser\2.0\CoIEPlg.dll (Symantec Corporation)
O2 - BHO: (Symantec Intrusion Prevention) - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Common Files\Symantec Shared\IDS\IPSBHO.dll (Symantec Corporation)
O2 - BHO: (ShowBarObj Class) - {83A2F9B1-01A2-4AA5-87D1-45B6B8505E96} - C:\Acer\Empowering Technology\eDataSecurity\x86\ActiveToolBand.dll (HiTRUST)
O3 - HKLM\..\Toolbar: (Acer eDataSecurity Management) - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll (Egis Incorporated.)
O3 - HKLM\..\Toolbar: (Show Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Common Files\Symantec Shared\coShared\Browser\2.0\CoIEPlg.dll (Symantec Corporation)
O3 - HKLM\..\Toolbar: (Babylon Toolbar) - {98889811-442D-49dd-99D7-DC866BE87DBC} - C:\Program Files\BabylonToolbar\BabylonToolbar\1.4.35.10\BabylonToolbarTlbr.dll (Babylon Ltd.)
O3 - HKU\S-1-5-21-529779327-4180284273-165655323-1000\..\Toolbar\ShellBrowser: (Acer eDataSecurity Management) - {5CBE3B7C-1E47-477E-A7DD-396DB0476E29} - C:\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll (Egis Incorporated.)
O3 - HKU\S-1-5-21-529779327-4180284273-165655323-1000\..\Toolbar\WebBrowser: (Show Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Common Files\Symantec Shared\coShared\Browser\2.0\CoIEPlg.dll (Symantec Corporation)
O4 - HKLM..\Run: [ccApp] C:\Program Files\Common Files\Symantec Shared\ccApp.exe (Symantec Corporation)
O4 - HKLM..\Run: [DivXUpdate] C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
O4 - HKLM..\Run: [eAudio] C:\Acer\Empowering Technology\eAudio\eAudio.exe (CyberLink)
O4 - HKLM..\Run: [eDataSecurity Loader] C:\Acer\Empowering Technology\eDataSecurity\x86\eDSLoader.exe (Egis Incorporated)
O4 - HKLM..\Run: [LManager] C:\Program Files\Launch Manager\QtZgAcer.EXE (Dritek System Inc.)
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [NvCplDaemon] C:\Windows\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\Windows\System32\NvMcTray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvSvc] C:\Windows\System32\nvsvc.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [PLFSet] C:\Windows\PLFSet.dll ( )
O4 - HKLM..\Run: [RtHDVCpl] C:\Windows\RtHDVCpl.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [SynTPStart] C:\Program Files\Synaptics\SynTP\SynTPStart.exe (Synaptics, Inc.)
O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Real\RealPlayer\Update\realsched.exe (RealNetworks, Inc.)
O4 - HKU\S-1-5-21-529779327-4180284273-165655323-1000..\Run: [Messenger (Yahoo!)] C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe (Yahoo! Inc.)
O4 - HKU\S-1-5-21-529779327-4180284273-165655323-1000..\Run: [uTorrent] C:\Program Files\uTorrent\uTorrent.exe (BitTorrent, Inc.)
O4 - Startup: C:\Users\LivthefLip\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\_uninst_10953016.lnk = File not found
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-529779327-4180284273-165655323-1000\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-529779327-4180284273-165655323-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: Send image to &Bluetooth Device... - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm ()
O8 - Extra context menu item: Send page to &Bluetooth Device... - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra Button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_27)
O16 - DPF: {CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_27)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_27)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.254.1 192.168.254.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{C9F3C52C-A6EC-4234-A130-3D92BE289CF4}: DhcpNameServer = 192.168.254.1 192.168.254.1
O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) -C:\Windows\System32\userinit.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Users\LivthefLip\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg
O24 - Desktop BackupWallPaper: C:\Users\LivthefLip\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/09/19 05:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

NetSvcs: FastUserSwitchingCompatibility - File not found
NetSvcs: Ias - C:\Windows\System32\ias.dll (Microsoft Corporation)
NetSvcs: Nla - File not found
NetSvcs: Ntmssvc - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: SRService - File not found
NetSvcs: WmdmPmSp - File not found
NetSvcs: LogonHours - File not found
NetSvcs: PCAudit - File not found
NetSvcs: helpsvc - File not found
NetSvcs: uploadmgr - File not found

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

========== Files/Folders - Created Within 30 Days ==========

[2011/09/19 10:09:53 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Local\Microsoft Games
[2011/09/19 09:35:56 | 000,000,000 | ---D | C] -- C:\Windows\LastGood
[2011/09/18 21:25:47 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2011/09/18 21:09:38 | 000,518,144 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe
[2011/09/18 21:09:38 | 000,406,528 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe
[2011/09/18 21:09:38 | 000,060,416 | ---- | C] (NirSoft) -- C:\Windows\NIRCMD.exe
[2011/09/18 21:09:30 | 000,000,000 | ---D | C] -- C:\Combo-Fix25483C
[2011/09/18 21:02:31 | 000,000,000 | ---D | C] -- C:\Windows\ERDNT
[2011/09/18 21:02:30 | 000,000,000 | ---D | C] -- C:\Combo-Fix
[2011/09/18 21:02:26 | 000,000,000 | ---D | C] -- C:\Qoobox
[2011/09/18 20:59:37 | 004,215,031 | R--- | C] (Swearware) -- C:\Users\LivthefLip\Desktop\Combo-Fix.exe
[2011/09/18 11:05:19 | 000,000,000 | ---D | C] -- C:\ProgramData\Kaspersky Lab
[2011/09/18 09:57:32 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Roaming\Xilisoft
[2011/09/18 09:48:33 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Xilisoft
[2011/09/18 09:47:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Xilisoft
[2011/09/18 09:47:15 | 000,000,000 | ---D | C] -- C:\Program Files\Xilisoft
[2011/09/18 09:05:24 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FoxTab AVI Converter
[2011/09/18 09:05:23 | 000,000,000 | ---D | C] -- C:\Program Files\FoxTabAVIConverter
[2011/09/18 09:04:31 | 000,000,000 | ---D | C] -- C:\Program Files\BabylonToolbar
[2011/09/17 22:26:52 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\Documents\dpgtools11beta5
[2011/09/16 15:11:31 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Roaming\Malwarebytes
[2011/09/16 15:11:17 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2011/09/16 15:11:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2011/09/16 15:11:13 | 000,022,216 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2011/09/16 15:11:13 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2011/09/16 14:55:33 | 000,000,000 | ---D | C] -- C:\_OTL
[2011/09/15 15:26:36 | 000,000,000 | ---D | C] -- C:\_OTM
[2011/09/13 16:38:12 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Local\Acer Arcade Deluxe
[2011/09/13 16:38:11 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Roaming\CyberLink
[2011/09/13 16:38:04 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Local\PowerCinema
[2011/09/12 03:10:49 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msshooks.dll
[2011/09/12 03:10:48 | 000,034,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msscb.dll
[2011/09/12 03:10:46 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msshsq.dll
[2011/09/12 03:10:46 | 000,087,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssitlb.dll
[2011/09/12 03:10:46 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\propdefs.dll
[2011/09/12 03:10:46 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msstrc.dll
[2011/09/12 03:10:46 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssprxy.dll
[2011/09/12 03:10:45 | 000,313,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\thawbrkr.dll
[2011/09/12 03:10:45 | 000,301,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\srchadmin.dll
[2011/09/12 03:10:45 | 000,143,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\korwbrkr.dll
[2011/09/12 03:10:44 | 001,671,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\chsbrkr.dll
[2011/09/12 03:10:44 | 000,194,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\offfilt.dll
[2011/09/12 03:10:44 | 000,136,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\nlhtml.dll
[2011/09/12 03:10:44 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msscntrs.dll
[2011/09/12 03:10:44 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xmlfilter.dll
[2011/09/12 03:10:44 | 000,040,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mimefilt.dll
[2011/09/12 03:10:44 | 000,038,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rtffilt.dll
[2011/09/12 03:10:44 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wsepno.dll
[2011/09/12 03:10:43 | 006,103,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\chtbrkr.dll
[2011/09/12 03:10:43 | 001,582,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tquery.dll
[2011/09/12 03:10:43 | 001,418,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssrch.dll
[2011/09/12 03:10:42 | 000,670,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssvp.dll
[2011/09/12 03:10:42 | 000,350,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssph.dll
[2011/09/12 03:10:42 | 000,203,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssphtb.dll
[2011/09/12 03:07:25 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MSNP.ax
[2011/09/12 03:07:25 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MSDvbNP.ax
[2011/09/12 03:07:19 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\psisdecd.dll
[2011/09/12 03:07:17 | 000,217,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\psisrndr.ax
[2011/09/12 01:19:41 | 000,222,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MpSigStub.exe
[2011/09/12 01:12:59 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution
[2011/09/12 01:12:48 | 000,920,088 | ---- | C] (Intel® Corporation) -- C:\Windows\System32\igxpun.exe
[2011/09/12 01:12:48 | 000,000,000 | ---D | C] -- C:\Windows\System32\x64
[2011/09/12 01:12:48 | 000,000,000 | ---D | C] -- C:\Windows\System32\Lang
[2011/09/12 01:12:42 | 000,319,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\difxapi.dll
[2011/09/12 01:07:19 | 017,730,504 | ---- | C] (Acer Incorporated) -- C:\Windows\eRy.exe
[2011/09/12 01:07:04 | 000,065,536 | ---- | C] (Realtek Semiconductor) -- C:\Windows\SetSpkDefault.exe
[2011/09/12 01:06:52 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\devcon.exe
[2011/09/11 22:58:43 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Roaming\Yahoo!
[2011/09/11 22:57:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Yahoo! Messenger
[2011/09/11 22:57:01 | 000,000,000 | ---D | C] -- C:\ProgramData\Yahoo!
[2011/09/11 21:32:04 | 000,000,000 | ---D | C] -- C:\Windows\System32\WindowsPowerShell
[2011/09/11 20:29:46 | 000,097,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\infocardapi.dll
[2011/09/11 20:29:45 | 000,105,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationCFFRasterizerNative_v0300.dll
[2011/09/11 20:29:44 | 000,622,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\icardagt.exe
[2011/09/11 20:29:44 | 000,043,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationHostProxy.dll
[2011/09/11 20:29:44 | 000,037,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\infocardcpl.cpl
[2011/09/11 20:29:44 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\icardres.dll
[2011/09/11 20:29:42 | 000,781,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationNative_v0300.dll
[2011/09/11 20:29:39 | 000,326,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationHost.exe
[2011/09/11 20:22:47 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netfxperf.dll
[2011/09/11 20:22:37 | 000,158,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mscorier.dll
[2011/09/11 20:22:31 | 000,083,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mscories.dll
[2011/09/11 20:19:34 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\nshhttp.dll
[2011/09/11 20:17:51 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\Roaming
[2011/09/11 20:17:51 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Roaming\Intel
[2011/09/11 20:15:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel PROSet Wireless
[2011/09/11 20:15:41 | 000,000,000 | ---D | C] -- C:\Program Files\Cisco
[2011/09/11 20:15:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Intel
[2011/09/11 20:15:38 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Intel
[2011/09/11 20:13:03 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winrsmgr.dll
[2011/09/11 20:12:52 | 000,040,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winrs.exe
[2011/09/11 20:12:52 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winrshost.exe
[2011/09/11 20:12:52 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wsmprovhost.exe
[2011/09/11 20:12:51 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wsmplpxy.dll
[2011/09/11 20:12:51 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winrssrv.dll
[2011/09/11 20:12:49 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wevtfwd.dll
[2011/09/11 20:12:49 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wecutil.exe
[2011/09/11 20:12:49 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wecapi.dll
[2011/09/11 20:12:49 | 000,054,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WsmRes.dll
[2011/09/11 20:12:49 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pwrshplugin.dll
[2011/09/11 20:12:42 | 000,252,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WSManMigrationPlugin.dll
[2011/09/11 20:12:42 | 000,246,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WSManHTTPConfig.exe
[2011/09/11 20:12:42 | 000,241,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winrscmd.dll
[2011/09/11 20:12:42 | 000,214,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WsmWmiPl.dll
[2011/09/11 20:12:42 | 000,145,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WsmAuto.dll
[2011/09/11 18:40:55 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Roaming\Apple Computer
[2011/09/11 18:08:35 | 012,240,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0007.dll
[2011/09/11 18:08:29 | 002,644,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0009.dll
[2011/09/11 18:08:15 | 000,801,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NaturalLanguage6.dll
[2011/09/11 17:50:40 | 002,452,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dat
[2011/09/11 17:50:37 | 000,671,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mstime.dll
[2011/09/11 17:50:37 | 000,467,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2011/09/11 17:50:37 | 000,389,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll
[2011/09/11 17:50:36 | 000,389,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\html.iec
[2011/09/11 17:50:36 | 000,230,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieaksie.dll
[2011/09/11 17:50:35 | 001,383,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2011/09/11 17:50:35 | 000,380,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dll
[2011/09/11 17:50:35 | 000,193,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iepeers.dll
[2011/09/11 17:50:35 | 000,078,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieencode.dll
[2011/09/11 17:50:35 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2011/09/11 17:50:35 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe
[2011/09/11 17:35:29 | 000,666,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\printfilterpipelinesvc.exe
[2011/09/11 17:35:29 | 000,183,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sdohlp.dll
[2011/09/11 17:35:29 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iasrecst.dll
[2011/09/11 17:35:29 | 000,054,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iasads.dll
[2011/09/11 17:35:29 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iasdatastore.dll
[2011/09/11 17:35:29 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\printfilterpipelineprxy.dll
[2011/09/11 17:35:29 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iashost.exe
[2011/09/11 17:28:35 | 001,695,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\gameux.dll
[2011/09/11 17:28:35 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Apphlpdm.dll
[2011/09/11 17:28:34 | 004,240,384 | ---- | C] (Microsoft) -- C:\Windows\System32\GameUXLegacyGDFs.dll
[2011/09/11 17:26:50 | 002,868,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mf.dll
[2011/09/11 17:26:50 | 002,386,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMVCORE.DLL
[2011/09/11 17:26:46 | 002,042,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2011/09/11 17:26:05 | 000,302,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlansec.dll
[2011/09/11 17:26:05 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlanmsm.dll
[2011/09/11 17:26:05 | 000,127,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\L2SecHC.dll
[2011/09/11 17:24:08 | 000,429,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\EncDec.dll
[2011/09/11 17:24:07 | 000,323,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sbe.dll
[2011/09/11 17:24:07 | 000,177,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mpg2splt.ax
[2011/09/11 17:24:07 | 000,153,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sbeio.dll
[2011/09/11 17:23:59 | 001,161,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc42u.dll
[2011/09/11 17:23:59 | 001,136,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc42.dll
[2011/09/11 17:23:21 | 002,927,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\explorer.exe
[2011/09/11 17:23:03 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dnscacheugc.exe
[2011/09/11 17:22:47 | 000,062,464 | ---- | C] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\Windows\System32\l3codeca.acm
[2011/09/11 17:21:24 | 000,113,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\rmcast.sys
[2011/09/11 17:21:19 | 000,714,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\timedate.cpl
[2011/09/11 17:20:55 | 000,317,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MP4SDECD.DLL
[2011/09/11 17:20:45 | 000,019,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\kd1394.dll
[2011/09/11 17:20:44 | 000,988,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winload.exe
[2011/09/11 17:20:44 | 000,927,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winresume.exe
[2011/09/11 17:20:44 | 000,615,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ci.dll
[2011/09/11 17:20:41 | 000,378,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\srcore.dll
[2011/09/11 17:20:41 | 000,318,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rstrui.exe
[2011/09/11 17:20:41 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\setbcdlocale.dll
[2011/09/11 17:20:41 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\srdelayed.exe
[2011/09/11 17:20:41 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\kbd106n.dll
[2011/09/11 17:20:15 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\amxread.dll
[2011/09/11 17:20:15 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\apilogen.dll
[2011/09/11 17:20:08 | 003,548,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2011/09/11 17:20:07 | 003,600,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe
[2011/09/11 17:19:53 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\asycfilt.dll
[2011/09/11 17:19:50 | 000,562,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdtcprx.dll
[2011/09/11 17:19:49 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xolehlp.dll
[2011/09/11 17:19:43 | 000,996,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMNetMgr.dll
[2011/09/11 17:19:43 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\logagent.exe
[2011/09/11 17:18:03 | 000,157,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\t2embed.dll
[2011/09/11 17:17:45 | 000,081,920 | ---- | C] (Radius Inc.) -- C:\Windows\System32\iccvid.dll
[2011/09/11 17:17:43 | 000,954,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc40.dll
[2011/09/11 17:17:43 | 000,954,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc40u.dll
[2011/09/11 17:16:52 | 000,375,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winsrv.dll
[2011/09/11 17:16:52 | 000,049,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\csrsrv.dll
[2011/09/11 17:16:48 | 000,303,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmpeffects.dll
[2011/09/11 17:14:20 | 008,147,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmploc.DLL
[2011/09/11 17:13:24 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tzres.dll
[2011/09/11 17:12:05 | 001,169,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sdclt.exe
[2011/09/11 17:08:44 | 000,351,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WSDApi.dll
[2011/09/11 17:08:15 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dataclen.dll
[2011/09/11 17:08:15 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cdd.dll
[2011/09/11 17:06:16 | 000,604,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMSPDMOD.DLL
[2011/09/11 17:06:07 | 000,425,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PhotoMetadataHandler.dll
[2011/09/11 17:06:07 | 000,347,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WindowsCodecsExt.dll
[2011/09/11 17:05:34 | 000,292,864 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll
[2011/09/11 17:05:33 | 000,072,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fontsub.dll
[2011/09/11 17:05:33 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\System32\atmlib.dll
[2011/09/11 17:05:33 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dciman32.dll
[2011/09/11 17:05:19 | 000,357,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\taskschd.dll
[2011/09/11 17:05:19 | 000,345,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmicmiplugin.dll
[2011/09/11 17:05:18 | 000,270,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\taskcomp.dll
[2011/09/11 17:05:09 | 000,082,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mciavi32.dll
[2011/09/11 17:05:09 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\avicap32.dll
[2011/09/11 17:04:54 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdxm.tlb
[2011/09/11 17:04:54 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\amcompat.tlb
[2011/09/11 17:04:41 | 000,866,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmpmde.dll
[2011/09/11 17:04:30 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\consent.exe
[2011/09/11 17:04:24 | 001,645,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\connect.dll
[2011/09/11 17:04:12 | 000,180,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\scrobj.dll
[2011/09/11 17:04:12 | 000,135,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cscript.exe
[2011/09/11 17:01:58 | 000,523,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_isv.exe
[2011/09/11 17:01:58 | 000,511,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate.exe
[2011/09/11 17:01:58 | 000,347,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_ssp.exe
[2011/09/11 17:01:57 | 000,472,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc_isv.dll
[2011/09/11 17:01:57 | 000,472,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc.dll
[2011/09/11 17:01:57 | 000,346,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_ssp_isv.exe
[2011/09/11 17:01:56 | 000,329,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdrm.dll
[2011/09/11 17:01:56 | 000,151,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc_ssp_isv.dll
[2011/09/11 17:01:56 | 000,151,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc_ssp.dll
[2011/09/11 17:01:50 | 001,314,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\quartz.dll
[2011/09/11 17:01:49 | 000,181,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fsquirt.exe
[2011/09/11 17:01:15 | 000,147,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Faultrep.dll
[2011/09/11 16:59:53 | 000,310,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\unregmp2.exe
[2011/09/11 16:59:51 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\spwmp.dll
[2011/09/11 16:59:51 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdxm.ocx
[2011/09/11 16:59:51 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxmasf.dll
[2011/09/11 16:55:37 | 000,241,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceApi.dll
[2011/09/11 16:54:24 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pacerprf.dll
[2011/09/11 16:08:12 | 000,404,640 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2011/09/11 15:30:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun
[2011/09/11 15:30:06 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2011/09/11 15:29:23 | 000,472,808 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\deployJava1.dll
[2011/09/11 15:29:23 | 000,157,472 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaws.exe
[2011/09/11 15:29:23 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaw.exe
[2011/09/11 15:29:23 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\java.exe
[2011/09/11 15:29:11 | 000,000,000 | ---D | C] -- C:\Program Files\Java
[2011/09/11 15:22:56 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\xing shared
[2011/09/11 15:22:49 | 000,198,832 | ---- | C] (RealNetworks, Inc.) -- C:\Windows\System32\rmoc3260.dll
[2011/09/11 15:22:42 | 000,006,656 | ---- | C] (RealNetworks, Inc.) -- C:\Windows\System32\pndx5016.dll
[2011/09/11 15:22:42 | 000,005,632 | ---- | C] (RealNetworks, Inc.) -- C:\Windows\System32\pndx5032.dll
[2011/09/11 15:22:40 | 000,272,896 | ---- | C] (Progressive Networks) -- C:\Windows\System32\pncrt.dll
[2011/09/11 15:22:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Real
[2011/09/11 15:22:27 | 000,000,000 | ---D | C] -- C:\Program Files\Real
[2011/09/11 15:22:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Real
[2011/09/11 15:22:16 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Roaming\Real
[2011/09/11 15:11:06 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Local\Google
[2011/09/11 15:11:00 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Local\Conduit
[2011/09/11 15:09:37 | 000,000,000 | ---D | C] -- C:\Program Files\uTorrent
[2011/09/11 15:08:37 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Roaming\uTorrent
[2011/09/11 15:08:37 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Local\uTorrent
[2011/09/11 15:08:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
[2011/09/11 15:07:50 | 000,000,000 | ---D | C] -- C:\Program Files\QuickTime
[2011/09/11 15:07:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple Computer
[2011/09/11 15:07:23 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Apple
[2011/09/11 15:07:11 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Local\Apple
[2011/09/11 15:07:07 | 000,000,000 | ---D | C] -- C:\Program Files\Apple Software Update
[2011/09/11 15:07:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple
[2011/09/11 15:06:30 | 000,000,000 | ---D | C] -- C:\MPEGSUIT
[2011/09/11 15:06:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MPEG Suite 2001
[2011/09/11 15:06:00 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Roaming\Babylon
[2011/09/11 15:06:00 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Local\Babylon
[2011/09/11 15:06:00 | 000,000,000 | ---D | C] -- C:\ProgramData\Babylon
[2011/09/11 15:04:32 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\Documents\flv to avi converter
[2011/09/11 15:03:40 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Local\WinZip
[2011/09/11 15:03:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip
[2011/09/11 15:02:53 | 000,000,000 | ---D | C] -- C:\ProgramData\WinZip
[2011/09/11 15:02:50 | 000,000,000 | ---D | C] -- C:\Program Files\WinZip
[2011/09/11 14:51:47 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Roaming\DivX
[2011/09/11 14:51:34 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\PX Storage Engine
[2011/09/11 14:51:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX Plus
[2011/09/11 14:51:07 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DivX Shared
[2011/09/11 14:35:49 | 000,000,000 | ---D | C] -- C:\Program Files\DivX
[2011/09/11 14:33:12 | 000,000,000 | ---D | C] -- C:\ProgramData\DivX
[2011/09/11 14:25:24 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe
[2011/09/11 14:25:24 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe
[2011/09/11 13:32:36 | 000,000,000 | -HSD | C] -- C:\Windows\ftpcache
[2011/09/11 13:31:39 | 000,099,896 | ---- | C] (HP) -- C:\Windows\System32\HPSIsvc.exe
[2011/09/11 13:28:25 | 001,112,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WdfCoInstaller01007.dll
[2011/09/11 13:28:25 | 000,017,408 | ---- | C] (Marvell Semiconductor, Inc.) -- C:\Windows\System32\drivers\mvusbews.sys
[2011/09/11 13:26:28 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\Documents\My Scans
[2011/09/11 13:22:28 | 000,000,000 | ---D | C] -- C:\ProgramData\WEBREG
[2011/09/11 13:22:21 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Roaming\HP
[2011/09/11 13:21:32 | 000,000,000 | ---D | C] -- C:\ProgramData\HPSSUPPLY
[2011/09/11 13:19:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
[2011/09/11 13:18:55 | 000,000,000 | ---D | C] -- C:\Program Files\Hewlett-Packard
[2011/09/11 13:18:55 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Hewlett-Packard
[2011/09/11 13:18:30 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\HP
[2011/09/11 13:17:01 | 000,000,000 | ---D | C] -- C:\ProgramData\Hewlett-Packard
[2011/09/11 13:14:26 | 000,117,760 | ---- | C] (Hewlett-Packard Company) -- C:\Windows\System32\hpz3l4v2.dll
[2011/09/11 13:14:15 | 000,000,000 | ---D | C] -- C:\Program Files\HP
[2011/09/11 13:13:08 | 000,000,000 | ---D | C] -- C:\ProgramData\HP
[2011/09/11 13:13:04 | 000,675,840 | ---- | C] (Hewlett-Packard) -- C:\Windows\System32\hpowiav1.dll
[2011/09/11 13:13:04 | 000,303,104 | ---- | C] (Hewlett-Packard Co.) -- C:\Windows\System32\hpovst01.dll
[2011/09/11 13:13:04 | 000,258,048 | ---- | C] (Hewlett-Packard) -- C:\Windows\System32\hpzids01.dll
[2011/09/11 13:13:03 | 000,897,024 | ---- | C] (Hewlett-Packard Co.) -- C:\Windows\System32\hpotiop1.dll
[2011/09/11 12:17:52 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Local\Adobe
[2011/09/11 11:35:45 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Symantec
[2011/09/11 11:32:05 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Roaming\Mozilla
[2011/09/11 11:32:05 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Local\Mozilla
[2011/09/11 11:32:00 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2011/09/11 11:10:21 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Roaming\Adobe
[2011/09/11 11:05:26 | 000,000,000 | ---D | C] -- C:\ProgramData\TEMP
[2011/09/11 10:48:48 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\Bluetooth Software
[2011/09/11 10:48:48 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\Documents\Bluetooth Exchange Folder
[2011/09/11 10:46:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer GridVista
[2011/09/11 10:42:32 | 000,368,640 | ---- | C] (Acer Inc.) -- C:\Windows\System32\CheckD2DSystem.exe
[2011/09/11 10:42:32 | 000,327,680 | ---- | C] (Acer Inc.) -- C:\Windows\System32\Remove_eRecovery.exe
[2011/09/11 10:42:32 | 000,016,384 | ---- | C] ( ) -- C:\Windows\System32\ClearEvent.exe
[2011/09/11 10:39:55 | 000,229,376 | ---- | C] (Broadcom Corporation.) -- C:\Windows\System32\BtwRSupport.dll
[2011/09/11 10:39:51 | 000,000,000 | ---D | C] -- C:\Windows\System32\es-MX
[2011/09/11 10:39:51 | 000,000,000 | ---D | C] -- C:\Windows\System32\es-AR
[2011/09/11 10:39:49 | 000,000,000 | ---D | C] -- C:\Program Files\WIDCOMM
[2011/09/11 10:37:40 | 000,046,592 | ---- | C] (REDC) -- C:\Windows\System32\drivers\rimmptsk.sys
[2011/09/11 10:36:01 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Mcafee
[2011/09/11 10:36:00 | 000,000,000 | ---D | C] -- C:\ProgramData\McAfee
[2011/09/11 10:36:00 | 000,000,000 | ---D | C] -- C:\Program Files\McAfee
[2011/09/11 10:33:00 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Launch Manager
[2011/09/11 10:32:58 | 000,000,000 | ---D | C] -- C:\Program Files\Launch Manager
[2011/09/11 10:31:51 | 000,000,000 | -H-D | C] -- C:\Users\LivthefLip\AppData\Local\acer eNM
[2011/09/11 10:31:00 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Roaming\Symantec
[2011/09/11 10:30:27 | 000,000,000 | R--D | C] -- C:\Users\LivthefLip\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2011/09/11 10:30:27 | 000,000,000 | R--D | C] -- C:\Users\LivthefLip\Searches
[2011/09/11 10:30:27 | 000,000,000 | R--D | C] -- C:\Users\LivthefLip\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2011/09/11 10:30:16 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Roaming\Identities
[2011/09/11 10:30:15 | 000,000,000 | R--D | C] -- C:\Users\LivthefLip\Contacts
[2011/09/11 10:30:14 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Local\VirtualStore
[2011/09/11 10:29:55 | 071,837,917 | ---- | C] (Adobe Systems, Inc.) -- C:\Windows\System32\acer.exe
[2011/09/11 10:29:54 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Roaming\Macromedia
[2011/09/11 10:29:42 | 000,000,000 | ---D | C] -- C:\Program Files\Acer Inc
[2011/09/11 10:29:29 | 000,000,000 | ---D | C] -- C:\Windows\ACER
[2011/09/11 10:28:48 | 000,000,000 | -HSD | C] -- C:\Users\LivthefLip\AppData\Local\Temporary Internet Files
[2011/09/11 10:28:48 | 000,000,000 | -HSD | C] -- C:\Users\LivthefLip\Templates
[2011/09/11 10:28:48 | 000,000,000 | -HSD | C] -- C:\Users\LivthefLip\Start Menu
[2011/09/11 10:28:48 | 000,000,000 | -HSD | C] -- C:\Users\LivthefLip\SendTo
[2011/09/11 10:28:48 | 000,000,000 | -HSD | C] -- C:\Users\LivthefLip\Recent
[2011/09/11 10:28:48 | 000,000,000 | -HSD | C] -- C:\Users\LivthefLip\PrintHood
[2011/09/11 10:28:48 | 000,000,000 | -HSD | C] -- C:\Users\LivthefLip\NetHood
[2011/09/11 10:28:48 | 000,000,000 | -HSD | C] -- C:\Users\LivthefLip\Documents\My Videos
[2011/09/11 10:28:48 | 000,000,000 | -HSD | C] -- C:\Users\LivthefLip\Documents\My Pictures
[2011/09/11 10:28:48 | 000,000,000 | -HSD | C] -- C:\Users\LivthefLip\Documents\My Music
[2011/09/11 10:28:48 | 000,000,000 | -HSD | C] -- C:\Users\LivthefLip\My Documents
[2011/09/11 10:28:48 | 000,000,000 | -HSD | C] -- C:\Users\LivthefLip\Local Settings
[2011/09/11 10:28:48 | 000,000,000 | -HSD | C] -- C:\Users\LivthefLip\AppData\Local\History
[2011/09/11 10:28:48 | 000,000,000 | -HSD | C] -- C:\Users\LivthefLip\Cookies
[2011/09/11 10:28:48 | 000,000,000 | -HSD | C] -- C:\Users\LivthefLip\Application Data
[2011/09/11 10:28:48 | 000,000,000 | -HSD | C] -- C:\Users\LivthefLip\AppData\Local\Application Data
[2011/09/11 10:28:47 | 000,000,000 | --SD | C] -- C:\Users\LivthefLip\AppData\Roaming\Microsoft
[2011/09/11 10:28:47 | 000,000,000 | R--D | C] -- C:\Users\LivthefLip\Videos
[2011/09/11 10:28:47 | 000,000,000 | R--D | C] -- C:\Users\LivthefLip\Saved Games
[2011/09/11 10:28:47 | 000,000,000 | R--D | C] -- C:\Users\LivthefLip\Pictures
[2011/09/11 10:28:47 | 000,000,000 | R--D | C] -- C:\Users\LivthefLip\Music
[2011/09/11 10:28:47 | 000,000,000 | R--D | C] -- C:\Users\LivthefLip\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2011/09/11 10:28:47 | 000,000,000 | R--D | C] -- C:\Users\LivthefLip\Links
[2011/09/11 10:28:47 | 000,000,000 | R--D | C] -- C:\Users\LivthefLip\Favorites
[2011/09/11 10:28:47 | 000,000,000 | R--D | C] -- C:\Users\LivthefLip\Downloads
[2011/09/11 10:28:47 | 000,000,000 | R--D | C] -- C:\Users\LivthefLip\Documents
[2011/09/11 10:28:47 | 000,000,000 | R--D | C] -- C:\Users\LivthefLip\Desktop
[2011/09/11 10:28:47 | 000,000,000 | R--D | C] -- C:\Users\LivthefLip\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2011/09/11 10:28:47 | 000,000,000 | -H-D | C] -- C:\Users\LivthefLip\AppData
[2011/09/11 10:28:47 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Local\Temp
[2011/09/11 10:28:47 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Local\Microsoft
[2011/09/11 10:28:47 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Roaming\Media Center Programs
[2011/09/11 10:28:47 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink PowerProducer
[2011/09/11 10:28:47 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Roaming\Acer GameZone Console
[2011/09/11 10:26:32 | 000,044,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wups2.dll
[2011/09/11 10:26:31 | 002,421,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wucltux.dll
[2011/09/11 10:26:22 | 000,575,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuapi.dll
[2011/09/11 10:26:22 | 000,087,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wudriver.dll
[2011/09/11 10:26:22 | 000,035,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wups.dll
[2011/09/11 10:26:14 | 000,171,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuwebv.dll
[2011/09/11 10:26:14 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuapp.exe
[2008/02/15 02:34:08 | 000,045,056 | ---- | C] ( ) -- C:\Windows\PLFSet.dll

========== Files - Modified Within 30 Days ==========

[2011/09/19 14:56:28 | 000,003,216 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2011/09/19 14:56:28 | 000,003,216 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2011/09/19 12:41:52 | 000,029,184 | ---- | M] () -- C:\Users\LivthefLip\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/09/19 09:36:48 | 000,600,378 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2011/09/19 09:36:47 | 000,105,852 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2011/09/19 08:56:26 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011/09/19 08:56:24 | 2137,448,448 | -HS- | M] () -- C:\hiberfil.sys
[2011/09/18 22:06:23 | 000,000,012 | ---- | M] () -- C:\Windows\bthservsdp.dat
[2011/09/18 21:09:10 | 004,215,031 | R--- | M] (Swearware) -- C:\Users\LivthefLip\Desktop\Combo-Fix.exe
[2011/09/18 18:22:21 | 000,030,190 | -HS- | M] () -- C:\Windows\5942652drv.spi
[2011/09/18 11:05:18 | 000,000,812 | ---- | M] () -- C:\Users\LivthefLip\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\_uninst_10953016.lnk
[2011/09/18 09:48:33 | 000,001,882 | ---- | M] () -- C:\Users\Public\Desktop\Xilisoft DPG Converter 6.lnk
[2011/09/18 09:05:24 | 000,000,900 | ---- | M] () -- C:\Users\LivthefLip\Desktop\FoxTab AVI Converter.lnk
[2011/09/16 14:55:42 | 000,000,098 | ---- | M] () -- C:\Windows\System32\drivers\etc\Hosts
[2011/09/12 21:23:19 | 000,000,556 | ---- | M] () -- C:\Windows\tasks\Norton Internet Security - Run Full System Scan - LivthefLip.job
[2011/09/12 03:55:31 | 000,228,176 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2011/09/12 01:19:40 | 000,047,092 | ---- | M] () -- C:\Windows\System32\license.rtf
[2011/09/12 01:07:20 | 000,000,003 | ---- | M] () -- C:\Windows\AFirst.cmd
[2011/09/11 22:57:30 | 000,404,640 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2011/09/11 22:57:03 | 000,000,970 | ---- | M] () -- C:\Users\LivthefLip\Application Data\Microsoft\Internet Explorer\Quick Launch\Yahoo! Messenger.lnk
[2011/09/11 16:02:37 | 000,000,572 | ---- | M] () -- C:\Users\LivthefLip\Application Data\Microsoft\Internet Explorer\Quick Launch\MPEG Suite.lnk
[2011/09/11 16:02:30 | 000,001,073 | ---- | M] () -- C:\Users\LivthefLip\Application Data\Microsoft\Internet Explorer\Quick Launch\RealPlayer.lnk
[2011/09/11 15:29:14 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\deployJava1.dll
[2011/09/11 15:29:14 | 000,157,472 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaws.exe
[2011/09/11 15:29:14 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaw.exe
[2011/09/11 15:29:14 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\java.exe
[2011/09/11 15:22:49 | 000,198,832 | ---- | M] (RealNetworks, Inc.) -- C:\Windows\System32\rmoc3260.dll
[2011/09/11 15:22:42 | 000,006,656 | ---- | M] (RealNetworks, Inc.) -- C:\Windows\System32\pndx5016.dll
[2011/09/11 15:22:42 | 000,005,632 | ---- | M] (RealNetworks, Inc.) -- C:\Windows\System32\pndx5032.dll
[2011/09/11 15:22:40 | 000,272,896 | ---- | M] (Progressive Networks) -- C:\Windows\System32\pncrt.dll
[2011/09/11 15:12:18 | 000,000,780 | ---- | M] () -- C:\Users\LivthefLip\Application Data\Microsoft\Internet Explorer\Quick Launch\µTorrent.lnk
[2011/09/11 14:54:43 | 000,000,939 | ---- | M] () -- C:\Users\LivthefLip\Application Data\Microsoft\Internet Explorer\Quick Launch\DivX Plus Player.lnk
[2011/09/11 13:31:15 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_Kernel_mvusbews_01007.Wdf
[2011/09/11 13:22:36 | 000,130,834 | ---- | M] () -- C:\Windows\hpoins18.dat
[2011/09/11 13:19:28 | 000,001,976 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk
[2011/09/11 13:17:43 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_00_00.Wdf
[2011/09/11 11:41:28 | 000,124,464 | ---- | M] (Symantec Corporation) -- C:\Windows\System32\drivers\SYMEVENT.SYS
[2011/09/11 11:41:28 | 000,010,635 | ---- | M] () -- C:\Windows\System32\drivers\SYMEVENT.CAT
[2011/09/11 11:41:28 | 000,000,806 | ---- | M] () -- C:\Windows\System32\drivers\SYMEVENT.INF
[2011/09/11 11:32:02 | 000,000,874 | ---- | M] () -- C:\Users\LivthefLip\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2011/09/11 11:05:58 | 000,002,069 | ---- | M] () -- C:\Users\LivthefLip\Application Data\Microsoft\Internet Explorer\Quick Launch\Acer Arcade Deluxe.lnk
[2011/09/11 11:05:55 | 000,000,950 | ---- | M] () -- C:\Users\LivthefLip\Application Data\Microsoft\Internet Explorer\Quick Launch\Acer GameZone Console.lnk
[2011/09/11 11:01:55 | 000,000,942 | ---- | M] () -- C:\Users\LivthefLip\Application Data\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk
[2011/09/11 10:47:06 | 000,000,144 | ---- | M] () -- C:\Windows\Alaunch.ini
[2011/09/11 10:47:00 | 000,000,092 | ---- | M] () -- C:\Windows\GridV.UNI
[2011/09/11 10:39:52 | 000,000,743 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk
[2011/09/11 10:33:00 | 000,000,083 | ---- | M] () -- C:\Windows\QtZgAcer.UNI
[2011/09/11 10:30:29 | 000,000,947 | ---- | M] () -- C:\Users\LivthefLip\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2011/09/11 10:29:11 | 000,001,976 | ---- | M] () -- C:\Windows\CLEANUP.CMD
[2011/09/11 10:29:09 | 000,016,068 | ---- | M] () -- C:\Windows\System32\results.xml
[2011/08/31 17:00:50 | 000,022,216 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys

========== Files Created - No Company Name ==========

[2011/09/18 21:09:38 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe
[2011/09/18 21:09:38 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe
[2011/09/18 21:09:38 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2011/09/18 21:09:38 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2011/09/18 21:09:38 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2011/09/18 17:27:50 | 000,030,190 | -HS- | C] () -- C:\Windows\5942652drv.spi
[2011/09/18 11:05:18 | 000,000,812 | ---- | C] () -- C:\Users\LivthefLip\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\_uninst_10953016.lnk
[2011/09/18 09:48:33 | 000,001,882 | ---- | C] () -- C:\Users\Public\Desktop\Xilisoft DPG Converter 6.lnk
[2011/09/18 09:05:24 | 000,000,900 | ---- | C] () -- C:\Users\LivthefLip\Desktop\FoxTab AVI Converter.lnk
[2011/09/12 03:10:49 | 000,106,605 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchema.bin
[2011/09/12 03:10:49 | 000,018,904 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchemaTrivial.bin
[2011/09/12 03:10:44 | 011,967,524 | ---- | C] () -- C:\Windows\System32\korwbrkr.lex
[2011/09/12 01:17:41 | 2137,448,448 | -HS- | C] () -- C:\hiberfil.sys
[2011/09/12 01:07:20 | 000,000,003 | ---- | C] () -- C:\Windows\AFirst.cmd
[2011/09/12 01:07:15 | 000,000,030 | ---- | C] () -- C:\Windows\SetPanel.ini
[2011/09/12 01:07:08 | 000,000,294 | ---- | C] () -- C:\Windows\offline.reg
[2011/09/12 01:07:04 | 000,020,480 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SETRES.EXE
[2011/09/12 01:07:04 | 000,020,480 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SETAUDIO.EXE
[2011/09/12 01:06:52 | 000,001,976 | ---- | C] () -- C:\Windows\CLEANUP.CMD
[2011/09/12 01:06:52 | 000,000,092 | ---- | C] () -- C:\Windows\CLEANUP.INI
[2011/09/11 22:57:03 | 000,000,970 | ---- | C] () -- C:\Users\LivthefLip\Application Data\Microsoft\Internet Explorer\Quick Launch\Yahoo! Messenger.lnk
[2011/09/11 20:12:44 | 000,201,184 | ---- | C] () -- C:\Windows\System32\winrm.vbs
[2011/09/11 20:12:44 | 000,004,675 | ---- | C] () -- C:\Windows\System32\wsmanconfig_schema.xml
[2011/09/11 20:12:44 | 000,002,426 | ---- | C] () -- C:\Windows\System32\WsmTxt.xsl
[2011/09/11 17:26:06 | 002,501,921 | ---- | C] () -- C:\Windows\System32\wlan.tmf
[2011/09/11 16:16:36 | 000,029,184 | ---- | C] () -- C:\Users\LivthefLip\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/09/11 16:02:37 | 000,000,572 | ---- | C] () -- C:\Users\LivthefLip\Application Data\Microsoft\Internet Explorer\Quick Launch\MPEG Suite.lnk
[2011/09/11 16:02:30 | 000,001,073 | ---- | C] () -- C:\Users\LivthefLip\Application Data\Microsoft\Internet Explorer\Quick Launch\RealPlayer.lnk
[2011/09/11 15:09:37 | 000,000,780 | ---- | C] () -- C:\Users\LivthefLip\Application Data\Microsoft\Internet Explorer\Quick Launch\µTorrent.lnk
[2011/09/11 15:07:09 | 000,001,830 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
[2011/09/11 14:54:43 | 000,000,939 | ---- | C] () -- C:\Users\LivthefLip\Application Data\Microsoft\Internet Explorer\Quick Launch\DivX Plus Player.lnk
[2011/09/11 14:25:36 | 000,001,804 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader 9.lnk
[2011/09/11 13:31:15 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_Kernel_mvusbews_01007.Wdf
[2011/09/11 13:28:44 | 001,511,424 | ---- | C] () -- C:\Windows\System32\HP1100SM.EXE
[2011/09/11 13:28:44 | 000,147,456 | ---- | C] () -- C:\Windows\System32\HP1100LM.DLL
[2011/09/11 13:28:27 | 000,284,160 | ---- | C] () -- C:\Windows\System32\mvhlewsi.dll
[2011/09/11 13:28:24 | 000,081,920 | ---- | C] () -- C:\Windows\System32\mvusbews.dll
[2011/09/11 13:28:23 | 000,047,104 | ---- | C] () -- C:\Windows\System32\HP1100SMs.dll
[2011/09/11 13:21:17 | 000,000,855 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\I.R.I.S. OCR Registration.lnk
[2011/09/11 13:19:28 | 000,001,976 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk
[2011/09/11 13:17:43 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_00_00.Wdf
[2011/09/11 13:13:14 | 000,130,834 | ---- | C] () -- C:\Windows\hpoins18.dat
[2011/09/11 13:13:01 | 000,006,600 | ---- | C] () -- C:\Windows\hpomdl18.dat
[2011/09/11 11:32:02 | 000,000,874 | ---- | C] () -- C:\Users\LivthefLip\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2011/09/11 11:32:02 | 000,000,862 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
[2011/09/11 11:05:58 | 000,002,069 | ---- | C] () -- C:\Users\LivthefLip\Application Data\Microsoft\Internet Explorer\Quick Launch\Acer Arcade Deluxe.lnk
[2011/09/11 11:05:55 | 000,000,950 | ---- | C] () -- C:\Users\LivthefLip\Application Data\Microsoft\Internet Explorer\Quick Launch\Acer GameZone Console.lnk
[2011/09/11 11:01:55 | 000,000,942 | ---- | C] () -- C:\Users\LivthefLip\Application Data\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk
[2011/09/11 10:48:22 | 000,000,012 | ---- | C] () -- C:\Windows\bthservsdp.dat
[2011/09/11 10:48:07 | 000,000,556 | ---- | C] () -- C:\Windows\tasks\Norton Internet Security - Run Full System Scan - LivthefLip.job
[2011/09/11 10:47:00 | 000,000,092 | ---- | C] () -- C:\Windows\GridV.UNI
[2011/09/11 10:42:32 | 000,016,384 | ---- | C] () -- C:\Windows\System32\LauncheRyAgentUser.exe
[2011/09/11 10:42:32 | 000,000,552 | ---- | C] () -- C:\Windows\System32\setup.iss
[2011/09/11 10:39:52 | 000,000,743 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk
[2011/09/11 10:33:00 | 000,000,083 | ---- | C] () -- C:\Windows\QtZgAcer.UNI
[2011/09/11 10:30:29 | 000,000,953 | ---- | C] () -- C:\Users\LivthefLip\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[2011/09/11 10:30:27 | 000,000,948 | ---- | C] () -- C:\Users\LivthefLip\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
[2011/09/11 10:30:15 | 000,000,919 | ---- | C] () -- C:\Users\LivthefLip\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Mail.lnk
[2011/09/11 10:29:54 | 083,554,304 | ---- | C] () -- C:\Windows\System32\acer.scr
[2011/09/11 10:29:11 | 000,000,947 | ---- | C] () -- C:\Users\LivthefLip\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2011/09/11 10:29:09 | 000,016,068 | ---- | C] () -- C:\Windows\System32\results.xml
[2011/09/11 10:28:47 | 000,000,258 | ---- | C] () -- C:\Users\LivthefLip\Application Data\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk
[2011/09/11 10:28:47 | 000,000,240 | ---- | C] () -- C:\Users\LivthefLip\Application Data\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk
[2009/04/01 10:48:16 | 000,053,478 | ---- | C] () -- C:\Windows\mvtcpui.ini
[2008/02/15 04:56:34 | 000,015,656 | ---- | C] () -- C:\Windows\System32\drivers\int15_64.sys
[2008/02/15 04:55:51 | 000,065,536 | ---- | C] () -- C:\Windows\System32\NATTraversal.dll
[2008/02/15 04:54:26 | 000,001,024 | RH-- | C] () -- C:\Windows\System32\NTIBUN4.dll
[2008/02/15 04:03:21 | 000,001,132 | ---- | C] () -- C:\Windows\RtDefLvl.ini
[2008/02/15 04:03:21 | 000,000,008 | ---- | C] () -- C:\Windows\System32\drivers\RtkHDAud.dat
[2008/02/15 02:34:23 | 000,000,144 | ---- | C] () -- C:\Windows\Alaunch.ini
[2008/02/15 02:34:15 | 001,953,696 | ---- | C] () -- C:\Windows\System32\igklg400.dll
[2008/02/15 02:34:15 | 001,533,360 | ---- | C] () -- C:\Windows\System32\igklg450.dll
[2008/02/15 02:34:15 | 000,147,456 | ---- | C] () -- C:\Windows\System32\igfxCoIn_v1409.dll
[2008/02/15 02:34:15 | 000,104,636 | ---- | C] () -- C:\Windows\System32\igmedcompkrn.dll
[2008/02/15 02:34:09 | 001,729,152 | ---- | C] () -- C:\Windows\System32\drivers\snp2uvc.sys
[2008/02/15 02:33:58 | 001,060,424 | ---- | C] () -- C:\Windows\System32\WdfCoInstaller01000.dll
[2007/03/29 12:42:38 | 000,389,120 | ---- | C] () -- C:\Windows\System32\btwhidcs.dll
[2006/11/02 20:57:28 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2006/11/02 20:47:37 | 000,228,176 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2006/11/02 20:35:32 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll
[2006/11/02 18:33:01 | 000,600,378 | ---- | C] () -- C:\Windows\System32\perfh009.dat
[2006/11/02 18:33:01 | 000,287,440 | ---- | C] () -- C:\Windows\System32\perfi009.dat
[2006/11/02 18:33:01 | 000,105,852 | ---- | C] () -- C:\Windows\System32\perfc009.dat
[2006/11/02 18:33:01 | 000,030,674 | ---- | C] () -- C:\Windows\System32\perfd009.dat
[2006/11/02 18:23:21 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat
[2006/11/02 16:58:30 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2006/11/02 16:19:00 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT
[2006/11/02 15:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2006/11/02 15:25:31 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat
[2001/12/27 08:12:30 | 000,065,536 | ---- | C] () -- C:\Windows\System32\multiplex_vcd.dll
[2001/11/14 13:56:00 | 001,802,240 | ---- | C] () -- C:\Windows\System32\lcppn21.dll
[2001/09/04 15:46:38 | 000,110,592 | ---- | C] () -- C:\Windows\System32\Hmpg12.dll
[2001/07/31 08:33:56 | 000,118,784 | ---- | C] () -- C:\Windows\System32\HMPV2_ENC.dll
[2001/07/24 14:04:36 | 000,118,784 | ---- | C] () -- C:\Windows\System32\HMPV2_ENC_MMX.dll

========== LOP Check ==========

[2008/02/15 04:28:28 | 000,000,000 | ---D | M] -- C:\Users\Default\AppData\Roaming\Acer GameZone Console
[2008/02/15 04:28:28 | 000,000,000 | ---D | M] -- C:\Users\Default User\AppData\Roaming\Acer GameZone Console
[2008/02/15 04:28:28 | 000,000,000 | ---D | M] -- C:\Users\LivthefLip\AppData\Roaming\Acer GameZone Console
[2011/09/11 15:06:00 | 000,000,000 | ---D | M] -- C:\Users\LivthefLip\AppData\Roaming\Babylon
[2011/09/19 09:45:24 | 000,000,000 | ---D | M] -- C:\Users\LivthefLip\AppData\Roaming\uTorrent
[2011/09/18 09:57:32 | 000,000,000 | ---D | M] -- C:\Users\LivthefLip\AppData\Roaming\Xilisoft
[2011/09/18 22:06:33 | 000,012,792 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========



========== Custom Scans ==========


< %SYSTEMDRIVE%\*.exe >


< MD5 for: EXPLORER.EXE >
[2008/10/29 14:20:29 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=37440D09DEAE0B672A04DCCF7ABF06BE -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.16771_none_4f83bb287ccdb7e3\explorer.exe
[2008/10/29 14:29:41 | 002,927,104 | ---- | M] (Microsoft Corporation) MD5=4F554999D7D5F05DAAEBBA7B5BA1089D -- C:\Windows\ERDNT\cache\explorer.exe
[2008/10/29 14:29:41 | 002,927,104 | ---- | M] (Microsoft Corporation) MD5=4F554999D7D5F05DAAEBBA7B5BA1089D -- C:\Windows\explorer.exe
[2008/10/29 14:29:41 | 002,927,104 | ---- | M] (Microsoft Corporation) MD5=4F554999D7D5F05DAAEBBA7B5BA1089D -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.18164_none_5177ca9879e978e8\explorer.exe
[2008/10/30 11:59:17 | 002,927,616 | ---- | M] (Microsoft Corporation) MD5=50BA5850147410CDE89C523AD3BC606E -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.22298_none_51e4f8c7931bd1e1\explorer.exe
[2008/10/28 10:15:02 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=E7156B0B74762D9DE0E66BDCDE06E5FB -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.20947_none_5033cb5995cd990b\explorer.exe
[2008/01/21 10:24:24 | 002,927,104 | ---- | M] (Microsoft Corporation) MD5=FFA764631CB70A30065C12EF8E174F9F -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.18000_none_51b4a71279bc6ebf\explorer.exe

< MD5 for: SVCHOST.EXE >
[2008/01/21 10:23:43 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=3794B461C45882E06856F282EEF025AF -- C:\Windows\ERDNT\cache\svchost.exe
[2008/01/21 10:23:43 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=3794B461C45882E06856F282EEF025AF -- C:\Windows\System32\svchost.exe
[2008/01/21 10:23:43 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=3794B461C45882E06856F282EEF025AF -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.0.6001.18000_none_b5bb59a1054dbde5\svchost.exe

< MD5 for: USERINIT.EXE >
[2008/01/21 10:24:49 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=0E135526E9785D085BCD9AEDE6FBCBF9 -- C:\Windows\ERDNT\cache\userinit.exe
[2008/01/21 10:24:49 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=0E135526E9785D085BCD9AEDE6FBCBF9 -- C:\Windows\System32\userinit.exe
[2008/01/21 10:24:49 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=0E135526E9785D085BCD9AEDE6FBCBF9 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.0.6001.18000_none_dc28ba15d1aff80b\userinit.exe

< MD5 for: WINLOGON.EXE >
[2008/01/21 10:24:49 | 000,314,880 | ---- | M] (Microsoft Corporation) MD5=C2610B6BDBEFC053BBDAB4F1B965CB24 -- C:\Windows\ERDNT\cache\winlogon.exe
[2008/01/21 10:24:49 | 000,314,880 | ---- | M] (Microsoft Corporation) MD5=C2610B6BDBEFC053BBDAB4F1B965CB24 -- C:\Windows\System32\winlogon.exe
[2008/01/21 10:24:49 | 000,314,880 | ---- | M] (Microsoft Corporation) MD5=C2610B6BDBEFC053BBDAB4F1B965CB24 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6001.18000_none_6fc30116d4f17bf5\winlogon.exe

< %systemroot%\*. /mp /s >

< hklm\software\clients\startmenuinternet|command /rs >
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\HideIconsCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /HideShortcuts [2011/09/03 14:01:45 | 000,713,016 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ShowIconsCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /ShowShortcuts [2011/09/03 14:01:45 | 000,713,016 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ReinstallCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /SetAsDefaultAppGlobal [2011/09/03 14:01:45 | 000,713,016 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\open\command\\: C:\Program Files\Mozilla Firefox\firefox.exe [2011/09/03 14:01:45 | 000,924,632 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\properties\command\\: "C:\Program Files\Mozilla Firefox\firefox.exe" -preferences [2011/09/03 14:01:45 | 000,924,632 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\safemode\command\\: "C:\Program Files\Mozilla Firefox\firefox.exe" -safe-mode [2011/09/03 14:01:45 | 000,924,632 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\HideIconsCommand: "C:\Windows\system32\ie4uinit.exe" -hide [2008/01/21 10:24:17 | 000,070,656 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ShowIconsCommand: "C:\Windows\system32\ie4uinit.exe" -show [2008/01/21 10:24:17 | 000,070,656 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ReinstallCommand: "C:\Windows\system32\ie4uinit.exe" -reinstall [2008/01/21 10:24:17 | 000,070,656 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\open\command\\: "C:\Program Files\Internet Explorer\iexplore.exe" [2011/04/21 23:02:30 | 000,634,648 | ---- | M] (Microsoft Corporation)

< hklm\software\clients\startmenuinternet|command /64 /rs >
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\HideIconsCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /HideShortcuts [2011/09/03 14:01:45 | 000,713,016 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ShowIconsCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /ShowShortcuts [2011/09/03 14:01:45 | 000,713,016 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ReinstallCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /SetAsDefaultAppGlobal [2011/09/03 14:01:45 | 000,713,016 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\open\command\\: C:\Program Files\Mozilla Firefox\firefox.exe [2011/09/03 14:01:45 | 000,924,632 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\properties\command\\: "C:\Program Files\Mozilla Firefox\firefox.exe" -preferences [2011/09/03 14:01:45 | 000,924,632 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\safemode\command\\: "C:\Program Files\Mozilla Firefox\firefox.exe" -safe-mode [2011/09/03 14:01:45 | 000,924,632 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\HideIconsCommand: "C:\Windows\system32\ie4uinit.exe" -hide [2008/01/21 10:24:17 | 000,070,656 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ShowIconsCommand: "C:\Windows\system32\ie4uinit.exe" -show [2008/01/21 10:24:17 | 000,070,656 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ReinstallCommand: "C:\Windows\system32\ie4uinit.exe" -reinstall [2008/01/21 10:24:17 | 000,070,656 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\open\command\\: "C:\Program Files\Internet Explorer\iexplore.exe" [2011/04/21 23:02:30 | 000,634,648 | ---- | M] (Microsoft Corporation)

< End of report >
  • 0

#19
livtheflip
Posted 19 September 2011 - 01:47 AM

livtheflip

    Member

  • Topic Starter
  • Member
  • PipPip
  • 21 posts
can i uninstall the babylon toolbar on IE?
  • 0

#20
Render
Posted 19 September 2011 - 04:27 AM

Render

    Trusted Helper

  • Malware Removal
  • 4,195 posts
Yes, you can if you don't like it. Also update me with how is your computer running now.
  • 0

#21
livtheflip
Posted 19 September 2011 - 07:08 AM

livtheflip

    Member

  • Topic Starter
  • Member
  • PipPip
  • 21 posts
its still here,ive uninstalled it already but whenever i add a new tab in firefox it is still there search.babylon.com and when i go to isohunt it redirect me to assist.babylon.com,,its just annoying..
  • 0

#22
livtheflip
Posted 19 September 2011 - 07:08 AM

livtheflip

    Member

  • Topic Starter
  • Member
  • PipPip
  • 21 posts
its still here,ive uninstalled it already but whenever i add a new tab in firefox it is still there search.babylon.com and when i go to isohunt it redirect me to assist.babylon.com,,its just annoying..
  • 0

#23
Render
Posted 19 September 2011 - 07:20 AM

Render

    Trusted Helper

  • Malware Removal
  • 4,195 posts
OK. Please run this fix and then I want you to run your PC as normal and tell me if it's coming back.

We need to run an OTL Fix

Warning This fix is only relevant for this system and no other, using on another computer may cause problems.

  • Please right click on Posted Image on your desktop and click on Run as administrator.
  • Under the Custom Scans/Fixes box copy and paste this in:

    :OTL
FF - prefs.js..browser.search.selectedEngine: "Search the web (Babylon)"
FF - prefs.js..keyword.URL: "http://search.babylon.com/?babsrc=SP_ss&q={searchTerms}&mntrId=144b73bf000000000000001f3c3719ce&tlver=1.4.35.10&affID=100474"
[2011/09/18 09:04:32 | 000,000,000 | ---D | M] (Babylon) -- C:\Users\LivthefLip\AppData\Roaming\Mozilla\Firefox\Profiles\yhzzhqm6.default\extensions\[email protected]
[2011/09/18 09:04:29 | 000,002,288 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\babylon.xml
O2 - BHO: (Babylon toolbar helper) - {2EECD738-5844-4a99-B4B6-146BF802613B} - C:\Program Files\BabylonToolbar\BabylonToolbar\1.4.35.10\bh\BabylonToolbar.dll (Babylon BHO)
O3 - HKLM\..\Toolbar: (Babylon Toolbar) - {98889811-442D-49dd-99D7-DC866BE87DBC} - C:\Program Files\BabylonToolbar\BabylonToolbar\1.4.35.10\BabylonToolbarTlbr.dll (Babylon Ltd.)
O4 - Startup: C:\Users\LivthefLip\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\_uninst_10953016.lnk = File not found

  	
:Files
C:\Program Files\BabylonToolbar
C:\ProgramData\Babylon
C:\Users\LivthefLip\AppData\Local\Babylon
C:\Users\LivthefLip\AppData\Roaming\Babylon
ipconfig /flushdns /c

:Reg

:Commands
[purity]
[resethosts]
[emptytemp]
[emptyflash]
[createrestorepoint]
[reboot]
  • Click on Posted Image button.
  • OTL may ask to reboot the machine. Please do so if asked.
  • Click on Posted Image button.
  • A report will open. Copy and Paste that report in your next reply.
  • If the machine reboots, the log will be located at C:\_OTL\MovedFiles\mmddyyyy_hhmmss.log, where mmddyyyy_hhmmss is the date of the tool run.
  • Open OTL again and click the Quick Scan button. Post the log it produces in your next reply.

  • 0

#24
livtheflip
Posted 19 September 2011 - 08:19 AM

livtheflip

    Member

  • Topic Starter
  • Member
  • PipPip
  • 21 posts
thanks for your time ,btw.. i didnt know that removng this virus would take long.

OTL Fix Log:

All processes killed
========== OTL ==========
Prefs.js: "Search the web (Babylon)" removed from browser.search.selectedEngine
Prefs.js: "http://search.babylo...0&affID=100474" removed from keyword.URL
C:\Users\LivthefLip\AppData\Roaming\Mozilla\Firefox\Profiles\yhzzhqm6.default\extensions\[email protected]\defaults\preferences folder moved successfully.
C:\Users\LivthefLip\AppData\Roaming\Mozilla\Firefox\Profiles\yhzzhqm6.default\extensions\[email protected]\defaults folder moved successfully.
C:\Users\LivthefLip\AppData\Roaming\Mozilla\Firefox\Profiles\yhzzhqm6.default\extensions\[email protected]\content\imgs\mnRadio folder moved successfully.
C:\Users\LivthefLip\AppData\Roaming\Mozilla\Firefox\Profiles\yhzzhqm6.default\extensions\[email protected]\content\imgs\flgs folder moved successfully.
C:\Users\LivthefLip\AppData\Roaming\Mozilla\Firefox\Profiles\yhzzhqm6.default\extensions\[email protected]\content\imgs folder moved successfully.
C:\Users\LivthefLip\AppData\Roaming\Mozilla\Firefox\Profiles\yhzzhqm6.default\extensions\[email protected]\content folder moved successfully.
C:\Users\LivthefLip\AppData\Roaming\Mozilla\Firefox\Profiles\yhzzhqm6.default\extensions\[email protected]\components folder moved successfully.
C:\Users\LivthefLip\AppData\Roaming\Mozilla\Firefox\Profiles\yhzzhqm6.default\extensions\[email protected] folder moved successfully.
C:\Program Files\Mozilla Firefox\searchplugins\babylon.xml moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2EECD738-5844-4a99-B4B6-146BF802613B}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2EECD738-5844-4a99-B4B6-146BF802613B}\ deleted successfully.
File C:\Program Files\BabylonToolbar\BabylonToolbar\1.4.35.10\bh\BabylonToolbar.dll not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{98889811-442D-49dd-99D7-DC866BE87DBC} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{98889811-442D-49dd-99D7-DC866BE87DBC}\ not found.
File C:\Program Files\BabylonToolbar\BabylonToolbar\1.4.35.10\BabylonToolbarTlbr.dll not found.
C:\Users\LivthefLip\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\_uninst_10953016.lnk moved successfully.
========== FILES ==========
File\Folder C:\Program Files\BabylonToolbar not found.
C:\ProgramData\Babylon folder moved successfully.
C:\Users\LivthefLip\AppData\Local\Babylon\Setup\HtmlScreens folder moved successfully.
C:\Users\LivthefLip\AppData\Local\Babylon\Setup folder moved successfully.
C:\Users\LivthefLip\AppData\Local\Babylon folder moved successfully.
C:\Users\LivthefLip\AppData\Roaming\Babylon folder moved successfully.
< ipconfig /flushdns /c >
Windows IP Configuration
Successfully flushed the DNS Resolver Cache.
C:\Users\LivthefLip\Downloads\cmd.bat deleted successfully.
C:\Users\LivthefLip\Downloads\cmd.txt deleted successfully.
========== REGISTRY ==========
========== COMMANDS ==========
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Journal
->Temp folder emptied: 0 bytes

User: LivthefLip
->Temp folder emptied: 1370850 bytes
->Temporary Internet Files folder emptied: 34020954 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 44159039 bytes
->Flash cache emptied: 1473 bytes

User: Public
->Temp folder emptied: 0 bytes

User: RegBack
->Temp folder emptied: 0 bytes

User: systemprofile
->Temp folder emptied: 0 bytes

User: TxR
->Temp folder emptied: 0 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 31766 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 76.00 mb


[EMPTYFLASH]

User: All Users

User: Default

User: Default User

User: Journal

User: LivthefLip
->Flash cache emptied: 0 bytes

User: Public

User: RegBack

User: systemprofile

User: TxR

Total Flash Files Cleaned = 0.00 mb



OTL by OldTimer - Version 3.2.28.0 log created on 09192011_215839

Files\Folders moved on Reboot...
File\Folder C:\Windows\temp\JET7D0B.tmp not found!

Registry entries deleted on Reboot...


OTL Scan Log:


OTL logfile created on: 9/19/2011 10:10:47 PM - Run 5
OTL by OldTimer - Version 3.2.28.0 Folder = C:\Users\LivthefLip\Downloads
Windows Vista Home Premium Edition Service Pack 1 (Version = 6.0.6001) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6001.18000)
Locale: 00003409 | Country: Republic of the Philippines | Language: ENP | Date Format: M/d/yyyy

1.99 Gb Total Physical Memory | 0.67 Gb Available Physical Memory | 33.52% Memory free
4.21 Gb Paging File | 2.63 Gb Available in Paging File | 62.42% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 69.77 Gb Total Space | 34.90 Gb Free Space | 50.02% Space Free | Partition Type: NTFS
Drive D: | 66.27 Gb Total Space | 51.53 Gb Free Space | 77.76% Space Free | Partition Type: NTFS
Drive E: | 3.24 Gb Total Space | 3.20 Gb Free Space | 98.62% Space Free | Partition Type: NTFS
Drive N: | 149.05 Gb Total Space | 148.96 Gb Free Space | 99.94% Space Free | Partition Type: NTFS

Computer Name: LIVTHEFLIP-PC | User Name: LivthefLip | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011/09/19 22:03:46 | 000,208,896 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Users\LivthefLip\AppData\Local\Temp\RtkBtMnt.exe
PRC - [2011/09/15 16:10:42 | 000,581,632 | ---- | M] (OldTimer Tools) -- C:\Users\LivthefLip\Downloads\OTL.exe
PRC - [2011/09/11 15:22:37 | 000,273,528 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\Real\RealPlayer\Update\realsched.exe
PRC - [2011/09/11 15:12:18 | 000,640,888 | ---- | M] (BitTorrent, Inc.) -- C:\Program Files\uTorrent\uTorrent.exe
PRC - [2011/09/03 14:01:45 | 000,924,632 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2011/08/31 17:00:48 | 000,449,608 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
PRC - [2011/08/31 17:00:48 | 000,366,152 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2011/07/29 07:08:12 | 001,259,376 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe
PRC - [2010/04/07 20:57:42 | 000,099,896 | ---- | M] (HP) -- C:\Windows\System32\HPSIsvc.exe
PRC - [2008/10/29 14:29:41 | 002,927,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2008/10/17 15:52:10 | 000,149,352 | ---- | M] (Symantec Corporation) -- C:\Program Files\Common Files\Symantec Shared\CCSVCHST.EXE
PRC - [2008/10/16 17:26:20 | 000,860,160 | ---- | M] (Intel® Corporation) -- C:\Program Files\Intel\WiFi\bin\EvtEng.exe
PRC - [2008/10/16 16:54:34 | 000,466,944 | ---- | M] (Intel® Corporation) -- C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
PRC - [2008/03/20 07:03:48 | 002,376,992 | ---- | M] (McAfee, Inc.) -- c:\Program Files\Common Files\Mcafee\MNA\McNASvc.exe
PRC - [2008/02/25 16:53:24 | 000,518,656 | ---- | M] (Egis Incorporated) -- C:\Acer\Empowering Technology\eDataSecurity\x86\eDSLoader.exe
PRC - [2008/02/25 16:50:10 | 000,491,008 | ---- | M] (Egis Incorporated) -- C:\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe
PRC - [2008/02/06 01:47:12 | 000,458,752 | ---- | M] (Acer Inc.) -- C:\Acer\Empowering Technology\ePower\ePower_DMC.exe
PRC - [2008/01/24 10:29:00 | 004,702,208 | ---- | M] (Realtek Semiconductor) -- C:\Windows\RtHDVCpl.exe
PRC - [2008/01/24 10:28:00 | 000,102,400 | ---- | M] (Synaptics, Inc.) -- C:\Program Files\Synaptics\SynTP\SynTPStart.exe
PRC - [2008/01/21 10:23:52 | 000,117,248 | ---- | M] () -- \\?\C:\Windows\System32\wbem\WMIADAP.EXE
PRC - [2008/01/10 10:43:28 | 000,323,584 | ---- | M] (Acer Inc.) -- C:\Acer\Empowering Technology\Acer.Empowering.Framework.Supervisor.exe
PRC - [2008/01/02 21:17:28 | 000,707,080 | ---- | M] (Dritek System Inc.) -- C:\Program Files\Launch Manager\QtZgAcer.EXE
PRC - [2007/12/21 03:33:14 | 000,761,856 | ---- | M] (Acer Inc.) -- C:\Acer\Empowering Technology\eNet\eNMTray.exe
PRC - [2007/12/21 03:32:04 | 000,131,072 | ---- | M] (Acer Inc.) -- C:\Acer\Empowering Technology\eNet\eNet Service.exe
PRC - [2007/12/20 10:09:22 | 000,024,576 | ---- | M] () -- C:\Acer\Empowering Technology\eSettings\Service\capuserv.exe
PRC - [2007/11/28 10:54:36 | 000,110,592 | ---- | M] () -- C:\Acer\Mobility Center\MobilityService.exe
PRC - [2007/10/10 22:41:54 | 001,286,144 | ---- | M] (CyberLink) -- C:\Acer\Empowering Technology\eAudio\eAudio.exe
PRC - [2007/10/02 08:42:36 | 000,024,576 | ---- | M] (Acer Inc.) -- C:\Acer\Empowering Technology\eLock\Service\eLockServ.exe
PRC - [2007/09/21 05:57:28 | 000,167,936 | ---- | M] (acer) -- C:\Acer\Empowering Technology\ePower\ePowerSvc.exe
PRC - [2007/09/10 15:28:18 | 000,057,344 | ---- | M] (Acer Inc.) -- C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe
PRC - [2007/09/06 12:02:04 | 000,393,216 | ---- | M] (Acer Inc.) -- C:\Acer\Empowering Technology\eRecovery\eRAgent.exe
PRC - [2007/08/31 11:49:50 | 000,243,064 | ---- | M] (Symantec Corporation) -- C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe
PRC - [2007/03/29 13:11:50 | 000,719,664 | ---- | M] (Broadcom Corporation.) -- C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
PRC - [2007/03/29 13:11:48 | 001,604,400 | ---- | M] (Broadcom Corporation.) -- c:\Program Files\WIDCOMM\Bluetooth Software\BTStackServer.exe


========== Modules (No Company Name) ==========

MOD - [2011/09/11 21:40:42 | 000,998,400 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Management\31729b33207d1093721f9e943302b900\System.Management.ni.dll
MOD - [2011/09/11 21:40:40 | 000,212,992 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\ba71341e41687591124f9a5680cb0981\System.ServiceProcess.ni.dll
MOD - [2011/09/11 21:40:13 | 011,796,992 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\47b2e1d9030f551f685dfea0b618e7fd\System.Web.ni.dll
MOD - [2011/09/11 21:39:37 | 000,771,584 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\a4fd3b000abfd4712b02ec223df3e9dd\System.Runtime.Remoting.ni.dll
MOD - [2011/09/11 21:39:19 | 012,430,848 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\6d75eb3ca10a514754f5e87cc2134f07\System.Windows.Forms.ni.dll
MOD - [2011/09/11 21:39:03 | 001,587,200 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\19d027c3381110e60c003f2c8bd307ee\System.Drawing.ni.dll
MOD - [2011/09/11 21:38:52 | 005,450,752 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\38b9d09539b67b08ee996db6c71f8a9b\System.Xml.ni.dll
MOD - [2011/09/11 21:38:46 | 000,971,264 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\982c005f97eacba888acdda322c49362\System.Configuration.ni.dll
MOD - [2011/09/11 21:38:35 | 007,868,416 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\57ac9ba5419d6bf4b79f2979b0755428\System.ni.dll
MOD - [2011/09/11 21:38:20 | 011,486,720 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\c068708e16abf0be77a21b9f29817d83\mscorlib.ni.dll
MOD - [2011/09/11 15:11:04 | 000,077,312 | ---- | M] () -- C:\Users\LivthefLip\AppData\Roaming\Mozilla\Firefox\Profiles\yhzzhqm6.default\extensions\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}\components\RadioWMPCoreGecko6.dll
MOD - [2011/09/03 14:01:45 | 001,846,232 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2011/07/29 07:09:42 | 000,096,112 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdateCheck.dll
MOD - [2011/07/29 07:08:12 | 001,259,376 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe
MOD - [2008/01/10 10:43:12 | 000,057,344 | ---- | M] () -- C:\Acer\Empowering Technology\Acer.Empowering.Framework.DialogManager.dll
MOD - [2008/01/10 10:42:54 | 000,024,576 | ---- | M] () -- C:\Acer\Empowering Technology\Acer.Empowering.Framework.PasswordSetting.dll
MOD - [2008/01/03 18:00:48 | 000,227,888 | ---- | M] () -- C:\Acer\Empowering Technology\eDataSecurity\x86\ShowErrMsg.dll
MOD - [2007/12/21 05:58:00 | 000,679,936 | ---- | M] () -- C:\Acer\Empowering Technology\eLock\eLockCTL.dll
MOD - [2007/12/21 03:33:26 | 000,249,856 | ---- | M] () -- C:\Acer\Empowering Technology\eNet\eNetPlugin.dll
MOD - [2007/12/20 10:09:38 | 000,028,672 | ---- | M] () -- C:\Acer\Empowering Technology\eSettings\eSettings.Plugin.dll
MOD - [2007/12/20 10:08:54 | 000,155,648 | ---- | M] () -- C:\Acer\Empowering Technology\eSettings\eSettings.Presenter.dll
MOD - [2007/12/20 10:08:28 | 003,420,160 | ---- | M] () -- C:\Acer\Empowering Technology\eSettings\eSettings.View.dll
MOD - [2007/12/20 10:08:10 | 000,032,768 | ---- | M] () -- C:\Acer\Empowering Technology\eSettings.Model.ComputerInterfaces.dll
MOD - [2007/10/10 22:41:08 | 000,106,496 | ---- | M] () -- C:\Acer\Empowering Technology\eAudio\eAudioUI.dll
MOD - [2007/09/21 06:01:12 | 000,208,896 | ---- | M] () -- C:\Acer\Empowering Technology\ePower\SysHook.dll
MOD - [2007/09/12 01:59:04 | 000,307,200 | ---- | M] () -- C:\Acer\Empowering Technology\ePresentation\ePresentationCTL.dll
MOD - [2007/03/29 13:02:48 | 000,126,976 | ---- | M] () -- C:\Program Files\WIDCOMM\Bluetooth Software\BTKeyInd.dll
MOD - [2007/03/29 12:42:38 | 000,389,120 | ---- | M] () -- C:\Windows\System32\btwhidcs.dll
MOD - [2007/02/13 06:26:30 | 000,016,384 | ---- | M] () -- C:\Acer\Empowering Technology\eRecovery\ServiceInterface.dll
MOD - [2006/12/10 21:51:08 | 000,077,824 | R--- | M] () -- C:\Program Files\HP\Digital Imaging\bin\crm\xmltok.dll
MOD - [2006/12/10 21:51:08 | 000,065,536 | R--- | M] () -- C:\Program Files\HP\Digital Imaging\bin\crm\xmlparse.dll


========== Win32 Services (SafeList) ==========

SRV - [2011/09/11 11:32:50 | 001,251,720 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe -- (Symantec Core LC)
SRV - [2011/08/31 17:00:48 | 000,366,152 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2010/04/07 20:57:42 | 000,099,896 | ---- | M] (HP) [Auto | Running] -- C:\Windows\System32\HPSIsvc.exe -- (HPSIService)
SRV - [2008/10/17 15:52:10 | 000,149,352 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe -- (LiveUpdate Notice)
SRV - [2008/10/17 15:52:10 | 000,149,352 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe -- (CLTNetCnService)
SRV - [2008/10/17 15:52:10 | 000,149,352 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe -- (ccSetMgr)
SRV - [2008/10/17 15:52:10 | 000,149,352 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe -- (ccEvtMgr)
SRV - [2008/10/16 17:26:20 | 000,860,160 | ---- | M] (Intel® Corporation) [Auto | Running] -- C:\Program Files\Intel\WiFi\bin\EvtEng.exe -- (EvtEng)
SRV - [2008/10/16 16:54:34 | 000,466,944 | ---- | M] (Intel® Corporation) [Auto | Running] -- C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe -- (RegSrvc)
SRV - [2008/03/20 07:03:48 | 002,376,992 | ---- | M] (McAfee, Inc.) [Auto | Running] -- c:\Program Files\Common Files\Mcafee\MNA\McNASvc.exe -- (McNASvc)
SRV - [2008/02/25 16:50:10 | 000,491,008 | ---- | M] (Egis Incorporated) [Auto | Running] -- C:\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe -- (eDataSecurity Service)
SRV - [2008/01/21 10:23:32 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2007/12/21 03:32:04 | 000,131,072 | ---- | M] (Acer Inc.) [Auto | Running] -- C:\Acer\Empowering Technology\eNet\eNet Service.exe -- (eNet Service)
SRV - [2007/12/20 10:09:22 | 000,024,576 | ---- | M] () [Auto | Running] -- C:\Acer\Empowering Technology\eSettings\Service\capuserv.exe -- (eSettingsService)
SRV - [2007/11/28 10:54:36 | 000,110,592 | ---- | M] () [Auto | Running] -- C:\Acer\Mobility Center\MobilityService.exe -- (MobilityService)
SRV - [2007/10/02 08:42:36 | 000,024,576 | ---- | M] (Acer Inc.) [Auto | Running] -- C:\Acer\Empowering Technology\eLock\Service\eLockServ.exe -- (eLockService)
SRV - [2007/09/21 05:57:28 | 000,167,936 | ---- | M] (acer) [Auto | Running] -- C:\Acer\Empowering Technology\ePower\ePowerSvc.exe -- (WMIService)
SRV - [2007/09/10 15:28:18 | 000,057,344 | ---- | M] (Acer Inc.) [Auto | Running] -- C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe -- (eRecoveryService)
SRV - [2007/08/31 11:49:50 | 000,243,064 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe -- (Automatic LiveUpdate Scheduler)
SRV - [2007/08/23 20:35:00 | 003,192,184 | ---- | M] (Symantec Corporation) [On_Demand | Stopped] -- C:\Program Files\Symantec\LiveUpdate\LuComServer_3_4.EXE -- (LiveUpdate)
SRV - [2007/08/22 07:21:00 | 000,055,640 | ---- | M] (Symantec Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe -- (comHost)


========== Driver Services (SafeList) ==========

DRV - [2079/07/19 15:18:48 | 001,576,312 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\ProgramData\Symantec\Definitions\VirusDefs\20110918.008\NAVEX15.SYS -- (NAVEX15)
DRV - [2079/07/19 15:18:48 | 000,374,392 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys -- (eeCtrl)
DRV - [2079/07/19 15:18:48 | 000,287,792 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\ProgramData\Symantec\Definitions\SymcData\ipsdefs\20110915.001\IDSvix86.sys -- (IDSvix86)
DRV - [2079/07/19 15:18:48 | 000,105,592 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys -- (EraserUtilRebootDrv)
DRV - [2079/07/19 15:18:48 | 000,086,136 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\ProgramData\Symantec\Definitions\VirusDefs\20110918.008\NAVENG.SYS -- (NAVENG)
DRV - [2011/09/11 11:41:28 | 000,124,464 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\SYMEVENT.SYS -- (SymEvent)
DRV - [2011/08/31 17:00:50 | 000,022,216 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\mbam.sys -- (MBAMProtector)
DRV - [2010/03/06 07:40:57 | 000,017,408 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\mvusbews.sys -- (mvusbews)
DRV - [2009/03/17 12:56:58 | 000,447,024 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys -- (SPBBCDrv)
DRV - [2009/02/19 13:31:42 | 000,024,112 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\SymIMV.sys -- (SymIM)
DRV - [2009/02/19 13:31:18 | 000,041,008 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\SYMNDISV.SYS -- (SYMNDISV)
DRV - [2009/02/19 13:31:16 | 000,184,496 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\System32\Drivers\SYMTDI.SYS -- (SYMTDI)
DRV - [2009/02/19 13:31:16 | 000,096,560 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\SYMFW.SYS -- (SYMFW)
DRV - [2009/02/19 13:31:16 | 000,022,320 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\SYMREDRV.SYS -- (SYMREDRV)
DRV - [2009/02/19 13:31:16 | 000,013,616 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\SYMDNS.SYS -- (SYMDNS)
DRV - [2008/11/17 07:40:22 | 003,668,480 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\NETw5v32.sys -- (NETw5v32) Intel®
DRV - [2008/07/30 17:42:12 | 000,023,888 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\COH_Mon.sys -- (COH_Mon)
DRV - [2008/05/06 16:06:00 | 000,011,520 | ---- | M] (Western Digital Technologies) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\wdcsam.sys -- (WDC_SAM)
DRV - [2008/02/15 17:42:42 | 000,046,592 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\rimmptsk.sys -- (rimmptsk)
DRV - [2008/01/30 18:34:00 | 007,629,504 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2008/01/24 10:29:00 | 000,043,008 | ---- | M] (Winbond Electronics Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\winbondcir.sys -- (winbondcir)
DRV - [2008/01/24 10:29:00 | 000,008,704 | ---- | M] (Conexant Systems, Inc.) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\XAudio.sys -- (XAudio)
DRV - [2008/01/21 10:23:20 | 002,225,664 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\NETw3v32.sys -- (NETw3v32) Intel®
DRV - [2007/11/30 23:57:12 | 000,317,616 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\srtspl.sys -- (SRTSPL)
DRV - [2007/11/30 23:57:12 | 000,279,088 | ---- | M] (Symantec Corporation) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\srtsp.sys -- (SRTSP)
DRV - [2007/11/30 23:57:12 | 000,043,696 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\srtspx.sys -- (SRTSPX)
DRV - [2007/10/31 10:36:32 | 002,252,800 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\NETw4v32.sys -- (NETw4v32) Intel®
DRV - [2007/08/08 23:39:00 | 000,036,056 | ---- | M] (Symantec Corporation) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\CO_Mon.sys -- (CO_Mon)
DRV - [2007/08/08 10:37:00 | 001,729,152 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\snp2uvc.sys -- (SNP2UVC) USB2.0 PC Camera (SNP2UVC)
DRV - [2007/07/31 03:54:02 | 000,038,400 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\rixdptsk.sys -- (rismxdp)
DRV - [2007/07/31 02:42:58 | 000,043,008 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\rimsptsk.sys -- (rimsptsk)
DRV - [2007/07/03 10:05:20 | 000,015,392 | ---- | M] (Acer, Inc.) [Kernel | Auto | Running] -- C:\Acer\Empowering Technology\eRecovery\int15.sys -- (int15)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://en.ph.acer.yahoo.com

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://global.acer.com [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com.ph/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.selectedEngine: ""
FF - prefs.js..browser.startup.homepage: "http://www.google.com.ph/"
FF - prefs.js..network.proxy.type: 0


FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6: C:\Program Files\Yahoo!\Shared\npYState.dll (Yahoo! Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=12.0.1.666: C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=12.0.1.666: C:\Program Files\Real\RealPlayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpchromebrowserrecordext;version=12.0.1.666: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprphtml5videoshim;version=12.0.1.666: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=12.0.1.666: C:\Program Files\Real\RealPlayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2011/09/11 14:51:57 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2011/09/11 15:22:54 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 6.0.2\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/09/11 15:22:49 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 6.0.2\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/09/19 20:30:43 | 000,000,000 | ---D | M]

[2011/09/11 11:32:24 | 000,000,000 | ---D | M] (No name found) -- C:\Users\LivthefLip\AppData\Roaming\Mozilla\Extensions
[2011/09/18 09:04:29 | 000,000,000 | ---D | M] (No name found) -- C:\Users\LivthefLip\AppData\Roaming\Mozilla\Firefox\Profiles\yhzzhqm6.default\extensions
[2011/09/15 08:02:38 | 000,000,000 | ---D | M] (Yahoo! Toolbar) -- C:\Users\LivthefLip\AppData\Roaming\Mozilla\Firefox\Profiles\yhzzhqm6.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
[2011/09/11 15:11:04 | 000,000,000 | ---D | M] (uTorrentBar Community Toolbar) -- C:\Users\LivthefLip\AppData\Roaming\Mozilla\Firefox\Profiles\yhzzhqm6.default\extensions\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}
[2011/09/11 15:29:27 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2011/09/11 15:29:27 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA}
[2011/09/11 15:22:54 | 000,000,000 | ---D | M] (RealPlayer Browser Record Plugin) -- C:\PROGRAMDATA\REAL\REALPLAYER\BROWSERRECORDPLUGIN\FIREFOX\EXT
[2011/09/03 14:01:45 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2011/09/11 15:29:15 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2011/09/03 07:25:59 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml

O1 HOSTS File: ([2011/09/19 21:59:04 | 000,000,098 | ---- | M]) - C:\Windows\System32\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - No CLSID value found.
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (DivX Plus Web Player HTML5 <video>) - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
O2 - BHO: (Reg Error: Value error.) - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Common Files\Symantec Shared\coShared\Browser\2.0\CoIEPlg.dll (Symantec Corporation)
O2 - BHO: (Symantec Intrusion Prevention) - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Common Files\Symantec Shared\IDS\IPSBHO.dll (Symantec Corporation)
O2 - BHO: (ShowBarObj Class) - {83A2F9B1-01A2-4AA5-87D1-45B6B8505E96} - C:\Acer\Empowering Technology\eDataSecurity\x86\ActiveToolBand.dll (HiTRUST)
O3 - HKLM\..\Toolbar: (Acer eDataSecurity Management) - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll (Egis Incorporated.)
O3 - HKLM\..\Toolbar: (Show Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Common Files\Symantec Shared\coShared\Browser\2.0\CoIEPlg.dll (Symantec Corporation)
O3 - HKCU\..\Toolbar\ShellBrowser: (Acer eDataSecurity Management) - {5CBE3B7C-1E47-477E-A7DD-396DB0476E29} - C:\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll (Egis Incorporated.)
O3 - HKCU\..\Toolbar\WebBrowser: (Show Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Common Files\Symantec Shared\coShared\Browser\2.0\CoIEPlg.dll (Symantec Corporation)
O4 - HKLM..\Run: [ccApp] C:\Program Files\Common Files\Symantec Shared\ccApp.exe (Symantec Corporation)
O4 - HKLM..\Run: [DivXUpdate] C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
O4 - HKLM..\Run: [eAudio] C:\Acer\Empowering Technology\eAudio\eAudio.exe (CyberLink)
O4 - HKLM..\Run: [eDataSecurity Loader] C:\Acer\Empowering Technology\eDataSecurity\x86\eDSLoader.exe (Egis Incorporated)
O4 - HKLM..\Run: [LManager] C:\Program Files\Launch Manager\QtZgAcer.EXE (Dritek System Inc.)
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [NvCplDaemon] C:\Windows\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\Windows\System32\NvMcTray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvSvc] C:\Windows\System32\nvsvc.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [PLFSet] C:\Windows\PLFSet.dll ( )
O4 - HKLM..\Run: [RtHDVCpl] C:\Windows\RtHDVCpl.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [SynTPStart] C:\Program Files\Synaptics\SynTP\SynTPStart.exe (Synaptics, Inc.)
O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Real\RealPlayer\Update\realsched.exe (RealNetworks, Inc.)
O4 - HKCU..\Run: [Messenger (Yahoo!)] C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe (Yahoo! Inc.)
O4 - HKCU..\Run: [uTorrent] C:\Program Files\uTorrent\uTorrent.exe (BitTorrent, Inc.)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: Send image to &Bluetooth Device... - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm ()
O8 - Extra context menu item: Send page to &Bluetooth Device... - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra Button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_27)
O16 - DPF: {CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_27)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_27)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.254.1 192.168.254.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{C9F3C52C-A6EC-4234-A130-3D92BE289CF4}: DhcpNameServer = 192.168.254.1 192.168.254.1
O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) -C:\Windows\System32\userinit.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Users\LivthefLip\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg
O24 - Desktop BackupWallPaper: C:\Users\LivthefLip\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/09/19 05:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2011/09/19 22:09:57 | 000,000,000 | ---D | C] -- C:\ProgramData\WindowsSearch
[2011/09/19 20:22:25 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe
[2011/09/19 20:22:25 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe
[2011/09/19 20:21:18 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2011/09/19 10:09:53 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Local\Microsoft Games
[2011/09/18 21:25:47 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2011/09/18 21:09:38 | 000,518,144 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe
[2011/09/18 21:09:38 | 000,406,528 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe
[2011/09/18 21:09:38 | 000,060,416 | ---- | C] (NirSoft) -- C:\Windows\NIRCMD.exe
[2011/09/18 21:09:30 | 000,000,000 | ---D | C] -- C:\Combo-Fix25483C
[2011/09/18 21:02:31 | 000,000,000 | ---D | C] -- C:\Windows\ERDNT
[2011/09/18 21:02:30 | 000,000,000 | ---D | C] -- C:\Combo-Fix
[2011/09/18 21:02:26 | 000,000,000 | ---D | C] -- C:\Qoobox
[2011/09/18 20:59:37 | 004,215,031 | R--- | C] (Swearware) -- C:\Users\LivthefLip\Desktop\Combo-Fix.exe
[2011/09/18 11:05:19 | 000,000,000 | ---D | C] -- C:\ProgramData\Kaspersky Lab
[2011/09/18 09:57:32 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Roaming\Xilisoft
[2011/09/18 09:48:33 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Xilisoft
[2011/09/18 09:47:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Xilisoft
[2011/09/18 09:47:15 | 000,000,000 | ---D | C] -- C:\Program Files\Xilisoft
[2011/09/18 09:05:24 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FoxTab AVI Converter
[2011/09/18 09:05:23 | 000,000,000 | ---D | C] -- C:\Program Files\FoxTabAVIConverter
[2011/09/17 22:26:52 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\Documents\dpgtools11beta5
[2011/09/16 15:11:31 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Roaming\Malwarebytes
[2011/09/16 15:11:17 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2011/09/16 15:11:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2011/09/16 15:11:13 | 000,022,216 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2011/09/16 15:11:13 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2011/09/16 14:55:33 | 000,000,000 | ---D | C] -- C:\_OTL
[2011/09/15 15:26:36 | 000,000,000 | ---D | C] -- C:\_OTM
[2011/09/13 16:38:12 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Local\Acer Arcade Deluxe
[2011/09/13 16:38:11 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Roaming\CyberLink
[2011/09/13 16:38:04 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Local\PowerCinema
[2011/09/12 01:12:59 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution
[2011/09/12 01:12:48 | 000,000,000 | ---D | C] -- C:\Windows\System32\x64
[2011/09/12 01:12:48 | 000,000,000 | ---D | C] -- C:\Windows\System32\Lang
[2011/09/12 01:07:19 | 017,730,504 | ---- | C] (Acer Incorporated) -- C:\Windows\eRy.exe
[2011/09/12 01:07:04 | 000,065,536 | ---- | C] (Realtek Semiconductor) -- C:\Windows\SetSpkDefault.exe
[2011/09/11 22:58:43 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Roaming\Yahoo!
[2011/09/11 22:57:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Yahoo! Messenger
[2011/09/11 22:57:01 | 000,000,000 | ---D | C] -- C:\ProgramData\Yahoo!
[2011/09/11 21:32:04 | 000,000,000 | ---D | C] -- C:\Windows\System32\WindowsPowerShell
[2011/09/11 20:17:51 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\Roaming
[2011/09/11 20:17:51 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Roaming\Intel
[2011/09/11 20:15:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel PROSet Wireless
[2011/09/11 20:15:41 | 000,000,000 | ---D | C] -- C:\Program Files\Cisco
[2011/09/11 20:15:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Intel
[2011/09/11 20:15:38 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Intel
[2011/09/11 18:40:55 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Roaming\Apple Computer
[2011/09/11 15:30:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun
[2011/09/11 15:30:06 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2011/09/11 15:29:11 | 000,000,000 | ---D | C] -- C:\Program Files\Java
[2011/09/11 15:22:56 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\xing shared
[2011/09/11 15:22:40 | 000,272,896 | ---- | C] (Progressive Networks) -- C:\Windows\System32\pncrt.dll
[2011/09/11 15:22:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Real
[2011/09/11 15:22:27 | 000,000,000 | ---D | C] -- C:\Program Files\Real
[2011/09/11 15:22:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Real
[2011/09/11 15:22:16 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Roaming\Real
[2011/09/11 15:11:06 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Local\Google
[2011/09/11 15:11:00 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Local\Conduit
[2011/09/11 15:09:37 | 000,000,000 | ---D | C] -- C:\Program Files\uTorrent
[2011/09/11 15:08:37 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Roaming\uTorrent
[2011/09/11 15:08:37 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Local\uTorrent
[2011/09/11 15:08:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
[2011/09/11 15:07:50 | 000,000,000 | ---D | C] -- C:\Program Files\QuickTime
[2011/09/11 15:07:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple Computer
[2011/09/11 15:07:23 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Apple
[2011/09/11 15:07:11 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Local\Apple
[2011/09/11 15:07:07 | 000,000,000 | ---D | C] -- C:\Program Files\Apple Software Update
[2011/09/11 15:07:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple
[2011/09/11 15:06:30 | 000,000,000 | ---D | C] -- C:\MPEGSUIT
[2011/09/11 15:06:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MPEG Suite 2001
[2011/09/11 15:04:32 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\Documents\flv to avi converter
[2011/09/11 15:03:40 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Local\WinZip
[2011/09/11 15:03:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip
[2011/09/11 15:02:53 | 000,000,000 | ---D | C] -- C:\ProgramData\WinZip
[2011/09/11 15:02:50 | 000,000,000 | ---D | C] -- C:\Program Files\WinZip
[2011/09/11 14:51:47 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Roaming\DivX
[2011/09/11 14:51:34 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\PX Storage Engine
[2011/09/11 14:51:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX Plus
[2011/09/11 14:51:07 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DivX Shared
[2011/09/11 14:35:49 | 000,000,000 | ---D | C] -- C:\Program Files\DivX
[2011/09/11 14:33:12 | 000,000,000 | ---D | C] -- C:\ProgramData\DivX
[2011/09/11 13:32:36 | 000,000,000 | -HSD | C] -- C:\Windows\ftpcache
[2011/09/11 13:28:25 | 000,017,408 | ---- | C] (Marvell Semiconductor, Inc.) -- C:\Windows\System32\drivers\mvusbews.sys
[2011/09/11 13:26:28 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\Documents\My Scans
[2011/09/11 13:22:28 | 000,000,000 | ---D | C] -- C:\ProgramData\WEBREG
[2011/09/11 13:22:21 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Roaming\HP
[2011/09/11 13:21:32 | 000,000,000 | ---D | C] -- C:\ProgramData\HPSSUPPLY
[2011/09/11 13:19:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
[2011/09/11 13:18:55 | 000,000,000 | ---D | C] -- C:\Program Files\Hewlett-Packard
[2011/09/11 13:18:55 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Hewlett-Packard
[2011/09/11 13:18:30 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\HP
[2011/09/11 13:17:01 | 000,000,000 | ---D | C] -- C:\ProgramData\Hewlett-Packard
[2011/09/11 13:14:15 | 000,000,000 | ---D | C] -- C:\Program Files\HP
[2011/09/11 13:13:08 | 000,000,000 | ---D | C] -- C:\ProgramData\HP
[2011/09/11 12:17:52 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Local\Adobe
[2011/09/11 11:35:45 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Symantec
[2011/09/11 11:32:05 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Roaming\Mozilla
[2011/09/11 11:32:05 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Local\Mozilla
[2011/09/11 11:32:00 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2011/09/11 11:10:21 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Roaming\Adobe
[2011/09/11 11:05:26 | 000,000,000 | ---D | C] -- C:\ProgramData\TEMP
[2011/09/11 10:48:48 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\Bluetooth Software
[2011/09/11 10:48:48 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\Documents\Bluetooth Exchange Folder
[2011/09/11 10:46:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer GridVista
[2011/09/11 10:42:32 | 000,368,640 | ---- | C] (Acer Inc.) -- C:\Windows\System32\CheckD2DSystem.exe
[2011/09/11 10:42:32 | 000,327,680 | ---- | C] (Acer Inc.) -- C:\Windows\System32\Remove_eRecovery.exe
[2011/09/11 10:42:32 | 000,016,384 | ---- | C] ( ) -- C:\Windows\System32\ClearEvent.exe
[2011/09/11 10:39:51 | 000,000,000 | ---D | C] -- C:\Windows\System32\es-MX
[2011/09/11 10:39:51 | 000,000,000 | ---D | C] -- C:\Windows\System32\es-AR
[2011/09/11 10:39:49 | 000,000,000 | ---D | C] -- C:\Program Files\WIDCOMM
[2011/09/11 10:37:40 | 000,046,592 | ---- | C] (REDC) -- C:\Windows\System32\drivers\rimmptsk.sys
[2011/09/11 10:36:01 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Mcafee
[2011/09/11 10:36:00 | 000,000,000 | ---D | C] -- C:\ProgramData\McAfee
[2011/09/11 10:36:00 | 000,000,000 | ---D | C] -- C:\Program Files\McAfee
[2011/09/11 10:33:00 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Launch Manager
[2011/09/11 10:32:58 | 000,000,000 | ---D | C] -- C:\Program Files\Launch Manager
[2011/09/11 10:31:51 | 000,000,000 | -H-D | C] -- C:\Users\LivthefLip\AppData\Local\acer eNM
[2011/09/11 10:31:00 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Roaming\Symantec
[2011/09/11 10:30:27 | 000,000,000 | R--D | C] -- C:\Users\LivthefLip\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2011/09/11 10:30:27 | 000,000,000 | R--D | C] -- C:\Users\LivthefLip\Searches
[2011/09/11 10:30:27 | 000,000,000 | R--D | C] -- C:\Users\LivthefLip\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2011/09/11 10:30:16 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Roaming\Identities
[2011/09/11 10:30:15 | 000,000,000 | R--D | C] -- C:\Users\LivthefLip\Contacts
[2011/09/11 10:30:14 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Local\VirtualStore
[2011/09/11 10:29:54 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Roaming\Macromedia
[2011/09/11 10:29:42 | 000,000,000 | ---D | C] -- C:\Program Files\Acer Inc
[2011/09/11 10:29:29 | 000,000,000 | ---D | C] -- C:\Windows\ACER
[2011/09/11 10:28:48 | 000,000,000 | -HSD | C] -- C:\Users\LivthefLip\AppData\Local\Temporary Internet Files
[2011/09/11 10:28:48 | 000,000,000 | -HSD | C] -- C:\Users\LivthefLip\Templates
[2011/09/11 10:28:48 | 000,000,000 | -HSD | C] -- C:\Users\LivthefLip\Start Menu
[2011/09/11 10:28:48 | 000,000,000 | -HSD | C] -- C:\Users\LivthefLip\SendTo
[2011/09/11 10:28:48 | 000,000,000 | -HSD | C] -- C:\Users\LivthefLip\Recent
[2011/09/11 10:28:48 | 000,000,000 | -HSD | C] -- C:\Users\LivthefLip\PrintHood
[2011/09/11 10:28:48 | 000,000,000 | -HSD | C] -- C:\Users\LivthefLip\NetHood
[2011/09/11 10:28:48 | 000,000,000 | -HSD | C] -- C:\Users\LivthefLip\Documents\My Videos
[2011/09/11 10:28:48 | 000,000,000 | -HSD | C] -- C:\Users\LivthefLip\Documents\My Pictures
[2011/09/11 10:28:48 | 000,000,000 | -HSD | C] -- C:\Users\LivthefLip\Documents\My Music
[2011/09/11 10:28:48 | 000,000,000 | -HSD | C] -- C:\Users\LivthefLip\My Documents
[2011/09/11 10:28:48 | 000,000,000 | -HSD | C] -- C:\Users\LivthefLip\Local Settings
[2011/09/11 10:28:48 | 000,000,000 | -HSD | C] -- C:\Users\LivthefLip\AppData\Local\History
[2011/09/11 10:28:48 | 000,000,000 | -HSD | C] -- C:\Users\LivthefLip\Cookies
[2011/09/11 10:28:48 | 000,000,000 | -HSD | C] -- C:\Users\LivthefLip\Application Data
[2011/09/11 10:28:48 | 000,000,000 | -HSD | C] -- C:\Users\LivthefLip\AppData\Local\Application Data
[2011/09/11 10:28:47 | 000,000,000 | --SD | C] -- C:\Users\LivthefLip\AppData\Roaming\Microsoft
[2011/09/11 10:28:47 | 000,000,000 | R--D | C] -- C:\Users\LivthefLip\Videos
[2011/09/11 10:28:47 | 000,000,000 | R--D | C] -- C:\Users\LivthefLip\Saved Games
[2011/09/11 10:28:47 | 000,000,000 | R--D | C] -- C:\Users\LivthefLip\Pictures
[2011/09/11 10:28:47 | 000,000,000 | R--D | C] -- C:\Users\LivthefLip\Music
[2011/09/11 10:28:47 | 000,000,000 | R--D | C] -- C:\Users\LivthefLip\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2011/09/11 10:28:47 | 000,000,000 | R--D | C] -- C:\Users\LivthefLip\Links
[2011/09/11 10:28:47 | 000,000,000 | R--D | C] -- C:\Users\LivthefLip\Favorites
[2011/09/11 10:28:47 | 000,000,000 | R--D | C] -- C:\Users\LivthefLip\Downloads
[2011/09/11 10:28:47 | 000,000,000 | R--D | C] -- C:\Users\LivthefLip\Documents
[2011/09/11 10:28:47 | 000,000,000 | R--D | C] -- C:\Users\LivthefLip\Desktop
[2011/09/11 10:28:47 | 000,000,000 | R--D | C] -- C:\Users\LivthefLip\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2011/09/11 10:28:47 | 000,000,000 | -H-D | C] -- C:\Users\LivthefLip\AppData
[2011/09/11 10:28:47 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Local\Temp
[2011/09/11 10:28:47 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Local\Microsoft
[2011/09/11 10:28:47 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Roaming\Media Center Programs
[2011/09/11 10:28:47 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink PowerProducer
[2011/09/11 10:28:47 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Roaming\Acer GameZone Console
[2008/02/15 02:34:08 | 000,045,056 | ---- | C] ( ) -- C:\Windows\PLFSet.dll

========== Files - Modified Within 30 Days ==========

[2011/09/19 22:10:22 | 000,600,378 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2011/09/19 22:10:22 | 000,105,852 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2011/09/19 22:02:44 | 000,003,216 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2011/09/19 22:02:43 | 000,003,216 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2011/09/19 22:02:32 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011/09/19 22:02:30 | 2137,448,448 | -HS- | M] () -- C:\hiberfil.sys
[2011/09/19 22:01:02 | 000,000,836 | ---- | M] () -- C:\Windows\bthservsdp.dat
[2011/09/19 21:59:04 | 000,000,098 | ---- | M] () -- C:\Windows\System32\drivers\etc\Hosts
[2011/09/19 21:17:00 | 001,034,548 | ---- | M] () -- C:\Users\LivthefLip\Documents\Lynsay_Sands_-_Argeneau_15_-_The_Reluctant_Vampire_.pdf
[2011/09/19 20:48:59 | 000,000,556 | ---- | M] () -- C:\Windows\tasks\Norton Internet Security - Run Full System Scan - LivthefLip.job
[2011/09/19 20:30:43 | 000,001,891 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader 9.lnk
[2011/09/19 12:41:52 | 000,029,184 | ---- | M] () -- C:\Users\LivthefLip\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/09/18 21:09:10 | 004,215,031 | R--- | M] (Swearware) -- C:\Users\LivthefLip\Desktop\Combo-Fix.exe
[2011/09/18 18:22:21 | 000,030,190 | -HS- | M] () -- C:\Windows\5942652drv.spi
[2011/09/18 09:48:33 | 000,001,882 | ---- | M] () -- C:\Users\Public\Desktop\Xilisoft DPG Converter 6.lnk
[2011/09/18 09:05:24 | 000,000,900 | ---- | M] () -- C:\Users\LivthefLip\Desktop\FoxTab AVI Converter.lnk
[2011/09/12 03:55:31 | 000,228,176 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2011/09/12 01:19:40 | 000,047,092 | ---- | M] () -- C:\Windows\System32\license.rtf
[2011/09/12 01:07:20 | 000,000,003 | ---- | M] () -- C:\Windows\AFirst.cmd
[2011/09/11 22:57:03 | 000,000,970 | ---- | M] () -- C:\Users\LivthefLip\Application Data\Microsoft\Internet Explorer\Quick Launch\Yahoo! Messenger.lnk
[2011/09/11 16:02:37 | 000,000,572 | ---- | M] () -- C:\Users\LivthefLip\Application Data\Microsoft\Internet Explorer\Quick Launch\MPEG Suite.lnk
[2011/09/11 16:02:30 | 000,001,073 | ---- | M] () -- C:\Users\LivthefLip\Application Data\Microsoft\Internet Explorer\Quick Launch\RealPlayer.lnk
[2011/09/11 15:22:40 | 000,272,896 | ---- | M] (Progressive Networks) -- C:\Windows\System32\pncrt.dll
[2011/09/11 15:12:18 | 000,000,780 | ---- | M] () -- C:\Users\LivthefLip\Application Data\Microsoft\Internet Explorer\Quick Launch\µTorrent.lnk
[2011/09/11 14:54:43 | 000,000,939 | ---- | M] () -- C:\Users\LivthefLip\Application Data\Microsoft\Internet Explorer\Quick Launch\DivX Plus Player.lnk
[2011/09/11 13:31:15 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_Kernel_mvusbews_01007.Wdf
[2011/09/11 13:22:36 | 000,130,834 | ---- | M] () -- C:\Windows\hpoins18.dat
[2011/09/11 13:19:28 | 000,001,976 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk
[2011/09/11 13:17:43 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_00_00.Wdf
[2011/09/11 11:41:28 | 000,124,464 | ---- | M] (Symantec Corporation) -- C:\Windows\System32\drivers\SYMEVENT.SYS
[2011/09/11 11:41:28 | 000,010,635 | ---- | M] () -- C:\Windows\System32\drivers\SYMEVENT.CAT
[2011/09/11 11:41:28 | 000,000,806 | ---- | M] () -- C:\Windows\System32\drivers\SYMEVENT.INF
[2011/09/11 11:32:02 | 000,000,874 | ---- | M] () -- C:\Users\LivthefLip\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2011/09/11 11:05:58 | 000,002,069 | ---- | M] () -- C:\Users\LivthefLip\Application Data\Microsoft\Internet Explorer\Quick Launch\Acer Arcade Deluxe.lnk
[2011/09/11 11:05:55 | 000,000,950 | ---- | M] () -- C:\Users\LivthefLip\Application Data\Microsoft\Internet Explorer\Quick Launch\Acer GameZone Console.lnk
[2011/09/11 11:01:55 | 000,000,942 | ---- | M] () -- C:\Users\LivthefLip\Application Data\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk
[2011/09/11 10:47:06 | 000,000,144 | ---- | M] () -- C:\Windows\Alaunch.ini
[2011/09/11 10:47:00 | 000,000,092 | ---- | M] () -- C:\Windows\GridV.UNI
[2011/09/11 10:39:52 | 000,000,743 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk
[2011/09/11 10:33:00 | 000,000,083 | ---- | M] () -- C:\Windows\QtZgAcer.UNI
[2011/09/11 10:30:29 | 000,000,947 | ---- | M] () -- C:\Users\LivthefLip\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2011/09/11 10:29:11 | 000,001,976 | ---- | M] () -- C:\Windows\CLEANUP.CMD
[2011/09/11 10:29:09 | 000,016,068 | ---- | M] () -- C:\Windows\System32\results.xml
[2011/08/31 17:00:50 | 000,022,216 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys

========== Files Created - No Company Name ==========

[2011/09/19 21:16:56 | 001,034,548 | ---- | C] () -- C:\Users\LivthefLip\Documents\Lynsay_Sands_-_Argeneau_15_-_The_Reluctant_Vampire_.pdf
[2011/09/19 20:22:56 | 000,002,425 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader 9.lnk
[2011/09/19 20:22:56 | 000,001,891 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Reader 9.lnk
[2011/09/18 21:09:38 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe
[2011/09/18 21:09:38 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe
[2011/09/18 21:09:38 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2011/09/18 21:09:38 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2011/09/18 21:09:38 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2011/09/18 17:27:50 | 000,030,190 | -HS- | C] () -- C:\Windows\5942652drv.spi
[2011/09/18 09:48:33 | 000,001,882 | ---- | C] () -- C:\Users\Public\Desktop\Xilisoft DPG Converter 6.lnk
[2011/09/18 09:05:24 | 000,000,900 | ---- | C] () -- C:\Users\LivthefLip\Desktop\FoxTab AVI Converter.lnk
[2011/09/12 03:10:49 | 000,106,605 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchema.bin
[2011/09/12 03:10:49 | 000,018,904 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchemaTrivial.bin
[2011/09/12 03:10:44 | 011,967,524 | ---- | C] () -- C:\Windows\System32\korwbrkr.lex
[2011/09/12 01:17:41 | 2137,448,448 | -HS- | C] () -- C:\hiberfil.sys
[2011/09/12 01:07:20 | 000,000,003 | ---- | C] () -- C:\Windows\AFirst.cmd
[2011/09/12 01:07:15 | 000,000,030 | ---- | C] () -- C:\Windows\SetPanel.ini
[2011/09/12 01:07:08 | 000,000,294 | ---- | C] () -- C:\Windows\offline.reg
[2011/09/12 01:07:04 | 000,020,480 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SETRES.EXE
[2011/09/12 01:07:04 | 000,020,480 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SETAUDIO.EXE
[2011/09/12 01:06:52 | 000,001,976 | ---- | C] () -- C:\Windows\CLEANUP.CMD
[2011/09/12 01:06:52 | 000,000,092 | ---- | C] () -- C:\Windows\CLEANUP.INI
[2011/09/11 22:57:03 | 000,000,970 | ---- | C] () -- C:\Users\LivthefLip\Application Data\Microsoft\Internet Explorer\Quick Launch\Yahoo! Messenger.lnk
[2011/09/11 20:12:44 | 000,201,184 | ---- | C] () -- C:\Windows\System32\winrm.vbs
[2011/09/11 20:12:44 | 000,004,675 | ---- | C] () -- C:\Windows\System32\wsmanconfig_schema.xml
[2011/09/11 20:12:44 | 000,002,426 | ---- | C] () -- C:\Windows\System32\WsmTxt.xsl
[2011/09/11 17:26:06 | 002,501,921 | ---- | C] () -- C:\Windows\System32\wlan.tmf
[2011/09/11 16:16:36 | 000,029,184 | ---- | C] () -- C:\Users\LivthefLip\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/09/11 16:02:37 | 000,000,572 | ---- | C] () -- C:\Users\LivthefLip\Application Data\Microsoft\Internet Explorer\Quick Launch\MPEG Suite.lnk
[2011/09/11 16:02:30 | 000,001,073 | ---- | C] () -- C:\Users\LivthefLip\Application Data\Microsoft\Internet Explorer\Quick Launch\RealPlayer.lnk
[2011/09/11 15:09:37 | 000,000,780 | ---- | C] () -- C:\Users\LivthefLip\Application Data\Microsoft\Internet Explorer\Quick Launch\µTorrent.lnk
[2011/09/11 15:07:09 | 000,001,830 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
[2011/09/11 14:54:43 | 000,000,939 | ---- | C] () -- C:\Users\LivthefLip\Application Data\Microsoft\Internet Explorer\Quick Launch\DivX Plus Player.lnk
[2011/09/11 13:31:15 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_Kernel_mvusbews_01007.Wdf
[2011/09/11 13:28:44 | 001,511,424 | ---- | C] () -- C:\Windows\System32\HP1100SM.EXE
[2011/09/11 13:28:44 | 000,147,456 | ---- | C] () -- C:\Windows\System32\HP1100LM.DLL
[2011/09/11 13:28:27 | 000,284,160 | ---- | C] () -- C:\Windows\System32\mvhlewsi.dll
[2011/09/11 13:28:24 | 000,081,920 | ---- | C] () -- C:\Windows\System32\mvusbews.dll
[2011/09/11 13:28:23 | 000,047,104 | ---- | C] () -- C:\Windows\System32\HP1100SMs.dll
[2011/09/11 13:21:17 | 000,000,855 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\I.R.I.S. OCR Registration.lnk
[2011/09/11 13:19:28 | 000,001,976 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk
[2011/09/11 13:17:43 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_00_00.Wdf
[2011/09/11 13:13:14 | 000,130,834 | ---- | C] () -- C:\Windows\hpoins18.dat
[2011/09/11 13:13:01 | 000,006,600 | ---- | C] () -- C:\Windows\hpomdl18.dat
[2011/09/11 11:32:02 | 000,000,874 | ---- | C] () -- C:\Users\LivthefLip\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2011/09/11 11:32:02 | 000,000,862 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
[2011/09/11 11:05:58 | 000,002,069 | ---- | C] () -- C:\Users\LivthefLip\Application Data\Microsoft\Internet Explorer\Quick Launch\Acer Arcade Deluxe.lnk
[2011/09/11 11:05:55 | 000,000,950 | ---- | C] () -- C:\Users\LivthefLip\Application Data\Microsoft\Internet Explorer\Quick Launch\Acer GameZone Console.lnk
[2011/09/11 11:01:55 | 000,000,942 | ---- | C] () -- C:\Users\LivthefLip\Application Data\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk
[2011/09/11 10:48:22 | 000,000,836 | ---- | C] () -- C:\Windows\bthservsdp.dat
[2011/09/11 10:48:07 | 000,000,556 | ---- | C] () -- C:\Windows\tasks\Norton Internet Security - Run Full System Scan - LivthefLip.job
[2011/09/11 10:47:00 | 000,000,092 | ---- | C] () -- C:\Windows\GridV.UNI
[2011/09/11 10:42:32 | 000,016,384 | ---- | C] () -- C:\Windows\System32\LauncheRyAgentUser.exe
[2011/09/11 10:42:32 | 000,000,552 | ---- | C] () -- C:\Windows\System32\setup.iss
[2011/09/11 10:39:52 | 000,000,743 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk
[2011/09/11 10:33:00 | 000,000,083 | ---- | C] () -- C:\Windows\QtZgAcer.UNI
[2011/09/11 10:30:29 | 000,000,953 | ---- | C] () -- C:\Users\LivthefLip\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[2011/09/11 10:30:27 | 000,000,948 | ---- | C] () -- C:\Users\LivthefLip\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
[2011/09/11 10:30:15 | 000,000,919 | ---- | C] () -- C:\Users\LivthefLip\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Mail.lnk
[2011/09/11 10:29:54 | 083,554,304 | ---- | C] () -- C:\Windows\System32\acer.scr
[2011/09/11 10:29:11 | 000,000,947 | ---- | C] () -- C:\Users\LivthefLip\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2011/09/11 10:29:09 | 000,016,068 | ---- | C] () -- C:\Windows\System32\results.xml
[2011/09/11 10:28:47 | 000,000,258 | ---- | C] () -- C:\Users\LivthefLip\Application Data\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk
[2011/09/11 10:28:47 | 000,000,240 | ---- | C] () -- C:\Users\LivthefLip\Application Data\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk
[2009/04/01 10:48:16 | 000,053,478 | ---- | C] () -- C:\Windows\mvtcpui.ini
[2008/02/15 04:56:34 | 000,015,656 | ---- | C] () -- C:\Windows\System32\drivers\int15_64.sys
[2008/02/15 04:55:51 | 000,065,536 | ---- | C] () -- C:\Windows\System32\NATTraversal.dll
[2008/02/15 04:54:26 | 000,001,024 | RH-- | C] () -- C:\Windows\System32\NTIBUN4.dll
[2008/02/15 04:03:21 | 000,001,132 | ---- | C] () -- C:\Windows\RtDefLvl.ini
[2008/02/15 04:03:21 | 000,000,008 | ---- | C] () -- C:\Windows\System32\drivers\RtkHDAud.dat
[2008/02/15 02:34:23 | 000,000,144 | ---- | C] () -- C:\Windows\Alaunch.ini
[2008/02/15 02:34:15 | 001,953,696 | ---- | C] () -- C:\Windows\System32\igklg400.dll
[2008/02/15 02:34:15 | 001,533,360 | ---- | C] () -- C:\Windows\System32\igklg450.dll
[2008/02/15 02:34:15 | 000,147,456 | ---- | C] () -- C:\Windows\System32\igfxCoIn_v1409.dll
[2008/02/15 02:34:15 | 000,104,636 | ---- | C] () -- C:\Windows\System32\igmedcompkrn.dll
[2008/02/15 02:34:09 | 001,729,152 | ---- | C] () -- C:\Windows\System32\drivers\snp2uvc.sys
[2008/02/15 02:33:58 | 001,060,424 | ---- | C] () -- C:\Windows\System32\WdfCoInstaller01000.dll
[2007/03/29 12:42:38 | 000,389,120 | ---- | C] () -- C:\Windows\System32\btwhidcs.dll
[2006/11/02 20:57:28 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2006/11/02 20:47:37 | 000,228,176 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2006/11/02 20:35:32 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll
[2006/11/02 18:33:01 | 000,600,378 | ---- | C] () -- C:\Windows\System32\perfh009.dat
[2006/11/02 18:33:01 | 000,287,440 | ---- | C] () -- C:\Windows\System32\perfi009.dat
[2006/11/02 18:33:01 | 000,105,852 | ---- | C] () -- C:\Windows\System32\perfc009.dat
[2006/11/02 18:33:01 | 000,030,674 | ---- | C] () -- C:\Windows\System32\perfd009.dat
[2006/11/02 18:23:21 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat
[2006/11/02 16:58:30 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2006/11/02 16:19:00 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT
[2006/11/02 15:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2006/11/02 15:25:31 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat
[2001/12/27 08:12:30 | 000,065,536 | ---- | C] () -- C:\Windows\System32\multiplex_vcd.dll
[2001/11/14 13:56:00 | 001,802,240 | ---- | C] () -- C:\Windows\System32\lcppn21.dll
[2001/09/04 15:46:38 | 000,110,592 | ---- | C] () -- C:\Windows\System32\Hmpg12.dll
[2001/07/31 08:33:56 | 000,118,784 | ---- | C] () -- C:\Windows\System32\HMPV2_ENC.dll
[2001/07/24 14:04:36 | 000,118,784 | ---- | C] () -- C:\Windows\System32\HMPV2_ENC_MMX.dll

========== LOP Check ==========

[2008/02/15 04:28:28 | 000,000,000 | ---D | M] -- C:\Users\LivthefLip\AppData\Roaming\Acer GameZone Console
[2011/09/19 22:16:06 | 000,000,000 | ---D | M] -- C:\Users\LivthefLip\AppData\Roaming\uTorrent
[2011/09/18 09:57:32 | 000,000,000 | ---D | M] -- C:\Users\LivthefLip\AppData\Roaming\Xilisoft
[2011/09/19 22:00:57 | 000,013,172 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========



< End of report >
  • 0

#25
Render
Posted 19 September 2011 - 08:29 AM

Render

    Trusted Helper

  • Malware Removal
  • 4,195 posts
Well... Removing malware can be frustrating sometimes. :) And sometimes reformat and fresh install is much less time consuming.

OK. Babylon is gone as I can see from log. Now I want you to run your PC as normal and if you encounter any problems come back to me.
  • 0

Advertisements

#26
livtheflip
Posted 20 September 2011 - 04:56 PM

livtheflip

    Member

  • Topic Starter
  • Member
  • PipPip
  • 21 posts
babylon is gone but now its redirecting me to search.yahoo.com
  • 0

#27
Render
Posted 20 September 2011 - 05:30 PM

Render

    Trusted Helper

  • Malware Removal
  • 4,195 posts
Please reset the router to its default configuration.
This can be done by inserting something tiny like a paper clip end or pencil tip into a small hole labeled "reset" located on the back of the router.
Press and hold down the small button inside until the lights on the front of the router blink off and then on again (usually about 10 seconds).

NEXT...

Posted Image OTL Custom Scan

  • Double click on the Posted Image icon to run it.
  • Make sure all other windows are closed and to let it run uninterrupted.
  • When the window appears, underneath Output at the top, make sure Stadard output is selected.
  • Select Scan all users
  • Check the boxes beside LOP Check and Purity Check.
  • Under the Custom Scans/Fixes box copy and paste this in:

    netsvcs
%SYSTEMDRIVE%\*.exe
/md5start
explorer.exe
winlogon.exe
Userinit.exe
svchost.exe
/md5stop
%systemroot%\*. /mp /s
hklm\software\clients\startmenuinternet|command /rs
hklm\software\clients\startmenuinternet|command /64 /rs
CREATERESTOREPOINT
  • Click the Posted Image button. Do not change any settings unless otherwise told to do so. The scan wont take long.
  • When the scan completes, it will open OTL.Txt in Notepad window.
  • Please copy (Edit->Select All, Edit->Copy) the content of this file and post it with your next reply.

  • 0

#28
livtheflip
Posted 22 September 2011 - 05:43 AM

livtheflip

    Member

  • Topic Starter
  • Member
  • PipPip
  • 21 posts
OTL Scan Log:

OTL logfile created on: 9/22/2011 7:21:41 PM - Run 6
OTL by OldTimer - Version 3.2.28.0 Folder = C:\Users\LivthefLip\Downloads
Windows Vista Home Premium Edition Service Pack 1 (Version = 6.0.6001) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6001.18000)
Locale: 00003409 | Country: Republic of the Philippines | Language: ENP | Date Format: M/d/yyyy

1.99 Gb Total Physical Memory | 1.00 Gb Available Physical Memory | 50.44% Memory free
4.21 Gb Paging File | 2.71 Gb Available in Paging File | 64.41% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 69.77 Gb Total Space | 34.63 Gb Free Space | 49.63% Space Free | Partition Type: NTFS
Drive D: | 66.27 Gb Total Space | 46.75 Gb Free Space | 70.54% Space Free | Partition Type: NTFS
Drive E: | 3.24 Gb Total Space | 3.20 Gb Free Space | 98.62% Space Free | Partition Type: NTFS
Drive N: | 149.05 Gb Total Space | 148.96 Gb Free Space | 99.94% Space Free | Partition Type: NTFS

Computer Name: LIVTHEFLIP-PC | User Name: LivthefLip | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011/09/19 22:03:46 | 000,208,896 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Users\LivthefLip\AppData\Local\Temp\RtkBtMnt.exe
PRC - [2011/09/15 16:10:42 | 000,581,632 | ---- | M] (OldTimer Tools) -- C:\Users\LivthefLip\Downloads\OTL.exe
PRC - [2011/09/11 15:22:37 | 000,273,528 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\Real\RealPlayer\Update\realsched.exe
PRC - [2011/09/11 15:12:18 | 000,640,888 | ---- | M] (BitTorrent, Inc.) -- C:\Program Files\uTorrent\uTorrent.exe
PRC - [2011/09/11 11:32:50 | 001,251,720 | ---- | M] () -- C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
PRC - [2011/08/31 17:00:48 | 000,366,152 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2011/07/29 07:08:12 | 001,259,376 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe
PRC - [2010/04/07 20:57:42 | 000,099,896 | ---- | M] (HP) -- C:\Windows\System32\HPSIsvc.exe
PRC - [2008/10/29 14:29:41 | 002,927,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2008/10/17 15:52:10 | 000,149,352 | ---- | M] (Symantec Corporation) -- C:\Program Files\Common Files\Symantec Shared\CCSVCHST.EXE
PRC - [2008/10/16 17:26:20 | 000,860,160 | ---- | M] (Intel® Corporation) -- C:\Program Files\Intel\WiFi\bin\EvtEng.exe
PRC - [2008/10/16 16:54:34 | 000,466,944 | ---- | M] (Intel® Corporation) -- C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
PRC - [2008/03/20 07:03:48 | 002,376,992 | ---- | M] (McAfee, Inc.) -- c:\Program Files\Common Files\Mcafee\MNA\McNASvc.exe
PRC - [2008/02/25 16:53:24 | 000,518,656 | ---- | M] (Egis Incorporated) -- C:\Acer\Empowering Technology\eDataSecurity\x86\eDSLoader.exe
PRC - [2008/02/25 16:50:10 | 000,491,008 | ---- | M] (Egis Incorporated) -- C:\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe
PRC - [2008/02/06 01:47:12 | 000,458,752 | ---- | M] (Acer Inc.) -- C:\Acer\Empowering Technology\ePower\ePower_DMC.exe
PRC - [2008/01/24 10:29:00 | 004,702,208 | ---- | M] (Realtek Semiconductor) -- C:\Windows\RtHDVCpl.exe
PRC - [2008/01/24 10:28:00 | 000,102,400 | ---- | M] (Synaptics, Inc.) -- C:\Program Files\Synaptics\SynTP\SynTPStart.exe
PRC - [2008/01/10 10:43:28 | 000,323,584 | ---- | M] (Acer Inc.) -- C:\Acer\Empowering Technology\Acer.Empowering.Framework.Supervisor.exe
PRC - [2008/01/02 21:17:28 | 000,707,080 | ---- | M] (Dritek System Inc.) -- C:\Program Files\Launch Manager\QtZgAcer.EXE
PRC - [2007/12/21 03:33:14 | 000,761,856 | ---- | M] (Acer Inc.) -- C:\Acer\Empowering Technology\eNet\eNMTray.exe
PRC - [2007/12/21 03:32:04 | 000,131,072 | ---- | M] (Acer Inc.) -- C:\Acer\Empowering Technology\eNet\eNet Service.exe
PRC - [2007/12/20 10:09:22 | 000,024,576 | ---- | M] () -- C:\Acer\Empowering Technology\eSettings\Service\capuserv.exe
PRC - [2007/11/28 10:54:36 | 000,110,592 | ---- | M] () -- C:\Acer\Mobility Center\MobilityService.exe
PRC - [2007/10/10 22:41:54 | 001,286,144 | ---- | M] (CyberLink) -- C:\Acer\Empowering Technology\eAudio\eAudio.exe
PRC - [2007/10/02 08:42:36 | 000,024,576 | ---- | M] (Acer Inc.) -- C:\Acer\Empowering Technology\eLock\Service\eLockServ.exe
PRC - [2007/09/21 05:57:28 | 000,167,936 | ---- | M] (acer) -- C:\Acer\Empowering Technology\ePower\ePowerSvc.exe
PRC - [2007/09/10 15:28:18 | 000,057,344 | ---- | M] (Acer Inc.) -- C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe
PRC - [2007/09/06 12:02:04 | 000,393,216 | ---- | M] (Acer Inc.) -- C:\Acer\Empowering Technology\eRecovery\eRAgent.exe
PRC - [2007/08/31 11:49:50 | 000,243,064 | ---- | M] (Symantec Corporation) -- C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe
PRC - [2007/03/29 13:11:50 | 000,719,664 | ---- | M] (Broadcom Corporation.) -- C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
PRC - [2007/03/29 13:11:48 | 001,604,400 | ---- | M] (Broadcom Corporation.) -- c:\Program Files\WIDCOMM\Bluetooth Software\BTStackServer.exe


========== Modules (No Company Name) ==========

MOD - [2011/09/11 21:40:42 | 000,998,400 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Management\31729b33207d1093721f9e943302b900\System.Management.ni.dll
MOD - [2011/09/11 21:40:40 | 000,212,992 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\ba71341e41687591124f9a5680cb0981\System.ServiceProcess.ni.dll
MOD - [2011/09/11 21:40:13 | 011,796,992 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\47b2e1d9030f551f685dfea0b618e7fd\System.Web.ni.dll
MOD - [2011/09/11 21:39:37 | 000,771,584 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\a4fd3b000abfd4712b02ec223df3e9dd\System.Runtime.Remoting.ni.dll
MOD - [2011/09/11 21:39:19 | 012,430,848 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\6d75eb3ca10a514754f5e87cc2134f07\System.Windows.Forms.ni.dll
MOD - [2011/09/11 21:39:03 | 001,587,200 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\19d027c3381110e60c003f2c8bd307ee\System.Drawing.ni.dll
MOD - [2011/09/11 21:38:52 | 005,450,752 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\38b9d09539b67b08ee996db6c71f8a9b\System.Xml.ni.dll
MOD - [2011/09/11 21:38:46 | 000,971,264 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\982c005f97eacba888acdda322c49362\System.Configuration.ni.dll
MOD - [2011/09/11 21:38:35 | 007,868,416 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\57ac9ba5419d6bf4b79f2979b0755428\System.ni.dll
MOD - [2011/09/11 21:38:20 | 011,486,720 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\c068708e16abf0be77a21b9f29817d83\mscorlib.ni.dll
MOD - [2011/07/29 07:09:42 | 000,096,112 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdateCheck.dll
MOD - [2011/07/29 07:08:12 | 001,259,376 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe
MOD - [2008/01/10 10:43:12 | 000,057,344 | ---- | M] () -- C:\Acer\Empowering Technology\Acer.Empowering.Framework.DialogManager.dll
MOD - [2008/01/10 10:42:54 | 000,024,576 | ---- | M] () -- C:\Acer\Empowering Technology\Acer.Empowering.Framework.PasswordSetting.dll
MOD - [2008/01/03 18:00:48 | 000,227,888 | ---- | M] () -- C:\Acer\Empowering Technology\eDataSecurity\x86\ShowErrMsg.dll
MOD - [2007/12/21 05:58:00 | 000,679,936 | ---- | M] () -- C:\Acer\Empowering Technology\eLock\eLockCTL.dll
MOD - [2007/12/21 03:33:26 | 000,249,856 | ---- | M] () -- C:\Acer\Empowering Technology\eNet\eNetPlugin.dll
MOD - [2007/12/20 10:09:38 | 000,028,672 | ---- | M] () -- C:\Acer\Empowering Technology\eSettings\eSettings.Plugin.dll
MOD - [2007/12/20 10:08:54 | 000,155,648 | ---- | M] () -- C:\Acer\Empowering Technology\eSettings\eSettings.Presenter.dll
MOD - [2007/12/20 10:08:28 | 003,420,160 | ---- | M] () -- C:\Acer\Empowering Technology\eSettings\eSettings.View.dll
MOD - [2007/12/20 10:08:10 | 000,032,768 | ---- | M] () -- C:\Acer\Empowering Technology\eSettings.Model.ComputerInterfaces.dll
MOD - [2007/10/10 22:41:08 | 000,106,496 | ---- | M] () -- C:\Acer\Empowering Technology\eAudio\eAudioUI.dll
MOD - [2007/09/21 06:01:12 | 000,208,896 | ---- | M] () -- C:\Acer\Empowering Technology\ePower\SysHook.dll
MOD - [2007/09/12 01:59:04 | 000,307,200 | ---- | M] () -- C:\Acer\Empowering Technology\ePresentation\ePresentationCTL.dll
MOD - [2007/03/29 13:02:48 | 000,126,976 | ---- | M] () -- C:\Program Files\WIDCOMM\Bluetooth Software\BTKeyInd.dll
MOD - [2007/03/29 12:42:38 | 000,389,120 | ---- | M] () -- C:\Windows\System32\btwhidcs.dll
MOD - [2007/02/13 06:26:30 | 000,016,384 | ---- | M] () -- C:\Acer\Empowering Technology\eRecovery\ServiceInterface.dll
MOD - [2006/12/10 21:51:08 | 000,077,824 | R--- | M] () -- C:\Program Files\HP\Digital Imaging\bin\crm\xmltok.dll
MOD - [2006/12/10 21:51:08 | 000,065,536 | R--- | M] () -- C:\Program Files\HP\Digital Imaging\bin\crm\xmlparse.dll


========== Win32 Services (SafeList) ==========

SRV - [2011/09/11 11:32:50 | 001,251,720 | ---- | M] () [On_Demand | Running] -- C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe -- (Symantec Core LC)
SRV - [2011/08/31 17:00:48 | 000,366,152 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2010/04/07 20:57:42 | 000,099,896 | ---- | M] (HP) [Auto | Running] -- C:\Windows\System32\HPSIsvc.exe -- (HPSIService)
SRV - [2008/10/17 15:52:10 | 000,149,352 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe -- (LiveUpdate Notice)
SRV - [2008/10/17 15:52:10 | 000,149,352 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe -- (CLTNetCnService)
SRV - [2008/10/17 15:52:10 | 000,149,352 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe -- (ccSetMgr)
SRV - [2008/10/17 15:52:10 | 000,149,352 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe -- (ccEvtMgr)
SRV - [2008/10/16 17:26:20 | 000,860,160 | ---- | M] (Intel® Corporation) [Auto | Running] -- C:\Program Files\Intel\WiFi\bin\EvtEng.exe -- (EvtEng)
SRV - [2008/10/16 16:54:34 | 000,466,944 | ---- | M] (Intel® Corporation) [Auto | Running] -- C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe -- (RegSrvc)
SRV - [2008/03/20 07:03:48 | 002,376,992 | ---- | M] (McAfee, Inc.) [Auto | Running] -- c:\Program Files\Common Files\Mcafee\MNA\McNASvc.exe -- (McNASvc)
SRV - [2008/02/25 16:50:10 | 000,491,008 | ---- | M] (Egis Incorporated) [Auto | Running] -- C:\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe -- (eDataSecurity Service)
SRV - [2008/01/21 10:23:32 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2007/12/21 03:32:04 | 000,131,072 | ---- | M] (Acer Inc.) [Auto | Running] -- C:\Acer\Empowering Technology\eNet\eNet Service.exe -- (eNet Service)
SRV - [2007/12/20 10:09:22 | 000,024,576 | ---- | M] () [Auto | Running] -- C:\Acer\Empowering Technology\eSettings\Service\capuserv.exe -- (eSettingsService)
SRV - [2007/11/28 10:54:36 | 000,110,592 | ---- | M] () [Auto | Running] -- C:\Acer\Mobility Center\MobilityService.exe -- (MobilityService)
SRV - [2007/10/02 08:42:36 | 000,024,576 | ---- | M] (Acer Inc.) [Auto | Running] -- C:\Acer\Empowering Technology\eLock\Service\eLockServ.exe -- (eLockService)
SRV - [2007/09/21 05:57:28 | 000,167,936 | ---- | M] (acer) [Auto | Running] -- C:\Acer\Empowering Technology\ePower\ePowerSvc.exe -- (WMIService)
SRV - [2007/09/10 15:28:18 | 000,057,344 | ---- | M] (Acer Inc.) [Auto | Running] -- C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe -- (eRecoveryService)
SRV - [2007/08/31 11:49:50 | 000,243,064 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe -- (Automatic LiveUpdate Scheduler)
SRV - [2007/08/23 20:35:00 | 003,192,184 | ---- | M] (Symantec Corporation) [On_Demand | Stopped] -- C:\Program Files\Symantec\LiveUpdate\LuComServer_3_4.EXE -- (LiveUpdate)
SRV - [2007/08/22 07:21:00 | 000,055,640 | ---- | M] (Symantec Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe -- (comHost)


========== Driver Services (SafeList) ==========

DRV - [2079/07/19 15:18:48 | 001,576,312 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\ProgramData\Symantec\Definitions\VirusDefs\20110921.025\NAVEX15.SYS -- (NAVEX15)
DRV - [2079/07/19 15:18:48 | 000,374,392 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys -- (eeCtrl)
DRV - [2079/07/19 15:18:48 | 000,287,792 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\ProgramData\Symantec\Definitions\SymcData\ipsdefs\20110915.001\IDSvix86.sys -- (IDSvix86)
DRV - [2079/07/19 15:18:48 | 000,105,592 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys -- (EraserUtilRebootDrv)
DRV - [2079/07/19 15:18:48 | 000,086,136 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\ProgramData\Symantec\Definitions\VirusDefs\20110921.025\NAVENG.SYS -- (NAVENG)
DRV - [2011/09/11 11:41:28 | 000,124,464 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\SYMEVENT.SYS -- (SymEvent)
DRV - [2011/08/31 17:00:50 | 000,022,216 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\mbam.sys -- (MBAMProtector)
DRV - [2010/03/06 07:40:57 | 000,017,408 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\mvusbews.sys -- (mvusbews)
DRV - [2009/03/17 12:56:58 | 000,447,024 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys -- (SPBBCDrv)
DRV - [2009/02/19 13:31:42 | 000,024,112 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\SymIMV.sys -- (SymIM)
DRV - [2009/02/19 13:31:18 | 000,041,008 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\SYMNDISV.SYS -- (SYMNDISV)
DRV - [2009/02/19 13:31:16 | 000,184,496 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\System32\Drivers\SYMTDI.SYS -- (SYMTDI)
DRV - [2009/02/19 13:31:16 | 000,096,560 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\SYMFW.SYS -- (SYMFW)
DRV - [2009/02/19 13:31:16 | 000,022,320 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\SYMREDRV.SYS -- (SYMREDRV)
DRV - [2009/02/19 13:31:16 | 000,013,616 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\SYMDNS.SYS -- (SYMDNS)
DRV - [2008/11/17 07:40:22 | 003,668,480 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\NETw5v32.sys -- (NETw5v32) Intel®
DRV - [2008/07/30 17:42:12 | 000,023,888 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\COH_Mon.sys -- (COH_Mon)
DRV - [2008/05/06 16:06:00 | 000,011,520 | ---- | M] (Western Digital Technologies) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\wdcsam.sys -- (WDC_SAM)
DRV - [2008/02/15 17:42:42 | 000,046,592 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\rimmptsk.sys -- (rimmptsk)
DRV - [2008/01/30 18:34:00 | 007,629,504 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2008/01/24 10:29:00 | 000,043,008 | ---- | M] (Winbond Electronics Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\winbondcir.sys -- (winbondcir)
DRV - [2008/01/24 10:29:00 | 000,008,704 | ---- | M] (Conexant Systems, Inc.) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\XAudio.sys -- (XAudio)
DRV - [2008/01/21 10:23:20 | 002,225,664 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\NETw3v32.sys -- (NETw3v32) Intel®
DRV - [2007/11/30 23:57:12 | 000,317,616 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\srtspl.sys -- (SRTSPL)
DRV - [2007/11/30 23:57:12 | 000,279,088 | ---- | M] (Symantec Corporation) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\srtsp.sys -- (SRTSP)
DRV - [2007/11/30 23:57:12 | 000,043,696 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\srtspx.sys -- (SRTSPX)
DRV - [2007/10/31 10:36:32 | 002,252,800 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\NETw4v32.sys -- (NETw4v32) Intel®
DRV - [2007/08/08 23:39:00 | 000,036,056 | ---- | M] (Symantec Corporation) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\CO_Mon.sys -- (CO_Mon)
DRV - [2007/08/08 10:37:00 | 001,729,152 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\snp2uvc.sys -- (SNP2UVC) USB2.0 PC Camera (SNP2UVC)
DRV - [2007/07/31 03:54:02 | 000,038,400 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\rixdptsk.sys -- (rismxdp)
DRV - [2007/07/31 02:42:58 | 000,043,008 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\rimsptsk.sys -- (rimsptsk)
DRV - [2007/07/03 10:05:20 | 000,015,392 | ---- | M] (Acer, Inc.) [Kernel | Auto | Running] -- C:\Acer\Empowering Technology\eRecovery\int15.sys -- (int15)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://en.ph.acer.yahoo.com


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-529779327-4180284273-165655323-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://global.acer.com [binary data]
IE - HKU\S-1-5-21-529779327-4180284273-165655323-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com.ph/
IE - HKU\S-1-5-21-529779327-4180284273-165655323-1000\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKU\S-1-5-21-529779327-4180284273-165655323-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.selectedEngine: ""
FF - prefs.js..browser.startup.homepage: "http://www.google.com.ph/"
FF - prefs.js..network.proxy.type: 0


FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6: C:\Program Files\Yahoo!\Shared\npYState.dll (Yahoo! Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=12.0.1.666: C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=12.0.1.666: C:\Program Files\Real\RealPlayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpchromebrowserrecordext;version=12.0.1.666: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprphtml5videoshim;version=12.0.1.666: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=12.0.1.666: C:\Program Files\Real\RealPlayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2011/09/11 14:51:57 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2011/09/11 15:22:54 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 6.0.2\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/09/11 15:22:49 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 6.0.2\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/09/19 20:30:43 | 000,000,000 | ---D | M]

[2011/09/11 11:32:24 | 000,000,000 | ---D | M] (No name found) -- C:\Users\LivthefLip\AppData\Roaming\Mozilla\Extensions
[2011/09/22 16:47:04 | 000,000,000 | ---D | M] (No name found) -- C:\Users\LivthefLip\AppData\Roaming\Mozilla\Firefox\Profiles\yhzzhqm6.default\extensions
[2011/09/15 08:02:38 | 000,000,000 | ---D | M] (Yahoo! Toolbar) -- C:\Users\LivthefLip\AppData\Roaming\Mozilla\Firefox\Profiles\yhzzhqm6.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
[2011/09/11 15:11:04 | 000,000,000 | ---D | M] (uTorrentBar Community Toolbar) -- C:\Users\LivthefLip\AppData\Roaming\Mozilla\Firefox\Profiles\yhzzhqm6.default\extensions\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}
[2011/09/22 16:47:04 | 000,000,000 | ---D | M] (No name found) -- C:\Users\LivthefLip\AppData\Roaming\Mozilla\Firefox\Profiles\yhzzhqm6.default\extensions\staged
[2011/09/11 15:29:27 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2011/09/11 15:29:27 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA}
[2011/09/11 15:22:54 | 000,000,000 | ---D | M] (RealPlayer Browser Record Plugin) -- C:\PROGRAMDATA\REAL\REALPLAYER\BROWSERRECORDPLUGIN\FIREFOX\EXT
[2011/09/03 14:01:45 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2011/09/11 15:29:15 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2011/09/03 07:25:59 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml

O1 HOSTS File: ([2011/09/19 21:59:04 | 000,000,098 | ---- | M]) - C:\Windows\System32\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - No CLSID value found.
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (DivX Plus Web Player HTML5 <video>) - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
O2 - BHO: (Reg Error: Value error.) - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Common Files\Symantec Shared\coShared\Browser\2.0\CoIEPlg.dll (Symantec Corporation)
O2 - BHO: (Symantec Intrusion Prevention) - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Common Files\Symantec Shared\IDS\IPSBHO.dll (Symantec Corporation)
O2 - BHO: (ShowBarObj Class) - {83A2F9B1-01A2-4AA5-87D1-45B6B8505E96} - C:\Acer\Empowering Technology\eDataSecurity\x86\ActiveToolBand.dll (HiTRUST)
O3 - HKLM\..\Toolbar: (Acer eDataSecurity Management) - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll (Egis Incorporated.)
O3 - HKLM\..\Toolbar: (Show Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Common Files\Symantec Shared\coShared\Browser\2.0\CoIEPlg.dll (Symantec Corporation)
O3 - HKU\S-1-5-21-529779327-4180284273-165655323-1000\..\Toolbar\ShellBrowser: (Acer eDataSecurity Management) - {5CBE3B7C-1E47-477E-A7DD-396DB0476E29} - C:\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll (Egis Incorporated.)
O3 - HKU\S-1-5-21-529779327-4180284273-165655323-1000\..\Toolbar\WebBrowser: (Show Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Common Files\Symantec Shared\coShared\Browser\2.0\CoIEPlg.dll (Symantec Corporation)
O4 - HKLM..\Run: [ccApp] C:\Program Files\Common Files\Symantec Shared\ccApp.exe (Symantec Corporation)
O4 - HKLM..\Run: [DivXUpdate] C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
O4 - HKLM..\Run: [eAudio] C:\Acer\Empowering Technology\eAudio\eAudio.exe (CyberLink)
O4 - HKLM..\Run: [eDataSecurity Loader] C:\Acer\Empowering Technology\eDataSecurity\x86\eDSLoader.exe (Egis Incorporated)
O4 - HKLM..\Run: [LManager] C:\Program Files\Launch Manager\QtZgAcer.EXE (Dritek System Inc.)
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [NvCplDaemon] C:\Windows\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\Windows\System32\NvMcTray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvSvc] C:\Windows\System32\nvsvc.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [PLFSet] C:\Windows\PLFSet.dll ( )
O4 - HKLM..\Run: [RtHDVCpl] C:\Windows\RtHDVCpl.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [SynTPStart] C:\Program Files\Synaptics\SynTP\SynTPStart.exe (Synaptics, Inc.)
O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Real\RealPlayer\Update\realsched.exe (RealNetworks, Inc.)
O4 - HKU\S-1-5-21-529779327-4180284273-165655323-1000..\Run: [Messenger (Yahoo!)] C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe (Yahoo! Inc.)
O4 - HKU\S-1-5-21-529779327-4180284273-165655323-1000..\Run: [uTorrent] C:\Program Files\uTorrent\uTorrent.exe (BitTorrent, Inc.)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-529779327-4180284273-165655323-1000\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-529779327-4180284273-165655323-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: Send image to &Bluetooth Device... - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm ()
O8 - Extra context menu item: Send page to &Bluetooth Device... - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra Button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_27)
O16 - DPF: {CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_27)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_27)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.254.1 192.168.254.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{C9F3C52C-A6EC-4234-A130-3D92BE289CF4}: DhcpNameServer = 192.168.254.1 192.168.254.1
O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) -C:\Windows\System32\userinit.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Users\LivthefLip\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg
O24 - Desktop BackupWallPaper: C:\Users\LivthefLip\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/09/19 05:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

NetSvcs: FastUserSwitchingCompatibility - File not found
NetSvcs: Ias - C:\Windows\System32\ias.dll (Microsoft Corporation)
NetSvcs: Nla - File not found
NetSvcs: Ntmssvc - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: SRService - File not found
NetSvcs: WmdmPmSp - File not found
NetSvcs: LogonHours - File not found
NetSvcs: PCAudit - File not found
NetSvcs: helpsvc - File not found
NetSvcs: uploadmgr - File not found

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

========== Files/Folders - Created Within 30 Days ==========

[2011/09/21 06:27:17 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Roaming\vlc
[2011/09/21 06:25:40 | 000,000,000 | ---D | C] -- C:\Program Files\VideoLAN
[2011/09/20 20:46:38 | 003,673,544 | ---- | C] (Broadcom Corporation.) -- C:\Users\LivthefLip\Desktop\SetupBtwDownloadSE.exe
[2011/09/19 22:09:57 | 000,000,000 | ---D | C] -- C:\ProgramData\WindowsSearch
[2011/09/19 20:22:25 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe
[2011/09/19 20:22:25 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe
[2011/09/19 20:21:18 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2011/09/19 10:09:53 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Local\Microsoft Games
[2011/09/18 21:25:47 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2011/09/18 21:09:38 | 000,518,144 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe
[2011/09/18 21:09:38 | 000,406,528 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe
[2011/09/18 21:09:38 | 000,060,416 | ---- | C] (NirSoft) -- C:\Windows\NIRCMD.exe
[2011/09/18 21:09:30 | 000,000,000 | ---D | C] -- C:\Combo-Fix25483C
[2011/09/18 21:02:31 | 000,000,000 | ---D | C] -- C:\Windows\ERDNT
[2011/09/18 21:02:30 | 000,000,000 | ---D | C] -- C:\Combo-Fix
[2011/09/18 21:02:26 | 000,000,000 | ---D | C] -- C:\Qoobox
[2011/09/18 20:59:37 | 004,215,031 | R--- | C] (Swearware) -- C:\Users\LivthefLip\Desktop\Combo-Fix.exe
[2011/09/18 11:05:19 | 000,000,000 | ---D | C] -- C:\ProgramData\Kaspersky Lab
[2011/09/18 09:57:32 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Roaming\Xilisoft
[2011/09/18 09:48:33 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Xilisoft
[2011/09/18 09:47:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Xilisoft
[2011/09/18 09:47:15 | 000,000,000 | ---D | C] -- C:\Program Files\Xilisoft
[2011/09/18 09:05:24 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FoxTab AVI Converter
[2011/09/18 09:05:23 | 000,000,000 | ---D | C] -- C:\Program Files\FoxTabAVIConverter
[2011/09/17 22:26:52 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\Documents\dpgtools11beta5
[2011/09/16 15:11:31 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Roaming\Malwarebytes
[2011/09/16 15:11:17 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2011/09/16 15:11:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2011/09/16 15:11:13 | 000,022,216 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2011/09/16 15:11:13 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2011/09/16 14:55:33 | 000,000,000 | ---D | C] -- C:\_OTL
[2011/09/15 15:26:36 | 000,000,000 | ---D | C] -- C:\_OTM
[2011/09/13 16:38:12 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Local\Acer Arcade Deluxe
[2011/09/13 16:38:11 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Roaming\CyberLink
[2011/09/13 16:38:04 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Local\PowerCinema
[2011/09/12 03:10:49 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msshooks.dll
[2011/09/12 03:10:48 | 000,034,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msscb.dll
[2011/09/12 03:10:46 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msshsq.dll
[2011/09/12 03:10:46 | 000,087,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssitlb.dll
[2011/09/12 03:10:46 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\propdefs.dll
[2011/09/12 03:10:46 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msstrc.dll
[2011/09/12 03:10:46 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssprxy.dll
[2011/09/12 03:10:45 | 000,313,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\thawbrkr.dll
[2011/09/12 03:10:45 | 000,301,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\srchadmin.dll
[2011/09/12 03:10:45 | 000,143,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\korwbrkr.dll
[2011/09/12 03:10:44 | 001,671,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\chsbrkr.dll
[2011/09/12 03:10:44 | 000,194,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\offfilt.dll
[2011/09/12 03:10:44 | 000,136,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\nlhtml.dll
[2011/09/12 03:10:44 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msscntrs.dll
[2011/09/12 03:10:44 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xmlfilter.dll
[2011/09/12 03:10:44 | 000,040,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mimefilt.dll
[2011/09/12 03:10:44 | 000,038,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rtffilt.dll
[2011/09/12 03:10:44 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wsepno.dll
[2011/09/12 03:10:43 | 006,103,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\chtbrkr.dll
[2011/09/12 03:10:43 | 001,582,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tquery.dll
[2011/09/12 03:10:43 | 001,418,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssrch.dll
[2011/09/12 03:10:42 | 000,670,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssvp.dll
[2011/09/12 03:10:42 | 000,350,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssph.dll
[2011/09/12 03:10:42 | 000,203,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssphtb.dll
[2011/09/12 03:07:25 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MSNP.ax
[2011/09/12 03:07:25 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MSDvbNP.ax
[2011/09/12 03:07:19 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\psisdecd.dll
[2011/09/12 03:07:17 | 000,217,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\psisrndr.ax
[2011/09/12 01:19:41 | 000,222,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MpSigStub.exe
[2011/09/12 01:12:59 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution
[2011/09/12 01:12:48 | 000,920,088 | ---- | C] (Intel® Corporation) -- C:\Windows\System32\igxpun.exe
[2011/09/12 01:12:48 | 000,000,000 | ---D | C] -- C:\Windows\System32\x64
[2011/09/12 01:12:48 | 000,000,000 | ---D | C] -- C:\Windows\System32\Lang
[2011/09/12 01:12:42 | 000,319,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\difxapi.dll
[2011/09/12 01:07:19 | 017,730,504 | ---- | C] (Acer Incorporated) -- C:\Windows\eRy.exe
[2011/09/12 01:07:04 | 000,065,536 | ---- | C] (Realtek Semiconductor) -- C:\Windows\SetSpkDefault.exe
[2011/09/12 01:06:52 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\devcon.exe
[2011/09/11 22:58:43 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Roaming\Yahoo!
[2011/09/11 22:57:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Yahoo! Messenger
[2011/09/11 22:57:01 | 000,000,000 | ---D | C] -- C:\ProgramData\Yahoo!
[2011/09/11 21:32:04 | 000,000,000 | ---D | C] -- C:\Windows\System32\WindowsPowerShell
[2011/09/11 20:29:46 | 000,097,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\infocardapi.dll
[2011/09/11 20:29:45 | 000,105,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationCFFRasterizerNative_v0300.dll
[2011/09/11 20:29:44 | 000,622,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\icardagt.exe
[2011/09/11 20:29:44 | 000,043,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationHostProxy.dll
[2011/09/11 20:29:44 | 000,037,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\infocardcpl.cpl
[2011/09/11 20:29:44 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\icardres.dll
[2011/09/11 20:29:42 | 000,781,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationNative_v0300.dll
[2011/09/11 20:29:39 | 000,326,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationHost.exe
[2011/09/11 20:22:47 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netfxperf.dll
[2011/09/11 20:22:37 | 000,158,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mscorier.dll
[2011/09/11 20:22:31 | 000,083,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mscories.dll
[2011/09/11 20:19:34 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\nshhttp.dll
[2011/09/11 20:17:51 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\Roaming
[2011/09/11 20:17:51 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Roaming\Intel
[2011/09/11 20:15:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel PROSet Wireless
[2011/09/11 20:15:41 | 000,000,000 | ---D | C] -- C:\Program Files\Cisco
[2011/09/11 20:15:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Intel
[2011/09/11 20:15:38 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Intel
[2011/09/11 20:13:03 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winrsmgr.dll
[2011/09/11 20:12:52 | 000,040,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winrs.exe
[2011/09/11 20:12:52 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winrshost.exe
[2011/09/11 20:12:52 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wsmprovhost.exe
[2011/09/11 20:12:51 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wsmplpxy.dll
[2011/09/11 20:12:51 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winrssrv.dll
[2011/09/11 20:12:49 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wevtfwd.dll
[2011/09/11 20:12:49 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wecutil.exe
[2011/09/11 20:12:49 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wecapi.dll
[2011/09/11 20:12:49 | 000,054,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WsmRes.dll
[2011/09/11 20:12:49 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pwrshplugin.dll
[2011/09/11 20:12:42 | 000,252,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WSManMigrationPlugin.dll
[2011/09/11 20:12:42 | 000,246,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WSManHTTPConfig.exe
[2011/09/11 20:12:42 | 000,241,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winrscmd.dll
[2011/09/11 20:12:42 | 000,214,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WsmWmiPl.dll
[2011/09/11 20:12:42 | 000,145,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WsmAuto.dll
[2011/09/11 18:40:55 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Roaming\Apple Computer
[2011/09/11 18:08:35 | 012,240,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0007.dll
[2011/09/11 18:08:29 | 002,644,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0009.dll
[2011/09/11 18:08:15 | 000,801,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NaturalLanguage6.dll
[2011/09/11 17:50:40 | 002,452,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dat
[2011/09/11 17:50:37 | 000,671,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mstime.dll
[2011/09/11 17:50:37 | 000,467,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2011/09/11 17:50:37 | 000,389,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll
[2011/09/11 17:50:36 | 000,389,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\html.iec
[2011/09/11 17:50:36 | 000,230,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieaksie.dll
[2011/09/11 17:50:35 | 001,383,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2011/09/11 17:50:35 | 000,380,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dll
[2011/09/11 17:50:35 | 000,193,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iepeers.dll
[2011/09/11 17:50:35 | 000,078,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieencode.dll
[2011/09/11 17:50:35 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2011/09/11 17:50:35 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe
[2011/09/11 17:35:29 | 000,666,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\printfilterpipelinesvc.exe
[2011/09/11 17:35:29 | 000,183,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sdohlp.dll
[2011/09/11 17:35:29 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iasrecst.dll
[2011/09/11 17:35:29 | 000,054,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iasads.dll
[2011/09/11 17:35:29 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iasdatastore.dll
[2011/09/11 17:35:29 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\printfilterpipelineprxy.dll
[2011/09/11 17:35:29 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iashost.exe
[2011/09/11 17:28:35 | 001,695,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\gameux.dll
[2011/09/11 17:28:35 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Apphlpdm.dll
[2011/09/11 17:28:34 | 004,240,384 | ---- | C] (Microsoft) -- C:\Windows\System32\GameUXLegacyGDFs.dll
[2011/09/11 17:26:50 | 002,868,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mf.dll
[2011/09/11 17:26:50 | 002,386,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMVCORE.DLL
[2011/09/11 17:26:46 | 002,042,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2011/09/11 17:26:05 | 000,302,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlansec.dll
[2011/09/11 17:26:05 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlanmsm.dll
[2011/09/11 17:26:05 | 000,127,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\L2SecHC.dll
[2011/09/11 17:24:08 | 000,429,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\EncDec.dll
[2011/09/11 17:24:07 | 000,323,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sbe.dll
[2011/09/11 17:24:07 | 000,177,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mpg2splt.ax
[2011/09/11 17:24:07 | 000,153,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sbeio.dll
[2011/09/11 17:23:59 | 001,161,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc42u.dll
[2011/09/11 17:23:59 | 001,136,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc42.dll
[2011/09/11 17:23:21 | 002,927,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\explorer.exe
[2011/09/11 17:23:03 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dnscacheugc.exe
[2011/09/11 17:22:47 | 000,062,464 | ---- | C] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\Windows\System32\l3codeca.acm
[2011/09/11 17:21:24 | 000,113,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\rmcast.sys
[2011/09/11 17:21:19 | 000,714,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\timedate.cpl
[2011/09/11 17:20:55 | 000,317,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MP4SDECD.DLL
[2011/09/11 17:20:45 | 000,019,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\kd1394.dll
[2011/09/11 17:20:44 | 000,988,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winload.exe
[2011/09/11 17:20:44 | 000,927,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winresume.exe
[2011/09/11 17:20:44 | 000,615,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ci.dll
[2011/09/11 17:20:41 | 000,378,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\srcore.dll
[2011/09/11 17:20:41 | 000,318,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rstrui.exe
[2011/09/11 17:20:41 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\setbcdlocale.dll
[2011/09/11 17:20:41 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\srdelayed.exe
[2011/09/11 17:20:41 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\kbd106n.dll
[2011/09/11 17:20:15 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\amxread.dll
[2011/09/11 17:20:15 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\apilogen.dll
[2011/09/11 17:20:08 | 003,548,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2011/09/11 17:20:07 | 003,600,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe
[2011/09/11 17:19:53 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\asycfilt.dll
[2011/09/11 17:19:50 | 000,562,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdtcprx.dll
[2011/09/11 17:19:49 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xolehlp.dll
[2011/09/11 17:19:43 | 000,996,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMNetMgr.dll
[2011/09/11 17:19:43 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\logagent.exe
[2011/09/11 17:18:03 | 000,157,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\t2embed.dll
[2011/09/11 17:17:45 | 000,081,920 | ---- | C] (Radius Inc.) -- C:\Windows\System32\iccvid.dll
[2011/09/11 17:17:43 | 000,954,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc40.dll
[2011/09/11 17:17:43 | 000,954,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc40u.dll
[2011/09/11 17:16:52 | 000,375,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winsrv.dll
[2011/09/11 17:16:52 | 000,049,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\csrsrv.dll
[2011/09/11 17:16:48 | 000,303,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmpeffects.dll
[2011/09/11 17:14:20 | 008,147,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmploc.DLL
[2011/09/11 17:13:24 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tzres.dll
[2011/09/11 17:12:05 | 001,169,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sdclt.exe
[2011/09/11 17:08:44 | 000,351,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WSDApi.dll
[2011/09/11 17:08:15 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dataclen.dll
[2011/09/11 17:08:15 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cdd.dll
[2011/09/11 17:06:16 | 000,604,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMSPDMOD.DLL
[2011/09/11 17:06:07 | 000,425,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PhotoMetadataHandler.dll
[2011/09/11 17:06:07 | 000,347,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WindowsCodecsExt.dll
[2011/09/11 17:05:34 | 000,292,864 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll
[2011/09/11 17:05:33 | 000,072,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fontsub.dll
[2011/09/11 17:05:33 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\System32\atmlib.dll
[2011/09/11 17:05:33 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dciman32.dll
[2011/09/11 17:05:19 | 000,357,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\taskschd.dll
[2011/09/11 17:05:19 | 000,345,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmicmiplugin.dll
[2011/09/11 17:05:18 | 000,270,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\taskcomp.dll
[2011/09/11 17:05:09 | 000,082,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mciavi32.dll
[2011/09/11 17:05:09 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\avicap32.dll
[2011/09/11 17:04:54 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdxm.tlb
[2011/09/11 17:04:54 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\amcompat.tlb
[2011/09/11 17:04:41 | 000,866,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmpmde.dll
[2011/09/11 17:04:30 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\consent.exe
[2011/09/11 17:04:24 | 001,645,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\connect.dll
[2011/09/11 17:04:12 | 000,180,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\scrobj.dll
[2011/09/11 17:04:12 | 000,135,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cscript.exe
[2011/09/11 17:01:58 | 000,523,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_isv.exe
[2011/09/11 17:01:58 | 000,511,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate.exe
[2011/09/11 17:01:58 | 000,347,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_ssp.exe
[2011/09/11 17:01:57 | 000,472,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc_isv.dll
[2011/09/11 17:01:57 | 000,472,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc.dll
[2011/09/11 17:01:57 | 000,346,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_ssp_isv.exe
[2011/09/11 17:01:56 | 000,329,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdrm.dll
[2011/09/11 17:01:56 | 000,151,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc_ssp_isv.dll
[2011/09/11 17:01:56 | 000,151,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc_ssp.dll
[2011/09/11 17:01:50 | 001,314,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\quartz.dll
[2011/09/11 17:01:49 | 000,181,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fsquirt.exe
[2011/09/11 17:01:15 | 000,147,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Faultrep.dll
[2011/09/11 16:59:53 | 000,310,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\unregmp2.exe
[2011/09/11 16:59:51 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\spwmp.dll
[2011/09/11 16:59:51 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdxm.ocx
[2011/09/11 16:59:51 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxmasf.dll
[2011/09/11 16:55:37 | 000,241,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceApi.dll
[2011/09/11 16:54:24 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pacerprf.dll
[2011/09/11 16:08:12 | 000,404,640 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2011/09/11 15:30:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun
[2011/09/11 15:30:06 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2011/09/11 15:29:23 | 000,472,808 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\deployJava1.dll
[2011/09/11 15:29:23 | 000,157,472 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaws.exe
[2011/09/11 15:29:23 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaw.exe
[2011/09/11 15:29:23 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\java.exe
[2011/09/11 15:29:11 | 000,000,000 | ---D | C] -- C:\Program Files\Java
[2011/09/11 15:22:56 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\xing shared
[2011/09/11 15:22:49 | 000,198,832 | ---- | C] (RealNetworks, Inc.) -- C:\Windows\System32\rmoc3260.dll
[2011/09/11 15:22:42 | 000,006,656 | ---- | C] (RealNetworks, Inc.) -- C:\Windows\System32\pndx5016.dll
[2011/09/11 15:22:42 | 000,005,632 | ---- | C] (RealNetworks, Inc.) -- C:\Windows\System32\pndx5032.dll
[2011/09/11 15:22:40 | 000,272,896 | ---- | C] (Progressive Networks) -- C:\Windows\System32\pncrt.dll
[2011/09/11 15:22:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Real
[2011/09/11 15:22:27 | 000,000,000 | ---D | C] -- C:\Program Files\Real
[2011/09/11 15:22:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Real
[2011/09/11 15:22:16 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Roaming\Real
[2011/09/11 15:11:06 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Local\Google
[2011/09/11 15:11:00 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Local\Conduit
[2011/09/11 15:09:37 | 000,000,000 | ---D | C] -- C:\Program Files\uTorrent
[2011/09/11 15:08:37 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Roaming\uTorrent
[2011/09/11 15:08:37 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Local\uTorrent
[2011/09/11 15:08:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
[2011/09/11 15:07:50 | 000,000,000 | ---D | C] -- C:\Program Files\QuickTime
[2011/09/11 15:07:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple Computer
[2011/09/11 15:07:23 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Apple
[2011/09/11 15:07:11 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Local\Apple
[2011/09/11 15:07:07 | 000,000,000 | ---D | C] -- C:\Program Files\Apple Software Update
[2011/09/11 15:07:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple
[2011/09/11 15:06:30 | 000,000,000 | ---D | C] -- C:\MPEGSUIT
[2011/09/11 15:06:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MPEG Suite 2001
[2011/09/11 15:04:32 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\Documents\flv to avi converter
[2011/09/11 15:03:40 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Local\WinZip
[2011/09/11 15:03:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip
[2011/09/11 15:02:53 | 000,000,000 | ---D | C] -- C:\ProgramData\WinZip
[2011/09/11 15:02:50 | 000,000,000 | ---D | C] -- C:\Program Files\WinZip
[2011/09/11 14:51:47 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Roaming\DivX
[2011/09/11 14:51:34 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\PX Storage Engine
[2011/09/11 14:51:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX Plus
[2011/09/11 14:51:07 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DivX Shared
[2011/09/11 14:35:49 | 000,000,000 | ---D | C] -- C:\Program Files\DivX
[2011/09/11 14:33:12 | 000,000,000 | ---D | C] -- C:\ProgramData\DivX
[2011/09/11 13:32:36 | 000,000,000 | -HSD | C] -- C:\Windows\ftpcache
[2011/09/11 13:31:39 | 000,099,896 | ---- | C] (HP) -- C:\Windows\System32\HPSIsvc.exe
[2011/09/11 13:28:25 | 001,112,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WdfCoInstaller01007.dll
[2011/09/11 13:28:25 | 000,017,408 | ---- | C] (Marvell Semiconductor, Inc.) -- C:\Windows\System32\drivers\mvusbews.sys
[2011/09/11 13:26:28 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\Documents\My Scans
[2011/09/11 13:22:28 | 000,000,000 | ---D | C] -- C:\ProgramData\WEBREG
[2011/09/11 13:22:21 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Roaming\HP
[2011/09/11 13:21:32 | 000,000,000 | ---D | C] -- C:\ProgramData\HPSSUPPLY
[2011/09/11 13:19:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
[2011/09/11 13:18:55 | 000,000,000 | ---D | C] -- C:\Program Files\Hewlett-Packard
[2011/09/11 13:18:55 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Hewlett-Packard
[2011/09/11 13:18:30 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\HP
[2011/09/11 13:17:01 | 000,000,000 | ---D | C] -- C:\ProgramData\Hewlett-Packard
[2011/09/11 13:14:26 | 000,117,760 | ---- | C] (Hewlett-Packard Company) -- C:\Windows\System32\hpz3l4v2.dll
[2011/09/11 13:14:15 | 000,000,000 | ---D | C] -- C:\Program Files\HP
[2011/09/11 13:13:08 | 000,000,000 | ---D | C] -- C:\ProgramData\HP
[2011/09/11 13:13:04 | 000,675,840 | ---- | C] (Hewlett-Packard) -- C:\Windows\System32\hpowiav1.dll
[2011/09/11 13:13:04 | 000,303,104 | ---- | C] (Hewlett-Packard Co.) -- C:\Windows\System32\hpovst01.dll
[2011/09/11 13:13:04 | 000,258,048 | ---- | C] (Hewlett-Packard) -- C:\Windows\System32\hpzids01.dll
[2011/09/11 13:13:03 | 000,897,024 | ---- | C] (Hewlett-Packard Co.) -- C:\Windows\System32\hpotiop1.dll
[2011/09/11 12:17:52 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Local\Adobe
[2011/09/11 11:35:45 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Symantec
[2011/09/11 11:32:05 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Roaming\Mozilla
[2011/09/11 11:32:05 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Local\Mozilla
[2011/09/11 11:32:00 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2011/09/11 11:10:21 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Roaming\Adobe
[2011/09/11 11:05:26 | 000,000,000 | ---D | C] -- C:\ProgramData\TEMP
[2011/09/11 10:48:48 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\Bluetooth Software
[2011/09/11 10:48:48 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\Documents\Bluetooth Exchange Folder
[2011/09/11 10:46:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer GridVista
[2011/09/11 10:42:32 | 000,368,640 | ---- | C] (Acer Inc.) -- C:\Windows\System32\CheckD2DSystem.exe
[2011/09/11 10:42:32 | 000,327,680 | ---- | C] (Acer Inc.) -- C:\Windows\System32\Remove_eRecovery.exe
[2011/09/11 10:42:32 | 000,016,384 | ---- | C] ( ) -- C:\Windows\System32\ClearEvent.exe
[2011/09/11 10:39:55 | 000,229,376 | ---- | C] (Broadcom Corporation.) -- C:\Windows\System32\BtwRSupport.dll
[2011/09/11 10:39:51 | 000,000,000 | ---D | C] -- C:\Windows\System32\es-MX
[2011/09/11 10:39:51 | 000,000,000 | ---D | C] -- C:\Windows\System32\es-AR
[2011/09/11 10:39:49 | 000,000,000 | ---D | C] -- C:\Program Files\WIDCOMM
[2011/09/11 10:37:40 | 000,046,592 | ---- | C] (REDC) -- C:\Windows\System32\drivers\rimmptsk.sys
[2011/09/11 10:36:01 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Mcafee
[2011/09/11 10:36:00 | 000,000,000 | ---D | C] -- C:\ProgramData\McAfee
[2011/09/11 10:36:00 | 000,000,000 | ---D | C] -- C:\Program Files\McAfee
[2011/09/11 10:33:00 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Launch Manager
[2011/09/11 10:32:58 | 000,000,000 | ---D | C] -- C:\Program Files\Launch Manager
[2011/09/11 10:31:51 | 000,000,000 | -H-D | C] -- C:\Users\LivthefLip\AppData\Local\acer eNM
[2011/09/11 10:31:00 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Roaming\Symantec
[2011/09/11 10:30:27 | 000,000,000 | R--D | C] -- C:\Users\LivthefLip\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2011/09/11 10:30:27 | 000,000,000 | R--D | C] -- C:\Users\LivthefLip\Searches
[2011/09/11 10:30:27 | 000,000,000 | R--D | C] -- C:\Users\LivthefLip\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2011/09/11 10:30:16 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Roaming\Identities
[2011/09/11 10:30:15 | 000,000,000 | R--D | C] -- C:\Users\LivthefLip\Contacts
[2011/09/11 10:30:14 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Local\VirtualStore
[2011/09/11 10:29:55 | 071,837,917 | ---- | C] (Adobe Systems, Inc.) -- C:\Windows\System32\acer.exe
[2011/09/11 10:29:54 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Roaming\Macromedia
[2011/09/11 10:29:42 | 000,000,000 | ---D | C] -- C:\Program Files\Acer Inc
[2011/09/11 10:29:29 | 000,000,000 | ---D | C] -- C:\Windows\ACER
[2011/09/11 10:28:48 | 000,000,000 | -HSD | C] -- C:\Users\LivthefLip\AppData\Local\Temporary Internet Files
[2011/09/11 10:28:48 | 000,000,000 | -HSD | C] -- C:\Users\LivthefLip\Templates
[2011/09/11 10:28:48 | 000,000,000 | -HSD | C] -- C:\Users\LivthefLip\Start Menu
[2011/09/11 10:28:48 | 000,000,000 | -HSD | C] -- C:\Users\LivthefLip\SendTo
[2011/09/11 10:28:48 | 000,000,000 | -HSD | C] -- C:\Users\LivthefLip\Recent
[2011/09/11 10:28:48 | 000,000,000 | -HSD | C] -- C:\Users\LivthefLip\PrintHood
[2011/09/11 10:28:48 | 000,000,000 | -HSD | C] -- C:\Users\LivthefLip\NetHood
[2011/09/11 10:28:48 | 000,000,000 | -HSD | C] -- C:\Users\LivthefLip\Documents\My Videos
[2011/09/11 10:28:48 | 000,000,000 | -HSD | C] -- C:\Users\LivthefLip\Documents\My Pictures
[2011/09/11 10:28:48 | 000,000,000 | -HSD | C] -- C:\Users\LivthefLip\Documents\My Music
[2011/09/11 10:28:48 | 000,000,000 | -HSD | C] -- C:\Users\LivthefLip\My Documents
[2011/09/11 10:28:48 | 000,000,000 | -HSD | C] -- C:\Users\LivthefLip\Local Settings
[2011/09/11 10:28:48 | 000,000,000 | -HSD | C] -- C:\Users\LivthefLip\AppData\Local\History
[2011/09/11 10:28:48 | 000,000,000 | -HSD | C] -- C:\Users\LivthefLip\Cookies
[2011/09/11 10:28:48 | 000,000,000 | -HSD | C] -- C:\Users\LivthefLip\Application Data
[2011/09/11 10:28:48 | 000,000,000 | -HSD | C] -- C:\Users\LivthefLip\AppData\Local\Application Data
[2011/09/11 10:28:47 | 000,000,000 | --SD | C] -- C:\Users\LivthefLip\AppData\Roaming\Microsoft
[2011/09/11 10:28:47 | 000,000,000 | R--D | C] -- C:\Users\LivthefLip\Videos
[2011/09/11 10:28:47 | 000,000,000 | R--D | C] -- C:\Users\LivthefLip\Saved Games
[2011/09/11 10:28:47 | 000,000,000 | R--D | C] -- C:\Users\LivthefLip\Pictures
[2011/09/11 10:28:47 | 000,000,000 | R--D | C] -- C:\Users\LivthefLip\Music
[2011/09/11 10:28:47 | 000,000,000 | R--D | C] -- C:\Users\LivthefLip\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2011/09/11 10:28:47 | 000,000,000 | R--D | C] -- C:\Users\LivthefLip\Links
[2011/09/11 10:28:47 | 000,000,000 | R--D | C] -- C:\Users\LivthefLip\Favorites
[2011/09/11 10:28:47 | 000,000,000 | R--D | C] -- C:\Users\LivthefLip\Downloads
[2011/09/11 10:28:47 | 000,000,000 | R--D | C] -- C:\Users\LivthefLip\Documents
[2011/09/11 10:28:47 | 000,000,000 | R--D | C] -- C:\Users\LivthefLip\Desktop
[2011/09/11 10:28:47 | 000,000,000 | R--D | C] -- C:\Users\LivthefLip\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2011/09/11 10:28:47 | 000,000,000 | -H-D | C] -- C:\Users\LivthefLip\AppData
[2011/09/11 10:28:47 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Local\Temp
[2011/09/11 10:28:47 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Local\Microsoft
[2011/09/11 10:28:47 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Roaming\Media Center Programs
[2011/09/11 10:28:47 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink PowerProducer
[2011/09/11 10:28:47 | 000,000,000 | ---D | C] -- C:\Users\LivthefLip\AppData\Roaming\Acer GameZone Console
[2011/09/11 10:26:32 | 000,044,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wups2.dll
[2011/09/11 10:26:31 | 002,421,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wucltux.dll
[2011/09/11 10:26:22 | 000,575,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuapi.dll
[2011/09/11 10:26:22 | 000,087,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wudriver.dll
[2011/09/11 10:26:22 | 000,035,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wups.dll
[2011/09/11 10:26:14 | 000,171,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuwebv.dll
[2011/09/11 10:26:14 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuapp.exe
[2008/02/15 02:34:08 | 000,045,056 | ---- | C] ( ) -- C:\Windows\PLFSet.dll

========== Files - Modified Within 30 Days ==========

[2011/09/22 19:01:58 | 000,600,378 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2011/09/22 19:01:57 | 000,105,852 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2011/09/22 18:44:04 | 000,003,216 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2011/09/22 18:44:04 | 000,003,216 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2011/09/22 10:44:01 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011/09/22 10:43:59 | 2137,448,448 | -HS- | M] () -- C:\hiberfil.sys
[2011/09/21 22:18:04 | 000,000,836 | ---- | M] () -- C:\Windows\bthservsdp.dat
[2011/09/21 06:26:16 | 000,000,863 | ---- | M] () -- C:\Users\Public\Desktop\VLC media player.lnk
[2011/09/20 21:39:00 | 000,030,208 | ---- | M] () -- C:\Users\LivthefLip\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/09/20 20:47:53 | 003,673,544 | ---- | M] (Broadcom Corporation.) -- C:\Users\LivthefLip\Desktop\SetupBtwDownloadSE.exe
[2011/09/19 21:59:04 | 000,000,098 | ---- | M] () -- C:\Windows\System32\drivers\etc\Hosts
[2011/09/19 21:17:00 | 001,034,548 | ---- | M] () -- C:\Users\LivthefLip\Documents\Lynsay_Sands_-_Argeneau_15_-_The_Reluctant_Vampire_.pdf
[2011/09/19 20:48:59 | 000,000,556 | ---- | M] () -- C:\Windows\tasks\Norton Internet Security - Run Full System Scan - LivthefLip.job
[2011/09/19 20:30:43 | 000,001,891 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader 9.lnk
[2011/09/18 21:09:10 | 004,215,031 | R--- | M] (Swearware) -- C:\Users\LivthefLip\Desktop\Combo-Fix.exe
[2011/09/18 18:22:21 | 000,030,190 | -HS- | M] () -- C:\Windows\5942652drv.spi
[2011/09/18 09:48:33 | 000,001,882 | ---- | M] () -- C:\Users\Public\Desktop\Xilisoft DPG Converter 6.lnk
[2011/09/18 09:05:24 | 000,000,900 | ---- | M] () -- C:\Users\LivthefLip\Desktop\FoxTab AVI Converter.lnk
[2011/09/12 03:55:31 | 000,228,176 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2011/09/12 01:19:40 | 000,047,092 | ---- | M] () -- C:\Windows\System32\license.rtf
[2011/09/12 01:07:20 | 000,000,003 | ---- | M] () -- C:\Windows\AFirst.cmd
[2011/09/11 22:57:30 | 000,404,640 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2011/09/11 22:57:03 | 000,000,970 | ---- | M] () -- C:\Users\LivthefLip\Application Data\Microsoft\Internet Explorer\Quick Launch\Yahoo! Messenger.lnk
[2011/09/11 16:02:37 | 000,000,572 | ---- | M] () -- C:\Users\LivthefLip\Application Data\Microsoft\Internet Explorer\Quick Launch\MPEG Suite.lnk
[2011/09/11 16:02:30 | 000,001,073 | ---- | M] () -- C:\Users\LivthefLip\Application Data\Microsoft\Internet Explorer\Quick Launch\RealPlayer.lnk
[2011/09/11 15:29:14 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\deployJava1.dll
[2011/09/11 15:29:14 | 000,157,472 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaws.exe
[2011/09/11 15:29:14 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaw.exe
[2011/09/11 15:29:14 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\java.exe
[2011/09/11 15:22:49 | 000,198,832 | ---- | M] (RealNetworks, Inc.) -- C:\Windows\System32\rmoc3260.dll
[2011/09/11 15:22:42 | 000,006,656 | ---- | M] (RealNetworks, Inc.) -- C:\Windows\System32\pndx5016.dll
[2011/09/11 15:22:42 | 000,005,632 | ---- | M] (RealNetworks, Inc.) -- C:\Windows\System32\pndx5032.dll
[2011/09/11 15:22:40 | 000,272,896 | ---- | M] (Progressive Networks) -- C:\Windows\System32\pncrt.dll
[2011/09/11 15:12:18 | 000,000,780 | ---- | M] () -- C:\Users\LivthefLip\Application Data\Microsoft\Internet Explorer\Quick Launch\µTorrent.lnk
[2011/09/11 14:54:43 | 000,000,939 | ---- | M] () -- C:\Users\LivthefLip\Application Data\Microsoft\Internet Explorer\Quick Launch\DivX Plus Player.lnk
[2011/09/11 13:31:15 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_Kernel_mvusbews_01007.Wdf
[2011/09/11 13:22:36 | 000,130,834 | ---- | M] () -- C:\Windows\hpoins18.dat
[2011/09/11 13:19:28 | 000,001,976 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk
[2011/09/11 13:17:43 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_00_00.Wdf
[2011/09/11 11:41:28 | 000,124,464 | ---- | M] (Symantec Corporation) -- C:\Windows\System32\drivers\SYMEVENT.SYS
[2011/09/11 11:41:28 | 000,010,635 | ---- | M] () -- C:\Windows\System32\drivers\SYMEVENT.CAT
[2011/09/11 11:41:28 | 000,000,806 | ---- | M] () -- C:\Windows\System32\drivers\SYMEVENT.INF
[2011/09/11 11:32:02 | 000,000,874 | ---- | M] () -- C:\Users\LivthefLip\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2011/09/11 11:05:58 | 000,002,069 | ---- | M] () -- C:\Users\LivthefLip\Application Data\Microsoft\Internet Explorer\Quick Launch\Acer Arcade Deluxe.lnk
[2011/09/11 11:05:55 | 000,000,950 | ---- | M] () -- C:\Users\LivthefLip\Application Data\Microsoft\Internet Explorer\Quick Launch\Acer GameZone Console.lnk
[2011/09/11 11:01:55 | 000,000,942 | ---- | M] () -- C:\Users\LivthefLip\Application Data\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk
[2011/09/11 10:47:06 | 000,000,144 | ---- | M] () -- C:\Windows\Alaunch.ini
[2011/09/11 10:47:00 | 000,000,092 | ---- | M] () -- C:\Windows\GridV.UNI
[2011/09/11 10:39:52 | 000,000,743 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk
[2011/09/11 10:33:00 | 000,000,083 | ---- | M] () -- C:\Windows\QtZgAcer.UNI
[2011/09/11 10:30:29 | 000,000,947 | ---- | M] () -- C:\Users\LivthefLip\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2011/09/11 10:29:11 | 000,001,976 | ---- | M] () -- C:\Windows\CLEANUP.CMD
[2011/09/11 10:29:09 | 000,016,068 | ---- | M] () -- C:\Windows\System32\results.xml
[2011/08/31 17:00:50 | 000,022,216 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys

========== Files Created - No Company Name ==========

[2011/09/21 06:26:16 | 000,000,863 | ---- | C] () -- C:\Users\Public\Desktop\VLC media player.lnk
[2011/09/19 21:16:56 | 001,034,548 | ---- | C] () -- C:\Users\LivthefLip\Documents\Lynsay_Sands_-_Argeneau_15_-_The_Reluctant_Vampire_.pdf
[2011/09/19 20:22:56 | 000,002,425 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader 9.lnk
[2011/09/19 20:22:56 | 000,001,891 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Reader 9.lnk
[2011/09/18 21:09:38 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe
[2011/09/18 21:09:38 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe
[2011/09/18 21:09:38 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2011/09/18 21:09:38 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2011/09/18 21:09:38 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2011/09/18 17:27:50 | 000,030,190 | -HS- | C] () -- C:\Windows\5942652drv.spi
[2011/09/18 09:48:33 | 000,001,882 | ---- | C] () -- C:\Users\Public\Desktop\Xilisoft DPG Converter 6.lnk
[2011/09/18 09:05:24 | 000,000,900 | ---- | C] () -- C:\Users\LivthefLip\Desktop\FoxTab AVI Converter.lnk
[2011/09/17 20:15:39 | 1110,990,197 | ---- | C] () -- C:\Users\LivthefLip\Desktop\Final Destination 5 2011 TS x264 Feel-Free.mp4
[2011/09/12 03:10:49 | 000,106,605 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchema.bin
[2011/09/12 03:10:49 | 000,018,904 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchemaTrivial.bin
[2011/09/12 03:10:44 | 011,967,524 | ---- | C] () -- C:\Windows\System32\korwbrkr.lex
[2011/09/12 01:17:41 | 2137,448,448 | -HS- | C] () -- C:\hiberfil.sys
[2011/09/12 01:07:20 | 000,000,003 | ---- | C] () -- C:\Windows\AFirst.cmd
[2011/09/12 01:07:15 | 000,000,030 | ---- | C] () -- C:\Windows\SetPanel.ini
[2011/09/12 01:07:08 | 000,000,294 | ---- | C] () -- C:\Windows\offline.reg
[2011/09/12 01:07:04 | 000,020,480 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SETRES.EXE
[2011/09/12 01:07:04 | 000,020,480 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SETAUDIO.EXE
[2011/09/12 01:06:52 | 000,001,976 | ---- | C] () -- C:\Windows\CLEANUP.CMD
[2011/09/12 01:06:52 | 000,000,092 | ---- | C] () -- C:\Windows\CLEANUP.INI
[2011/09/11 22:57:03 | 000,000,970 | ---- | C] () -- C:\Users\LivthefLip\Application Data\Microsoft\Internet Explorer\Quick Launch\Yahoo! Messenger.lnk
[2011/09/11 20:12:44 | 000,201,184 | ---- | C] () -- C:\Windows\System32\winrm.vbs
[2011/09/11 20:12:44 | 000,004,675 | ---- | C] () -- C:\Windows\System32\wsmanconfig_schema.xml
[2011/09/11 20:12:44 | 000,002,426 | ---- | C] () -- C:\Windows\System32\WsmTxt.xsl
[2011/09/11 17:26:06 | 002,501,921 | ---- | C] () -- C:\Windows\System32\wlan.tmf
[2011/09/11 16:16:36 | 000,030,208 | ---- | C] () -- C:\Users\LivthefLip\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/09/11 16:02:37 | 000,000,572 | ---- | C] () -- C:\Users\LivthefLip\Application Data\Microsoft\Internet Explorer\Quick Launch\MPEG Suite.lnk
[2011/09/11 16:02:30 | 000,001,073 | ---- | C] () -- C:\Users\LivthefLip\Application Data\Microsoft\Internet Explorer\Quick Launch\RealPlayer.lnk
[2011/09/11 15:09:37 | 000,000,780 | ---- | C] () -- C:\Users\LivthefLip\Application Data\Microsoft\Internet Explorer\Quick Launch\µTorrent.lnk
[2011/09/11 15:07:09 | 000,001,830 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
[2011/09/11 14:54:43 | 000,000,939 | ---- | C] () -- C:\Users\LivthefLip\Application Data\Microsoft\Internet Explorer\Quick Launch\DivX Plus Player.lnk
[2011/09/11 13:31:15 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_Kernel_mvusbews_01007.Wdf
[2011/09/11 13:28:44 | 001,511,424 | ---- | C] () -- C:\Windows\System32\HP1100SM.EXE
[2011/09/11 13:28:44 | 000,147,456 | ---- | C] () -- C:\Windows\System32\HP1100LM.DLL
[2011/09/11 13:28:27 | 000,284,160 | ---- | C] () -- C:\Windows\System32\mvhlewsi.dll
[2011/09/11 13:28:24 | 000,081,920 | ---- | C] () -- C:\Windows\System32\mvusbews.dll
[2011/09/11 13:28:23 | 000,047,104 | ---- | C] () -- C:\Windows\System32\HP1100SMs.dll
[2011/09/11 13:21:17 | 000,000,855 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\I.R.I.S. OCR Registration.lnk
[2011/09/11 13:19:28 | 000,001,976 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk
[2011/09/11 13:17:43 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_00_00.Wdf
[2011/09/11 13:13:14 | 000,130,834 | ---- | C] () -- C:\Windows\hpoins18.dat
[2011/09/11 13:13:01 | 000,006,600 | ---- | C] () -- C:\Windows\hpomdl18.dat
[2011/09/11 11:32:02 | 000,000,874 | ---- | C] () -- C:\Users\LivthefLip\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2011/09/11 11:32:02 | 000,000,862 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
[2011/09/11 11:05:58 | 000,002,069 | ---- | C] () -- C:\Users\LivthefLip\Application Data\Microsoft\Internet Explorer\Quick Launch\Acer Arcade Deluxe.lnk
[2011/09/11 11:05:55 | 000,000,950 | ---- | C] () -- C:\Users\LivthefLip\Application Data\Microsoft\Internet Explorer\Quick Launch\Acer GameZone Console.lnk
[2011/09/11 11:01:55 | 000,000,942 | ---- | C] () -- C:\Users\LivthefLip\Application Data\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk
[2011/09/11 10:48:22 | 000,000,836 | ---- | C] () -- C:\Windows\bthservsdp.dat
[2011/09/11 10:48:07 | 000,000,556 | ---- | C] () -- C:\Windows\tasks\Norton Internet Security - Run Full System Scan - LivthefLip.job
[2011/09/11 10:47:00 | 000,000,092 | ---- | C] () -- C:\Windows\GridV.UNI
[2011/09/11 10:42:32 | 000,016,384 | ---- | C] () -- C:\Windows\System32\LauncheRyAgentUser.exe
[2011/09/11 10:42:32 | 000,000,552 | ---- | C] () -- C:\Windows\System32\setup.iss
[2011/09/11 10:39:52 | 000,000,743 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk
[2011/09/11 10:33:00 | 000,000,083 | ---- | C] () -- C:\Windows\QtZgAcer.UNI
[2011/09/11 10:30:29 | 000,000,953 | ---- | C] () -- C:\Users\LivthefLip\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[2011/09/11 10:30:27 | 000,000,948 | ---- | C] () -- C:\Users\LivthefLip\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
[2011/09/11 10:30:15 | 000,000,919 | ---- | C] () -- C:\Users\LivthefLip\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Mail.lnk
[2011/09/11 10:29:54 | 083,554,304 | ---- | C] () -- C:\Windows\System32\acer.scr
[2011/09/11 10:29:11 | 000,000,947 | ---- | C] () -- C:\Users\LivthefLip\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2011/09/11 10:29:09 | 000,016,068 | ---- | C] () -- C:\Windows\System32\results.xml
[2011/09/11 10:28:47 | 000,000,258 | ---- | C] () -- C:\Users\LivthefLip\Application Data\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk
[2011/09/11 10:28:47 | 000,000,240 | ---- | C] () -- C:\Users\LivthefLip\Application Data\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk
[2009/04/01 10:48:16 | 000,053,478 | ---- | C] () -- C:\Windows\mvtcpui.ini
[2008/02/15 04:56:34 | 000,015,656 | ---- | C] () -- C:\Windows\System32\drivers\int15_64.sys
[2008/02/15 04:55:51 | 000,065,536 | ---- | C] () -- C:\Windows\System32\NATTraversal.dll
[2008/02/15 04:54:26 | 000,001,024 | RH-- | C] () -- C:\Windows\System32\NTIBUN4.dll
[2008/02/15 04:03:21 | 000,001,132 | ---- | C] () -- C:\Windows\RtDefLvl.ini
[2008/02/15 04:03:21 | 000,000,008 | ---- | C] () -- C:\Windows\System32\drivers\RtkHDAud.dat
[2008/02/15 02:34:23 | 000,000,144 | ---- | C] () -- C:\Windows\Alaunch.ini
[2008/02/15 02:34:15 | 001,953,696 | ---- | C] () -- C:\Windows\System32\igklg400.dll
[2008/02/15 02:34:15 | 001,533,360 | ---- | C] () -- C:\Windows\System32\igklg450.dll
[2008/02/15 02:34:15 | 000,147,456 | ---- | C] () -- C:\Windows\System32\igfxCoIn_v1409.dll
[2008/02/15 02:34:15 | 000,104,636 | ---- | C] () -- C:\Windows\System32\igmedcompkrn.dll
[2008/02/15 02:34:09 | 001,729,152 | ---- | C] () -- C:\Windows\System32\drivers\snp2uvc.sys
[2008/02/15 02:33:58 | 001,060,424 | ---- | C] () -- C:\Windows\System32\WdfCoInstaller01000.dll
[2007/03/29 12:42:38 | 000,389,120 | ---- | C] () -- C:\Windows\System32\btwhidcs.dll
[2006/11/02 20:57:28 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2006/11/02 20:47:37 | 000,228,176 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2006/11/02 20:35:32 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll
[2006/11/02 18:33:01 | 000,600,378 | ---- | C] () -- C:\Windows\System32\perfh009.dat
[2006/11/02 18:33:01 | 000,287,440 | ---- | C] () -- C:\Windows\System32\perfi009.dat
[2006/11/02 18:33:01 | 000,105,852 | ---- | C] () -- C:\Windows\System32\perfc009.dat
[2006/11/02 18:33:01 | 000,030,674 | ---- | C] () -- C:\Windows\System32\perfd009.dat
[2006/11/02 18:23:21 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat
[2006/11/02 16:58:30 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2006/11/02 16:19:00 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT
[2006/11/02 15:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2006/11/02 15:25:31 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat
[2001/12/27 08:12:30 | 000,065,536 | ---- | C] () -- C:\Windows\System32\multiplex_vcd.dll
[2001/11/14 13:56:00 | 001,802,240 | ---- | C] () -- C:\Windows\System32\lcppn21.dll
[2001/09/04 15:46:38 | 000,110,592 | ---- | C] () -- C:\Windows\System32\Hmpg12.dll
[2001/07/31 08:33:56 | 000,118,784 | ---- | C] () -- C:\Windows\System32\HMPV2_ENC.dll
[2001/07/24 14:04:36 | 000,118,784 | ---- | C] () -- C:\Windows\System32\HMPV2_ENC_MMX.dll

========== LOP Check ==========

[2008/02/15 04:28:28 | 000,000,000 | ---D | M] -- C:\Users\Default\AppData\Roaming\Acer GameZone Console
[2008/02/15 04:28:28 | 000,000,000 | ---D | M] -- C:\Users\Default User\AppData\Roaming\Acer GameZone Console
[2008/02/15 04:28:28 | 000,000,000 | ---D | M] -- C:\Users\LivthefLip\AppData\Roaming\Acer GameZone Console
[2011/09/22 19:28:14 | 000,000,000 | ---D | M] -- C:\Users\LivthefLip\AppData\Roaming\uTorrent
[2011/09/18 09:57:32 | 000,000,000 | ---D | M] -- C:\Users\LivthefLip\AppData\Roaming\Xilisoft
[2011/09/21 22:18:07 | 000,014,684 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========



========== Custom Scans ==========


< %SYSTEMDRIVE%\*.exe >


< MD5 for: EXPLORER.EXE >
[2008/10/29 14:20:29 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=37440D09DEAE0B672A04DCCF7ABF06BE -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.16771_none_4f83bb287ccdb7e3\explorer.exe
[2008/10/29 14:29:41 | 002,927,104 | ---- | M] (Microsoft Corporation) MD5=4F554999D7D5F05DAAEBBA7B5BA1089D -- C:\Windows\ERDNT\cache\explorer.exe
[2008/10/29 14:29:41 | 002,927,104 | ---- | M] (Microsoft Corporation) MD5=4F554999D7D5F05DAAEBBA7B5BA1089D -- C:\Windows\explorer.exe
[2008/10/29 14:29:41 | 002,927,104 | ---- | M] (Microsoft Corporation) MD5=4F554999D7D5F05DAAEBBA7B5BA1089D -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.18164_none_5177ca9879e978e8\explorer.exe
[2008/10/30 11:59:17 | 002,927,616 | ---- | M] (Microsoft Corporation) MD5=50BA5850147410CDE89C523AD3BC606E -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.22298_none_51e4f8c7931bd1e1\explorer.exe
[2008/10/28 10:15:02 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=E7156B0B74762D9DE0E66BDCDE06E5FB -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.20947_none_5033cb5995cd990b\explorer.exe
[2008/01/21 10:24:24 | 002,927,104 | ---- | M] (Microsoft Corporation) MD5=FFA764631CB70A30065C12EF8E174F9F -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.18000_none_51b4a71279bc6ebf\explorer.exe

< MD5 for: SVCHOST.EXE >
[2008/01/21 10:23:43 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=3794B461C45882E06856F282EEF025AF -- C:\Windows\ERDNT\cache\svchost.exe
[2008/01/21 10:23:43 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=3794B461C45882E06856F282EEF025AF -- C:\Windows\System32\svchost.exe
[2008/01/21 10:23:43 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=3794B461C45882E06856F282EEF025AF -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.0.6001.18000_none_b5bb59a1054dbde5\svchost.exe

< MD5 for: USERINIT.EXE >
[2008/01/21 10:24:49 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=0E135526E9785D085BCD9AEDE6FBCBF9 -- C:\Windows\ERDNT\cache\userinit.exe
[2008/01/21 10:24:49 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=0E135526E9785D085BCD9AEDE6FBCBF9 -- C:\Windows\System32\userinit.exe
[2008/01/21 10:24:49 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=0E135526E9785D085BCD9AEDE6FBCBF9 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.0.6001.18000_none_dc28ba15d1aff80b\userinit.exe

< MD5 for: WINLOGON.EXE >
[2008/01/21 10:24:49 | 000,314,880 | ---- | M] (Microsoft Corporation) MD5=C2610B6BDBEFC053BBDAB4F1B965CB24 -- C:\Windows\ERDNT\cache\winlogon.exe
[2008/01/21 10:24:49 | 000,314,880 | ---- | M] (Microsoft Corporation) MD5=C2610B6BDBEFC053BBDAB4F1B965CB24 -- C:\Windows\System32\winlogon.exe
[2008/01/21 10:24:49 | 000,314,880 | ---- | M] (Microsoft Corporation) MD5=C2610B6BDBEFC053BBDAB4F1B965CB24 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6001.18000_none_6fc30116d4f17bf5\winlogon.exe

< %systemroot%\*. /mp /s >

< hklm\software\clients\startmenuinternet|command /rs >
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\HideIconsCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /HideShortcuts [2011/09/03 14:01:45 | 000,713,016 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ShowIconsCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /ShowShortcuts [2011/09/03 14:01:45 | 000,713,016 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ReinstallCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /SetAsDefaultAppGlobal [2011/09/03 14:01:45 | 000,713,016 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\open\command\\: C:\Program Files\Mozilla Firefox\firefox.exe [2011/09/03 14:01:45 | 000,924,632 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\properties\command\\: "C:\Program Files\Mozilla Firefox\firefox.exe" -preferences [2011/09/03 14:01:45 | 000,924,632 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\safemode\command\\: "C:\Program Files\Mozilla Firefox\firefox.exe" -safe-mode [2011/09/03 14:01:45 | 000,924,632 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\HideIconsCommand: "C:\Windows\system32\ie4uinit.exe" -hide [2008/01/21 10:24:17 | 000,070,656 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ShowIconsCommand: "C:\Windows\system32\ie4uinit.exe" -show [2008/01/21 10:24:17 | 000,070,656 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ReinstallCommand: "C:\Windows\system32\ie4uinit.exe" -reinstall [2008/01/21 10:24:17 | 000,070,656 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\open\command\\: "C:\Program Files\Internet Explorer\iexplore.exe" [2011/04/21 23:02:30 | 000,634,648 | ---- | M] (Microsoft Corporation)

< hklm\software\clients\startmenuinternet|command /64 /rs >
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\HideIconsCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /HideShortcuts [2011/09/03 14:01:45 | 000,713,016 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ShowIconsCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /ShowShortcuts [2011/09/03 14:01:45 | 000,713,016 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ReinstallCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /SetAsDefaultAppGlobal [2011/09/03 14:01:45 | 000,713,016 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\open\command\\: C:\Program Files\Mozilla Firefox\firefox.exe [2011/09/03 14:01:45 | 000,924,632 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\properties\command\\: "C:\Program Files\Mozilla Firefox\firefox.exe" -preferences [2011/09/03 14:01:45 | 000,924,632 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\safemode\command\\: "C:\Program Files\Mozilla Firefox\firefox.exe" -safe-mode [2011/09/03 14:01:45 | 000,924,632 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\HideIconsCommand: "C:\Windows\system32\ie4uinit.exe" -hide [2008/01/21 10:24:17 | 000,070,656 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ShowIconsCommand: "C:\Windows\system32\ie4uinit.exe" -show [2008/01/21 10:24:17 | 000,070,656 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ReinstallCommand: "C:\Windows\system32\ie4uinit.exe" -reinstall [2008/01/21 10:24:17 | 000,070,656 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\open\command\\: "C:\Program Files\Internet Explorer\iexplore.exe" [2011/04/21 23:02:30 | 000,634,648 | ---- | M] (Microsoft Corporation)

< End of report >
  • 0

#29
Render
Posted 23 September 2011 - 04:27 AM

Render

    Trusted Helper

  • Malware Removal
  • 4,195 posts
You are redirected to Yahoo in both browsers, IE and FF?
  • 0

#30
livtheflip
Posted 23 September 2011 - 11:02 PM

livtheflip

    Member

  • Topic Starter
  • Member
  • PipPip
  • 21 posts
YES
  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP